Tag: data-breach
-
$500,000 stolen in Australian super fund data breach
by
in SecurityNewsSuper industry’s peak body says majority of hacking attempts stopped but money lost by a small number of customers<ul><li><a href=”https://www.theguardian.com/australia-news/live/2025/apr/04/australia-election-2025-live-peter-dutton-anthony-albanese-labor-coalition-poll-tariffs-trump-interest-rates-rba-ntwnfb”>Election 2025 live updates: Australia federal election campaign</li><li>Get our <a href=”https://www.theguardian.com/email-newsletters?CMP=cvau_sfl”>afternoon election email, <a href=”https://app.adjust.com/w4u7jx3″>free app or <a href=”https://www.theguardian.com/australia-news/series/full-story?CMP=cvau_sfl”>daily news podcast</li></ul>Hackers have targeted Australian superannuation funds this week, with a small number of customers losing a…
-
Anmeldedaten von Drittanbieter gestohlen – 270.000 Tickets deutscher Samsung-Kunden geleakt
by
in SecurityNews
Tags: data-breachFirst seen on security-insider.de Jump to article: www.security-insider.de/cyberkrimineller-stiehlt-kundentickets-von-samsung-a-1608f3766c13bd7749af0810505bbd18/
-
Surge in threat actors scanning Juniper, Cisco, and Palo Alto Networks devices
by
in SecurityNewsScanning for Palo Alto Networks portals: Meanwhile, researchers at GreyNoise this week reported seeing a recent significant surge in login scanning activity targeting Palo Alto Networks PAN-OS GlobalProtect portals. GlobalProtect is an endpoint application that allows employees to access a company’s resources remotely.Over the last 30 days, nearly 24,000 unique IP addresses have attempted to access…
-
Australian super funds compromised after data breach as hackers use stolen passwords
by
in SecurityNewsRetirement savings industry’s peak body says majority of hacking attempts stopped but a number of companies affected by data breach<ul><li>Get our <a href=”https://www.theguardian.com/email-newsletters?CMP=cvau_sfl”>afternoon election email, <a href=”https://app.adjust.com/w4u7jx3″>free app or <a href=”https://www.theguardian.com/australia-news/series/full-story?CMP=cvau_sfl”>daily news podcast</li></ul>Hackers have targeted Australian superannuation funds this week, the retirement savings industry’s peak body has said, with a number of funds having member…
-
Hacker Claims Twilio’s SendGrid Data Breach, Selling 848,000 Records
by
in SecurityNewsA hacker, previously linked to the Tracelo breach, now claims to have breached Twilio’s SendGrid, leaking and selling data on 848,000 customers, including contact and company info. First seen on hackread.com Jump to article: hackread.com/hacker-twilio-sendgrid-data-breach-customer-data/
-
Oracle quietly admits data breach, days after lawsuit accused it of cover-up
by
in SecurityNews
Tags: access, attack, authentication, breach, cloud, compliance, credentials, crime, cve, cybersecurity, data, data-breach, endpoint, exploit, finance, fraud, hacker, identity, infrastructure, intelligence, law, oracle, resilience, risk, service, strategy, supply-chain, technology, theft, threat, vulnerabilityLawsuit challenges Oracle’s response: The reports of Oracle’s acknowledgement of the breach come just days after the company was hit with a class action lawsuit over its handling of the security breach.The lawsuit specifically addresses a major security breach discovered in March that reportedly compromised 6 million records containing sensitive authentication-related data from Oracle Cloud…
-
Mega-Datenleck bei Dating-Apps: 1,5 Mio. intime Fotos im Netz veröffentlicht
by
in SecurityNews
Tags: data-breachEin Mega-Datenleck bei Dating-Apps legt offen, wie sorglos viele Anbieter mit sensiblen Nutzerdaten umgehen. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/mega-datenleck-bei-dating-apps-15-mio-intime-fotos-im-netz-veroeffentlicht-312725.html
-
Halo ITSM Vulnerability Exposed Organizations to Remote Hacking
by
in SecurityNewsAn unauthenticated SQL injection vulnerability in Halo ITSM could have been exploited to read, modify, or insert data. The post Halo ITSM Vulnerability Exposed Organizations to Remote Hacking appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/halo-itsm-vulnerability-exposed-organizations-to-remote-hacking/
-
Cybersecurity Experts Slam Oracle’s Handling of Big Breach
by
in SecurityNewsTechnology Giant Accused of Using ‘Wordplay’ to Previously Deny Breach Reports. Cybersecurity experts have slammed Oracle’s handling of a large data breach that it’s reportedly confirming to 140,000 affected cloud infrastructure clients – but only verbally, and not in writing – following nearly two weeks of it having denied that any such breach occurred. First…
-
Texas State Bar warns of data breach after INC ransomware claims attack
by
in SecurityNewsThe State Bar of Texas is warning it suffered a data breach after the INC ransomware gang claimed to have breached the organization and began leaking samples of stolen data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/texas-state-bar-warns-of-data-breach-after-inc-ransomware-claims-attack/
-
Recent GitHub supply chain attack traced to leaked SpotBugs token
by
in SecurityNewsA cascading supply chain attack on GitHub that targeted Coinbase in March has now been traced back to a single token stolen from a SpotBugs workflow, which allowed a threat actor to compromise multiple GitHub projects. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/recent-github-supply-chain-attack-traced-to-leaked-spotbugs-token/
-
Hackers Exploit Apache Tomcat Flaw to Hijack Servers and Steal SSH Credentials
by
in SecurityNews
Tags: apache, attack, botnet, credentials, cyber, data-breach, exploit, flaw, hacker, linux, vulnerability, windowsA newly discovered attack campaign has exposed vulnerabilities in Apache Tomcat servers, allowing hackers to hijack resources and steal SSH credentials. Researchers from Aqua Nautilus revealed that these attacks, which weaponized botnets within 30 hours of discovery, employ encrypted payloads and advanced persistence mechanisms to infiltrate systems running both Windows and Linux platforms. The attackers…
-
AI Image Site GenNomis Exposed 47GB of Underage Deepfakes
by
in SecurityNewsCybersecurity researcher Jeremiah Fowler uncovers a massive 47.8GB database with disturbing AI-generated content belonging to GenNomis. First seen on hackread.com Jump to article: hackread.com/ai-image-site-gennomis-exposed-underage-deepfakes/
-
39 Million Secrets Leaked on GitHub in 2024
by
in SecurityNewsGitHub has announced new capabilities to help organizations and developers keep secrets in their code protected. The post 39 Million Secrets Leaked on GitHub in 2024 appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/39-million-secrets-leaked-on-github-in-2024/
-
Massive GitHub Leak: 39M API Keys Credentials Exposed How to Strengthen Security
by
in SecurityNewsOver 39 million API keys, credentials, and other sensitive secrets were exposed on GitHub in 2024, raising considerable alarm within the developer community and enterprises globally. The scale and impact of this leak have underscored the growing risks tied to improperly handled credentials and highlighted the urgent need for robust security practices. GitHub, the world’s…
-
Verizon Call Filter API flaw exposed customers’ incoming call history
by
in SecurityNewsA vulnerability in Verizon’s Call Filter feature allowed customers to access the incoming call logs for another Verizon Wireless number through an unsecured API request. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/verizon-call-filter-api-flaw-exposed-customers-incoming-call-history/
-
GitHub expands security tools after 39 million secrets leaked in 2024
by
in SecurityNewsOver 39 million secrets like API keys and account credentials were leaked on GitHub throughout 2024, exposing organizations and users to significant security risks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/github-expands-security-tools-after-39-million-secrets-leaked-in-2024/
-
Over 1,500 PostgreSQL Servers Hit by Fileless Malware Attack
by
in SecurityNewsA sophisticated malware campaign has compromised over 1,500 PostgreSQL servers, leveraging fileless techniques to deploy cryptomining payloads. The attack, identified by Wiz Threat Research and attributed to the threat actor group JINX-0126, exploits publicly exposed PostgreSQL instances configured with weak or default credentials. The attackers utilize these vulnerabilities to execute XMRig-C3 cryptominers without leaving detectable…
-
Royal Mail investigates data leak claims, no impact on operations
by
in SecurityNewsRoyal Mail is investigating claims of a security breach after a threat actor leaked over 144GB of data allegedly stolen from the company’s systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/royal-mail-investigates-data-leak-claims-no-impact-on-operations/
-
Royal Mail Investigates Data Breach Affecting Supplier
by
in SecurityNewsA cyber threat actor has claimed to have leaked 144GB of data from Royal Mail users First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/royal-mail-investigates-data/
-
Hacker stiehlt Kundendaten von Samsung Deutschland
by
in SecurityNewsSamsung Deutschland ist von einem Datenleck betroffen. Samsung DeutschlandBei Samsung Deutschland hat es offenbar ein massives Datenleck gegeben. Etwa 270.000 Kundendatensätze von Samsung Electronics Deutschland werden derzeit in einem Darknet-Forum angeboten. Ein krimineller Hacker mit dem Pseudonym ‘GHNA” will diese Daten kürzlich aus dem Support-System von Samsung kopiert haben.Dem Darknet-Post zufolge enthalten die geleakten Datensätze…
-
FTC chief flags data privacy concerns in 23andMe bankruptcy
by
in SecurityNewsThe company filed for bankruptcy after financial challenges over the past few years and;a massive data breach in 2023. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/ftc-chief-flags-data-privacy-risks-23andme-bankruptcy/744184/
-
ImageRunner Flaw Exposed Sensitive Information in Google Cloud
by
in SecurityNewsGoogle has patched a Cloud Run vulnerability dubbed ImageRunner that could have been exploited to gain access to sensitive data. The post ImageRunner Flaw Exposed Sensitive Information in Google Cloud appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/imagerunner-flaw-exposed-sensitive-information-in-google-cloud/
-
Top Data Breaches of March 2025
by
in SecurityNewsCyber threats continue to challenge organizations in 2025, and March saw its share of major breaches. From cloud providers to universities, sensitive data was exposed, raising concerns about security gaps… First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/top-data-breaches-of-march-2025/
-
Datenleck: Umgang mit Cyberangriff mündet in Sammelklage gegen Oracle
by
in SecurityNewsNach einem Datenleck verhält sich Oracle schon seit Wochen äußerst fragwürdig. Das könnte angesichts einer jüngst eingereichten Klage teuer enden. First seen on golem.de Jump to article: www.golem.de/news/datenleck-umgang-mit-cyberangriff-muendet-in-sammelklage-gegen-oracle-2504-194944.html
-
Oracle Health warnt vor Datenleck
by
in SecurityNews
Tags: access, ceo, cloud, computer, cyberattack, cybersecurity, cyersecurity, data-breach, hacker, Internet, login, oracle, password, supply-chain, usaHacker haben sich Zugriff auf Daten von Oracle Health verschafft.Während Oracle den Datenverstoß, der in der vergangenen Woche ans Licht kam, öffentlich abstreitet, informierte die Tochtergesellschaft Oracle Health kürzlich betroffene Kunden über ein Datenleck. Betroffen waren Daten von alten Datenmigrations-Server von Cerner, wie aus einem Bericht von Bleeping Computer hervorgeht. Oracle hatte den IT-Dienstleister für…
-
Hacker Leaks 270,000 Samsung Customer Records”, Stolen Credentials Were Left Unchecked for Years
by
in SecurityNewsIn a troubling security breach, a hacker exposed the personal data of over 270,000 Samsung customers in Germany, freely dumping it on the internet. The hack, attributed to a cybercriminal operating under the alias “GHNA,” occurred when the attacker accessed a system used by Samsung’s German customer service. According to cybersecurity firm Hudson Rock, the…
-
Riesiges Datenleck bei X: War es ein Insider-Job?
by
in SecurityNewsDie Profil-Daten von 2,87 Milliarden Nutzern von X (ehemals Twitter) sind auf der Plattform Breach Forum entdeckt worden. Angeblich handelt es sich um die Tat eines Ex-Mitarbeiters. First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/riesiges-datenleck-bei-x-war-es-ein-insider-job