Inside the Massive Naz.API Credential Stuffing List
Troy Hunt of HaveIBeenPwned writes: Read more at TroyHunt.com
Mortgage firm loanDepot cyberattack impacts IT systems, payment portal
Bleeping Computer reports: U.S. mortgage lender loanDepot has suffered a cyberattack that caused the company to take IT systems offline, preventing online payments against loans. loanDepot is one of the largest nonbank retail mortgage lenders in the USA, employing approximately 6,000 people and servicing loans of over $140 billion. Read more at Bleeping Computer. Loan […]
BakerHostetler: 2023 Data Security Incident Response Report
BakerHostetler law firm is well-known for data breach incident response. They write, “Three years ago we set a new industry standard by creating our Digital Assets and Data Management (DADM) practice group, which now has more than 100 attorneys and technologists. Every year we organize and publish our collective insights in this report. It is […]
Mandiant Experiences Irony of Cybersecurity Breach
BNN reports: In an ironic turn of events, Mandiant, a cybersecurity firm owned by Google, fell prey to a security breach on its X social media account on January 3. The attacker, shrouded in anonymity, manipulated the account to unleash a malevolent cryptocurrency-stealing link. […] This incident strikes a raw nerve, particularly given that Mandiant, a […]
‘If you told me to list 10 things that would go wrong, this would not be on the list’: Tiny water authority in Pennsylvania hit by Iranian cyberattack
Fortune reports: The tiny Aliquippa water authority in western Pennsylvania was perhaps the least-suspecting victim of an international cyberattack. It had never had outside help in protecting its systems from a cyberattack, either at its existing plant that dates to the 1930s or the new $18.5 million one it is building. Then it — along with […]
After ransomware claims, Xerox says subsidiary hit with cyberattack
The Record reports: Xerox said a subsidiary is dealing with a cyberattack that may have involved the theft of personal information. Last week a ransomware gang named INC claimed it attacked the company — which earned over $7 billion in 2022 from selling printers in more than 160 countries. When asked about the claims, a spokesperson for Xerox directed […]
The State of Ransomware in the U.S.: Report and Statistics 2023
Emsisoft reports: In 2023, the U.S. was once again battered by a barrage of financially-motivated ransomware attacks that denied Americans access to critical services, compromised their personal information, and probably killed some of them. In total, 2,207 U.S. hospitals, schools and governments were directly impacted by ransomware over the course of the year, with many […]
Cactus Ransomware Gang Hit the Swedish Retail and Grocery Provider Coop (1)
Security Affairs reports: The Cactus ransomware group claims to have hacked Coop, one of the largest retail and grocery providers in Sweden. Coop is one of the largest retail and grocery providers in Sweden, with approximately 800 stores across the country. The stores are co-owned by 3.5 million members in 29 consumer associations. All surplus that […]
The biggest cybersecurity and cyberattack stories of 2023
Bleeping Computer reports: 2023 was a big year for cybersecurity, with significant cyberattacks, data breaches, new threat groups emerging, and, of course, zero-day vulnerabilities. Some stories, though, were more impactful or popular with our 22 million readers than others.Below are fourteen of what BleepingComputer believes are the most impactful cybersecurity stories of 2023, with a […]
Cyberattack on Ukraine’s Kyivstar will cost parent Veon almost $100 million in sales
Reuters reports: Veon, the parent company of Ukraine’s largest mobile operator Kyivstar, will take a hit of around 3.6 billion hryvnias ($95 million) in revenue in 2024 due to a massive cyberattack in December, the Dutch telecoms group estimated on Thursday. The estimated lost revenue is associated with measures Kyivstar has taken to compensate customers […]