DarkReading reports: After announcing its farewell last month, the cyber extortion group known as Scattered Lapsus$ Hunters returned on Friday with a website featuring stolen Salesforce data and a list of dozens of alleged victims. Scattered Lapsus$ Hunters is an apparent combination of the Scattered Spider, Lapsus$, and ShinyHunters cybercriminal groups, which first emerged over the summer […]
CyberScoop reports: Attackers appearing to be aligned with the Clop ransomware group have sent emails to Oracle customers seeking extortion payments, claiming they stole data from the tech giant’s E-Business Suite, according to researchers who spoke with CyberScoop. Researchers haven’t confirmed the veracity of Clop’s claimed data theft, but multiple investigations into Oracle environments belonging […]
The Verge reports: One of Discord’s third-party customer service providers was compromised by an “unauthorized party,” the company says. The unauthorized party gained access to “information from a limited number of users who had contacted Discord through our Customer Support and/or Trust & Safety teams” and aimed to “extort a financial ransom from Discord.” The unauthorized […]
The Washington Post reports an update to the breach affecting Kido Schools in the UK: In late September, parents at a chain of British nursery schools got shocking news: They’d been hacked. Cybercriminals had pilfered photographs and sensitive family data on thousands of children and demanded ransom not to release it. A week later, the […]
In June, WestJet disclosed a cyberattack. More details have now been made available as the airline has sent notification letters to 1.2 million people. In its notification, WestJet, the second-largest Canadian airline, emphasizes that credit card or debit card numbers, expiration dates, and CVV numbers, as well as guest user passwords, were not compromised, and […]
CNN reports: An unidentified hacker stole sensitive data from Customs and Border Protection and Federal Emergency Management Agency employees in a “widespread” breach this summer that lasted several weeks, according to an internal FEMA assessment reviewed by CNN. The incident led to an urgent cleanup operation by senior Department of Homeland Security IT officials after […]
Bleeping Computer reports that a breach at a third-party provider for the London luxury retailed has resulted in hundreds of thousands of affected customers: UK retail giant Harrods has disclosed a new cybersecurity incident after hackers compromised a third-party supplier and stole 430,000 records with sensitive e-commerce customer information. In a statement for BleepingComputer, the luxury department […]
Business Insurance Magazine reports: The theft of sensitive data from thousands of children at a London nursery chain has highlighted the growing financial and reputational risks posed by cybercrime – and renewed debate over the adequacy of insurance protection in the sector. Hackers styling themselves “Radiant” claim to have stolen information on more than 8,000 children […]
The Register reports: Cybersecurity agencies on both sides of the Atlantic are sounding the alarm over Cisco firewall vulnerabilities that are being exploited by an “advanced threat actor.” The Cybersecurity and Infrastructure Security Agency (CISA) issued an Emergency Directive on Thursday, saying there is “an unacceptable risk” to government systems if Cisco’s Adaptive Security Appliance (ASA) […]
Bleeping Computer reports: Suspected Chinese hackers have used the Brickstorm malware in long-term persistence espionage operations against U.S. organizations in the technology and legal sectors. Brickstorm is a Go-based backdoor documented by Google in April 2024 following China-related intrusions that spawned from various edge devices and remained undetected in the victim environment for more than a year, […]
