HackRead reports that ShinyHunters has claimed responsibility for attacks on Twilio Authy, Neiman Marcus, and Truist Bank and has leaked data from all three. The infamous ShinyHunters hacking group, known for their recent Ticketmaster data breach, has struck again with a series of new attacks. This time, they have targeted Neiman Marcus, a renowned American luxury […]
The Record reports: Sen. Charles Grassley (R-IA) on Wednesday sent Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly a stern letter seeking documentation and answers relating to a January hack of the agency’s Chemical Security Assessment Tool (CSAT) along with the breach of a second sensitive system. Grassley noted that the cyberattack led to “malicious activity” […]
On June 27, TeamViewer issued a statement stating that it had detected an irregularity in its internal corporate environment. The statement emphasized that the internal corporate environment is completely independent from its product environment. An update issued on June 28 stated that current findings pointed to an attack tied to the credentials of a standard […]
In late January, Lurie Children’s Hospital took its phones, email, electronic health records system, and patient portal offline to deal with a ransomware attack. As a result, some patient care was disrupted or delayed. The hospital would not meet the threat actor’s demands for more than $3 million, and it wasn’t until a month later […]
Yet another ransomware group is causing major damage and headaches. Bleeping Computer has a helpful write-up on Brain Cipher. It begins: The new Brain Cipher ransomware operation has begun targeting organizations worldwide, gaining media attention for a recent attack on Indonesia’s temporary National Data Center. Indonesia is building out National Data Centers to securely store […]
Occasionally, a business giant with the funds to fight the government will challenge a federal agency’s enforcement action. This time, it is MGM taking on the FTC. Law.com reports: The Federal Trade Commission this week defended its investigation of MGM Resort International’s data security practices as the Las Vegas-based casino is seeking a court order […]
Once again, threat actors are jumping to exploit a newly identified vulnerability in Progress MOVEit Transfer software. As Bleeping Computer reports, exploit attempts were noted less than 24 hours after the vendor disclosed the vulnerability. The new security issue received the identifier CVE-2024-5806 and allows attackers to bypass the authentication process in the Secure File Transfer Protocol […]
No matter how many warnings are issued and how many times employees may be trained to avoid phishing attacks, some will fall for it. But 25 departments of a county government? Was this a failure of training or are the phishing attacks getting harder to detect because of the use of AI to compose the […]
GB Hackers on Security notes a listing on Breach Forums that claims to be leaking data from former and current employees of Accenture. The listing, by a user calling themself “@888” states: In June 2024, Accenture suffered a data breach from a third party that exposed 32,826 employees/former employees. Breached by @888 The Compromised Data […]
The devastating impact of data breaches on brand reputation
Hariom Seth, the founder of Tagglabs, writes: Any company handling data is susceptible to data breaches. IBM in 2023 conducted a study of 553 companies on the cost of data breaches, according to which a majority of organisations within the study had at least 1 major data breach in the past year. Healthcare was the […]