BleepingComputer reports that there may be some cooperation or collaboration between the threat actor groups known as ShinyHunters and the loose collective known as “The Com:” Google has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks against multi-national companies to steal data from organizations’ Salesforce platforms. According to Google’s Threat […]
It is not unusual for ransomware gangs to send threatening emails to the executives of their target. Some send emails that mention personal details about the executives or their families. Others threaten regulator punishment or other consequences of a highly publicized breach. But DragonForce reportedly included their travel itinerary to the target. As the BBC […]
Vodafone GmbH has been hit with a massive fine by the German data protection agency for privacy and data security violations. BleepingComputer reports: The German data protection authority (BfDI) has fined Vodafone GmbH, the telecommunications company’s German subsidiary, €45 million ($51.4 million) for privacy and security violations. “Due to malicious employees in partner agencies who […]
Most cyberattacks do not include threat actors maliciously wiping servers and deleting all data. But when they do, the consequences are devastating to any victim that doesn’t have an updated and usable backup that can be used to restore. The420.in reports: KiranaPro, a Bengaluru-based grocery delivery platform operating on the Indian government’s Open Network for […]
The Record reports that a hacking group known as BO Team or Black Owl has emerged as a major threat to Russia: A little-known hacking group has emerged as a major threat to Russian state institutions and critical industries, carrying out attacks aimed at causing maximum disruption and extracting financial gain, according to a new […]
The Register reports: Joining the long queue of retailers dealing with cyber mishaps is outdoorsy fashion brand The North Face, which says crooks broke into some customer accounts using login creds pinched from breaches elsewhere. According to a consumer notice filed with the Vermont Attorney General’s Office, the outdoor gear seller spotted unusual activity on […]
It may not seem inuitively obvious to many people, but Reuters reports that cybercrime in Germany rose to a record level last year, driven by hacker attacks from pro-Russian and anti-Israeli groups. Some 131,391 cases of cybercrime took place in Germany last year and a further 201,877 cases were committed from abroad or an unknown […]
The Korea Times reports: Luxury jewelry brand Cartier has confirmed a breach of customer data, raising concerns over data security among high-end brands following recent incidents involving Dior and Tiffany. The company sent out an email Tuesday informing its customers that an “unauthorized third party” accessed its systems temporarily and obtained certain customer information. While […]
TechRadar reports: Security and compliance automation company Vanta has confirmed sharing sensitive customer data with other customers by mistake. In a statement (via TechCrunch), the company said a change it had made in the code resulted in a security breach. In it, some sensitive data from a small subset of customers was shared with other customers. […]
When criminals note that there is an unpatched vulnerability, expect more attacks to follow. A Russian-language forum recently picked up a report from SecurityLab.ru. It begins (translation): Popular forums on vBulletin have once again been found to have holes through which arbitrary code can be executed directly on the server – without a login and […]
