Tag: data-breach
-
CISA warns companies to secure credentials amid claims of Oracle Cloud data breach
by
in SecurityNewsThe agency is asking organizations to come forward if they detect suspicious activity or other evidence of a compromise. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cisa-secure-credentials-oracle-cloud-data/745613/
-
Hacker Leaks 33,000 Employee Records in Third-Party API Breach
by
in SecurityNewsA hacker has exposed the personal records of over 33,000 employees after discovering unrestricted endpoints belonging to a major technology service provider. The breach, first reported by cybersecurity platform CloudSEK’s BeVigil, highlights alarming gaps in API security that could have far-reaching consequences for both the affected organization and its clients. CloudSEK’s BeVigil, a platform specializing…
-
Anonymous Releases 10TB of Leaked Data Targeting Russia
by
in SecurityNewsRecently, the hacktivist collective Anonymous has claimed responsibility for a sweeping cyberattack against Russia, releasing a staggering 10 First seen on securityonline.info Jump to article: securityonline.info/anonymous-releases-10tb-of-leaked-data-targeting-russia/
-
Over 16,000 Fortinet devices compromised with symlink backdoor
by
in SecurityNewsOver 16,000 internet-exposed Fortinet devices have been detected as compromised with a new symlink backdoor that allows read-only access to sensitive files on previously compromised devices. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/over-16-000-fortinet-devices-compromised-with-symlink-backdoor/
-
UK Fines Law Firm 60,000 Pounds for Ransomware Data Breach
by
in SecurityNewsFirm Failed to Close Outdated User Account, Waited 43 Days to Notify Regulators. The U.K. Information Commissioner’s Office imposed a fine of 60,000 pounds against Liverpool-based law firm DDP Law for GDPR violations relating to a 2022 ransomware hack and data leak that exposed sensitive information including the details of its clients’ cases. First seen…
-
More than 100,000 had information stolen from Hertz through Cleo file share tool
by
in SecurityNewsCar rental giant Hertz has been notifying state regulators of a data breach that occurred through third-party file sharing software. Tens of thousands of people are affected, but the company hasn’t specified a total number. First seen on therecord.media Jump to article: therecord.media/hertz-data-breach-notifications-cleo-vulnerability
-
Hertz Data Breach Exposes Customer Information in Cleo Zero-Day Attack
by
in SecurityNewsHertz has confirmed a data breach exposing customer data after a zero-day attack targeting file transfer software from Cleo Communications First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/hertz-data-breach-exposes-customer/
-
Hertz Confirms Data Breach After Hackers Stole Customer PII
by
in SecurityNewsHertz confirms data breach linked to Cleo software flaw; Cl0p ransomware group leaked stolen data, exposing names, driver’s… First seen on hackread.com Jump to article: hackread.com/hertz-confirms-data-breach-hackers-stole-customer-pii/
-
American Sigh
by
in SecurityNewsA long, long time ago I can still remember How those CVEs would make me smile And I knew if I had my chance To patch a vuln or take a stance Maybe we’d be secure for a while But April ides made me shiver With each leaked memo and press release delivered Bad news……
-
Erneuter Datenabfluss bei Melting Mind?
by
in SecurityNewsEs gibt Hinweise auf ein neues Datenleck bei Melting Mind.Noch am Dienstag (15. April) berichtete der Norddeutsche Rundfunk NDR, dass Melting Mind bei dem Cyberangriff im vergangenen Jahr größeren Schaden abwenden konnte. Laut einem Bericht von heise online hat das Unternehmen jedoch weiterhin Sicherheitsprobleme.So habe eine Suchanfrage am selben Tag in der Schwachstellensuchmaschine Leakix eine…
-
Insurance firm Lemonade warns of breach of thousands of driving license numbers
by
in SecurityNewsA data breach at insurance firm Lemonade left the details of thousands of drivers’ licenses exposed for 17 months. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/insurance-firm-lemonade-warns-of-breach-of-thousands-of-driving-license-numbers
-
Government contractor Conduent disclosed a data breach
by
in SecurityNewsThe business services provider Conduent told the SEC a January cyberattack exposed personal data, including names and Social Security numbers. The business services provider Conduent revealed that personal information, including names and Social Security numbers, was stolen in a January cyberattack. In January, Conduent confirmed a cyberattack caused service disruptions after agencies in multiple US…
-
Quellcode und Daten geleakt: 4chan nach mutmaßlichem Hackerangriff offline
by
in SecurityNews4chan hat offenbar den Unmut einer Konkurrenzplattform auf sich gezogen. Dort kursieren Screenshots von internen Tools, Datenbanken, E-Mail-Listen und mehr. First seen on golem.de Jump to article: www.golem.de/news/quellcode-und-daten-geleakt-4chan-nach-mutmasslichem-hackerangriff-offline-2504-195407.html
-
Datenleck bei Autovermietung: Prominente Hacker erbeuten Kundendaten von Hertz
by
in SecurityNewsUnter anderem von Hertz erfasste Führerscheindaten, Zahlungsinformationen und Angaben über Unfallverletzungen sind in die Hände von Hackern gelangt. First seen on golem.de Jump to article: www.golem.de/news/datenleck-bei-autovermietung-prominente-hacker-erbeuten-kundendaten-von-hertz-2504-195401.html
-
MITRE Ends CVE Program Support Leaked Internal Memo Confirms Departure
by
in SecurityNewsA leaked internal memo dated April 15, 2025, has sent shockwaves through the cybersecurity community, revealing that MITRE’s contract to operate the Common Vulnerabilities and Exposures (CVE) program is set to expire today, April 16, 2025. The letter, reportedly obtained from a reliable source and addressed to CVE Board Members, is signed by Yosry Barsoum,…
-
ICICI Bank Ransomware Breach: A Stark Reminder of Supply Chain Risk and the Need for Real-Time Cyber Vigilance
by
in SecurityNewsThe recent ransomware breach tied to ICICI Bank”, claimed by the LockBit group”, has raised fresh concerns about the fragility of digital ecosystems and third-party risk. While official confirmations remain limited, leaked files and dark web chatter suggest that attackers accessed systems through a vendor relationship and exfiltrated over 3 TB of sensitive data, including…
-
4chan, the ‘internet’s litter box,’ appears to have been pillaged by rival forum
by
in SecurityNewsSource code, moderator info, IP addresses, more allegedly swiped and leaked First seen on theregister.com Jump to article: www.theregister.com/2025/04/15/4chan_breached/
-
Landmark Admin data breach impact now reaches 1.6 million people
by
in SecurityNewsLandmark Admin has issued an update to its investigation of a cyberattack it suffered in May 2024, increasing the number of impacted individuals to 1.6 million. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/landmark-admin-data-breach-impact-now-reaches-16-million-people/
-
Über 216.000 Daten von Samsung-Kunden geleakt: So überprüft ihr, ob ihr betroffen seid
by
in SecurityNews
Tags: data-breachFirst seen on t3n.de Jump to article: t3n.de/news/216000-daten-samsung-kunden-geleakt-ueberprueft-betroffen-1683273/
-
Insurance Firm Lemonade Says API Glitch Exposed Some Driver’s License Numbers
by
in SecurityNewsLemonade says the incident is not material and that its operations were not compromised, nor was its customer data targeted. The post Insurance Firm Lemonade Says API Glitch Exposed Some Driver’s License Numbers appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/insurance-firm-lemonade-says-api-glitch-exposed-some-drivers-license-numbers/
-
Hertz warns UK customers of Cleo-linked data breach
by
in SecurityNewsCar hire giant Hertz reveals UK customer data was affected in a cyber incident orchestrated via a series of vulnerabilities in Cleo managed file transfer products First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366622655/Hertz-warns-UK-customers-of-Cleo-linked-data-breach
-
Notorious image board 4chan hacked and internal data leaked
by
in SecurityNewsThe infamous website was taken down and working intermittently, while hackers leaked alleged data like moderators email addresses, and source code. First seen on techcrunch.com Jump to article: techcrunch.com/2025/04/15/notorious-image-board-4chan-hacked-and-internal-data-leaked/
-
Hertz data breach: Customers in US, EU, UK, Australia and Canada affected
by
in SecurityNewsAmerican car rental company Hertz has suffered a data breach linked to last year’s exploitation of Cleo zero-day vulnerabilities by a ransomware gang. The breach … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/04/15/hertz-data-breach-customers-in-us-eu-uk-australia-and-canada-affected/
-
UK Software Firm Exposed 1.1TB of Healthcare Worker Records
by
in SecurityNews8M UK healthcare worker records, including IDs and financial data, exposed due to a misconfigured staff management database… First seen on hackread.com Jump to article: hackread.com/uk-software-firm-exposed-healthcare-worker-records/
-
Cyberangriff kostet IKEA-Betreiber mehrere Millionen
by
in SecurityNewsDie Folgen des Ransomware-Angriffs auf den Franchise-Nehmer der IKEA-Filialen in Südosteuropa sind noch immer zu spüren.Ende des vergangenen Jahres meldete die Fourlis Group, dass die technischen Probleme der IKEA-Onlineshops auf ‘böswillige externe Handlungen” zurückzuführen seien. Aus der Mitteilung ging hervor, dass der Cyberangriff sich im November 2024 ereignete und die Geschäftstätigkeit in Griechenland, Zypern, Bulgarien…
-
Incomplete patching leaves Nvidia, Docker exposed to DOS attacks
by
in SecurityNewsMitigations include restricting Docker access: CVE-2024-0132 first received a fix in September 2024, which did not fully patch the flaw and left a patch bypass issue tracked as CVE-2025-23359. Nvidia fixed the bypass in February which Trend Micro believes to be lacking.The problem is that the fix, issued with the version 1.17.4 update, includes an…
-
Justifying Investments in Advanced IAM Technologies
by
in SecurityNewsWhy is IAM Technology Investment Crucial? A data breach can have devastating consequences, impacting customer trust and incurring heavy financial losses. Unlike traditional password protection, the innovative non-human identities (NHIs) and secrets management approach offers robust protection from such breaches. However, justifying investments in such avant-garde strategies, specifically Identity and Access Management (IAM) technologies, is……