RansomHub claims to net data hat-trick against Bologna FC Crooks say they have stolen sensitive files on managers and players Cyber-crime30 Nov 2024 | 2
Ransom gang claims attack on NHS Alder Hey Children's Hospital Second alleged intrusion on English NHS org systems this week Cyber-crime29 Nov 2024 | 21
Helpline for Yakuza victims fears it leaked their personal info Organized crime types tend not to be kind to those who go against them, so this is nasty Security22 Nov 2024 | 21
Keyboard robbers steal 171K customers' data from AnnieMac mortgage house Names and social security numbers of folks looking for the biggest loan of their lives exposed Cyber-crime15 Nov 2024 | 6
Cybercriminal devoid of boundaries gets 10-year prison sentence Serial extortionist of medical facilities stooped to cavernous lows in search of small payouts Cyber-crime14 Nov 2024 | 6
Kids' shoemaker Start-Rite trips over security again, spilling customer card info Updated Full details exposed, putting shoppers at serious risk of fraud Cyber-crime14 Nov 2024 | 14
Amazon confirms employee data exposed in leak linked to MOVEit vulnerability Over 5 million records from 25 organizations posted to black hat forum Cyber-crime12 Nov 2024 | 2
FBI issues warning as crooks ramp up emergency data request scams Just because it's .gov doesn't mean that email is trustworthy Cyber-crime11 Nov 2024 | 12
Cyberattackers stole Microlise staff data following DHL, Serco disruption Experts say incident has 'all the hallmarks of ransomware' Cyber-crime06 Nov 2024 | 5
Columbus, Ohio, confirms 500K people affected by Rhysida ransomware attack Victims were placed in serious danger following highly sensitive data dump Cyber-crime04 Nov 2024 | 5
Healthcare Services Group discloses 'cybersecurity incident' in SEC filing Laundry and dining provider still investigating cause and scope Cybersecurity Month18 Oct 2024 | 5
Troubled US insurance giant hit by extortion after data leak Globe Life claims blackmailers shared stolen into with short sellers Security17 Oct 2024 |
Brazilian police claim they've cuffed serial cybercrook behind FBI and Airbus attacks Early stage opsec failures lead to landmark arrest of suspected serial data thief Cybersecurity Month17 Oct 2024 | 3
US contractor pays $300K to settle accusation it didn't properly look after Medicare users' data Resolves allegations it improperly stored screenshots containing PII that were later snaffled Cybersecurity Month16 Oct 2024 | 7
US healthcare org admits up to 400,000 people's personal info was snatched It waited till just before Columbus Day weekend to make mandated filing, but don't worry, we saw it Cybersecurity Month14 Oct 2024 | 3
Healthcare attacks spread beyond US – just ask India's Star Health Updated Acknowledges bulk customer data leak weeks after Telegram channels dangled it online Cyber-crime11 Oct 2024 | 1
Internet Archive user info stolen in cyberattack, succumbs to DDoS 31M folks' usernames, email addresses, salted-encrypted passwords now out there Cybersecurity Month10 Oct 2024 | 22
About a quarter million Comcast subscribers had their data stolen from debt collector Cable giant says ransomware involved, FBCS keeps schtum Cybersecurity Month04 Oct 2024 | 6
Sensitive data on 61K+ patients accessed in Alabama hospital cyberattack Intruder pored over medical records, insurance details, Social Security numbers in some cases Cybersecurity Month03 Oct 2024 |
Northern Ireland cops whose info was leaked in 2023 may get £240M+ damages Officers put in danger when republican dissidents grabbed hold of their names and details Legal25 Sep 2024 | 2
Apple's latest macOS release is breaking security software, network connections Infosec In Brief PLUS: Payer of $75M ransom reportedly identified; Craigslist founder becomes security philanthropist, and more Security23 Sep 2024 | 22
Cybercrooks strut away with haute couture Harvey Nichols data Nothing high-end about the sparsely detailed, poorly publicized breach Cyber-crime20 Sep 2024 | 10
Thousands of orgs at risk of knowledge base data leaks via ServiceNow misconfigurations Updated Better check your widgets, people Research19 Sep 2024 | 7
Rhysida ransomware gang ships off Port of Seattle data for $6M Auction acts as payback after authority publicly refuses to pay up Cyber-crime17 Sep 2024 | 2
Down and out: Aegon's pension pothole and TfL's mystery 'maintenance' When is maintenance maintenance, and when is it 'we've been pwned'? On-Prem10 Sep 2024 | 15
1.7M potentially pwned after payment services provider takes a year to notice break-in Criminals with plenty of time on their hands may now have credit card details Cyber-crime09 Sep 2024 | 17
Kremlin-linked COLDRIVER crooks take pro-democracy NGOs for phishy ride The latest of many attempts to stifle perceived threats to Putin's regime Security09 Sep 2024 | 10
Check your IP cameras: There's a new Mirai botnet on the rise Infosec in brief Also, US offering $2.5M for Belarusian hacker, Backpage kingpins jailed, additional MOVEit victims, and more Security31 Aug 2024 | 22
Plane tracker app FlightAware admits user data exposed for years Updated Privacy blunder alert omits number of key details Security20 Aug 2024 | 42
National Public Data tells officials 'only' 1.3M people affected by intrusion Investigators previously said the number was much, much higher Cyber-crime19 Aug 2024 | 6
RansomHub-linked EDR-killing malware spotted in the wild Infosec in brief Also: Your external-facing NetSuite sites need a review; five popular malware varieties for Q2, and more Security19 Aug 2024 | 1
After nearly 3B personal records leak online, Florida data broker confirms it was ransacked by cyber-thieves Names, addresses, Social Security numbers, more all out there Cyber-crime16 Aug 2024 | 43
Enzo Biochem ordered to cough up $4.5 million over lousy security that led to ransomware disaster Three state attorneys general probed the company and found plenty to chastise Cyber-crime14 Aug 2024 | 3
Attacker steals personal data of 200K+ people with links to Arizona tech school Nearly 50 different data points were accessed by cybercrim Cyber-crime12 Aug 2024 | 7
UK Electoral Commission slapped for basic cybersecurity fails It took 13 months to notice 40 million voters' data was compromised CSO31 Jul 2024 | 25
Intruders at HealthEquity rifled through storage, stole 4.3M people's data No mention of malware or ransomware – somewhat of a rarity these days Cyber-crime29 Jul 2024 | 5
China ponders creating a national 'cyberspace ID' Because clearly it's better for Beijing to know who you are than for every ISP and social service to keep its own records Public Sector29 Jul 2024 | 19
Secure Boot useless on hundreds of PCs from major vendors after key leak Infosec in brief Plus: More stalkerware exposure; a $16M TracFone fine; Ransomware victims don't use MFA, and more Security29 Jul 2024 | 36
Data pilfered from Pentagon IT supplier Leidos Updated With numerous US government agency customers, any leak could be serious Cyber-crime24 Jul 2024 | 2
Cellebrite got into Trump shooter's Samsung device in just 40 minutes Infosec in brief Also: Second-string Russian hackers sanctioned; Senators demand answers from Snowflake, and more Security22 Jul 2024 | 63
London council accuses watchdog of 'exaggerating' danger of 2020 raid on residents' data You escaped a big fat fine! Take the win and run, won’t you? Malware Month17 Jul 2024 | 26
Rite Aid admits 2.2 million people’s data stolen by criminals RansomHub allegedly strikes again as its star continues to rise in the cybercrime scene Malware Month16 Jul 2024 | 6
Call, text logs for 110M AT&T customers stolen from compromised cloud storage Snowflake? Snowflake Cyber-crime12 Jul 2024 | 22
Snowflake lets admins make MFA mandatory across all user accounts Company announces intent following Ticketmaster, Santander break-ins Security10 Jul 2024 | 4
Malware that is 'not ransomware' wormed its way through Fujitsu Japan's systems IT giant says data exfiltration was extremely difficult to detect Malware Month10 Jul 2024 | 8
Not-so-OpenAI allegedly never bothered to report 2023 data breach security in brief Also: F1 authority breached; Prudential victim count skyrockets; a new ransomware actor appears; and more Security08 Jul 2024 | 5
Affirm fears customer info pilfered during ransomware raid at Evolve Bank Number of partners acknowledging data theft continues to rise Malware Month02 Jul 2024 | 2
Indonesian government didn't have backups of ransomwared data, because DR was only an option President has ordered a datacenter audit and made backups mandatory Malware Month01 Jul 2024 | 23
Microsoft tells yet more customers their emails have been stolen Infosec in brief Plus: US auto dealers still offline; Conti coders sanction; Rabbit R1 hardcoded API keys; and more Security01 Jul 2024 | 24
Microsoft blamed for million-plus patient record theft at US hospital giant Updated Probe: Worker at speech-recog outfit Nuance wasn't locked out after firing CSO26 Jun 2024 | 20
Levi's and more affected in pants-dropping week of data breaches A busy few days for security teams Cyber-crime24 Jun 2024 | 5
Qilin cyber scum leak data they claim belongs to London hospitals’ pathology provider At least they didn’t get paid their $50M ransom demand Cyber-crime21 Jun 2024 | 11
Coding error in forgotten API blamed for massive data breach Australian telco Optus allegedly left redundant website with poor access controls online for years Security21 Jun 2024 | 16
Qilin: We knew our Synnovis attack would cause a healthcare crisis at London hospitals Interview Cybercriminals claim they used a zero-day to breach pathology provider’s systems Cyber-crime20 Jun 2024 | 25
NHS boss says Scottish health board wouldn't give cyberattackers what they wanted CEO of Dumfries and Galloway admits circa 150K people should assume their details leaked Cyber-crime18 Jun 2024 | 13
Blackbaud has to cough up a few million dollars more over 2020 ransomware attack Four years on and it's still paying for what California attorney general calls 'unacceptable' practice Cyber-crime17 Jun 2024 | 3
UK's Total Fitness exposed nearly 500K images of members, staff through unprotected database Exclusive Health club chain headed for the spa on choose-a-password day Security17 Jun 2024 | 24
Student's flimsy bin bags blamed for latest NHS data breach Confidential patient information found by member of the public Security13 Jun 2024 | 63
White House report dishes deets on all 11 major government breaches from 2023 The MOVEit breach and ransomware weren’t kind to the Feds last year CSO12 Jun 2024 | 1
Pure Storage pwned, claims data plundered by crims who broke into Snowflake workspace Secure storage company hasn't spilled details on how they got in Cyber-crime11 Jun 2024 | 1
Cylance clarifies data breach details, except where the data came from Customers, partners, operations remain uncompromised, BlackBerry says Security11 Jun 2024 | 2
UK and Canada's data chiefs join forces to investigate 23andMe mega-breach Three-pronged approach aims to uncover any malpractice at the Silicon Valley biotech biz Cyber-crime11 Jun 2024 | 14