TechCrunch reports: Genetic testing company 23andMe has been investigating a security incident after hackers advertised a trove of alleged stolen user data on a hacking forum last week. But the alleged stolen data may have been circulating for much longer than first known. TechCrunch has also found that some of the advertised stolen data matches […]
Despite facing numerous charges, Representative George Santos (R-NY) refused to resign from Congress. Now he is reportedly facing yet even more charges in a superseding indictment. The Associated Press reports: A new indictment filed Tuesday charged U.S. Rep. George Santos with stealing the identities of donors to his campaign and then using their credit cards to ring […]
Bleeping Computer reports Flagstar Bank in Michigan is notifying 837,390 customers whose personal information, including Social Security numbers, was acquired by the Clop hacking gang in May. The breach was not of Flagstar’s systems but at FISERV, a vendor they use for payment processing and mobile banking services. FISERV was one of thousands of entities […]
Bloomberg reports that “Scattered Spider” may also be responsible for the recent attack on Clorox: A notorious group of hackers blamed for recent breaches on major casino companies is also suspected of being behind a recent cyberattack against Clorox Co. that has led to a nationwide shortage of its cleaning products. Officials suspect that “Scattered Spider” is […]
The figures for the MOVEit data breach continue to rise to alarming heights. The Record reports: The National Student Clearinghouse (NSC) reported that nearly 900 colleges and universities across the U.S. had data stolen during attacks by a Russia-based ransomware gang exploiting the popular MOVEit file-sharing tool. The nonprofit manages educational reporting, data exchange, verification, […]
Over the weekend, a new ransomware group called Ransomed.vc claimed it compromised Sony. The original listing, which has since been replaced, listed a date of September 28, suggesting that if there was no resolution or payment by then, data would be leaked or sold. In an updated listing with a date of September 26, they […]
As an article in DarkReading highlights, it’s tempting to compare the incident responses by MGM Resorts and Caesars Entertainment to their recent cyberattacks because both are the same kind of entity and both were victims of the same threat actors (Scattered Spider/AlphV). But: Caesars quickly negotiated with the cyberattackers, and handed over a $15 million ransom payout, which […]
T-Mobile has had so many data breaches over the years that it’s somewhat understandable that people may rush to assume that something is a breach of their system when it was not. This week, we heard of two situations like that. The first involved customers reporting that after they logged in to T-Mobile’s app, they […]
Reuters reports: The International Criminal Court (ICC) said on Tuesday its computer system had been hacked, a breach at one of the world’s most high-profile international institutions and one that handles highly sensitive information about war crimes. The ICC said it had detected unusual activity on its computer network at the end of last week, […]
One of the biggest breaches of 2023 involves the 0-day attack by Clop threat actors on file transfer software called MOVEit by Progress Software. The attack was launched in May and June. It affected more than 1,100 entities and more than 56 million people according to statistics compiled by Emsisoft. One of the most recent […]
