Data Breach

US authorities release asylum seekers after leaking their data online

In brief Also: US terrorist no-fly list found left on unsecured server, Russian dark web drug markets go to war

Security23 Jan 2023 | 4

Crims steal data on 40 million T-Mobile US customers

Sixth snafu in five years? Crooks have this useless carrier on speed dial

Cyber-crime20 Jan 2023 | 11

PayPal says crooks poked around 35,000 accounts in credential stuffing attack

That passwordless option is looking really good right about now

Security19 Jan 2023 | 14

Mailchimp 'fesses up to second digital burglary in five months

Social engineering helped intruders break into customers' inboxes again

Cyber-crime19 Jan 2023 | 11

As if Elon didn't have enough problems – Twitter sued over leaky servers

Damages and security improvements? Or maybe settle for a neon bird light

Personal Tech19 Jan 2023 | 5

No more holidays for US telcos, FCC is cracking down

In Brief Also, LastPass faces class action, and Louisiana says that, while the internet may be for porn, ID is still required

Security08 Jan 2023 | 38

Twitter data dump: 200m+ account database now free to download

Updated No passwords, but plenty of stuff for social engineering and doxxing

Security05 Jan 2023 | 45

'Multiple security breaches' shut down trucker protest

10-7, there buddy, sorry

Security03 Jan 2023 | 94

Crooks copy source code from Okta’s GitHub repository

The hack wraps up a year of bad security incidents for identity

Security23 Dec 2022 | 13

On the 12th day of the Rackspace email disaster, it did not give to me …

Updated … a working Exchange inbox tree

CSO14 Dec 2022 | 58

Uber staff info leaks after supplier Teqtivity gets pwned

Thankfully no customer info – but the spotlight is back on third-party attacks

Security13 Dec 2022 | 2

ICE data dump reveals names, locations of 6,000+ asylum seekers

Your tax dollars at work

Personal Tech01 Dec 2022 | 9

Meta fined $275m after data-scraping fiasco leaked 533m Facebook users' profiles

Irish eyes aren't smiling

Personal Tech28 Nov 2022 | 26

Serendipitous discovery nets security researcher $70k bounty

In brief Also, a phishing gang goes Royal, while another employee at Snowden's old haunt gets caught nabbing data

Security20 Nov 2022 | 10

Australia blames Russia for harboring health insurance hackers

Crims accessed 10 million customer records and are releasing intimate medical details

Cyber-crime11 Nov 2022 | 21

Husband and wife nuclear warship 'spy' team get 20 years each

The Toebbes tried selling US Navy secrets, but handed them right to the FBI

Cyber-crime10 Nov 2022 | 27

Experian, T-Mobile US settle data spills for mere $16m

Two breaches: one in 2012, another in 2015 – saw 18m folks' records stolen

Cyber-crime08 Nov 2022 | 4

Breached health insurer won't pay ransom to protect customers, warns of more attacks

Australia's Medibank uses a government-approved Band-Aid to cover a gaping 10-milion-record wound

Cyber-crime07 Nov 2022 | 14

Royal Mail customer data leak shutters online Click and Drop

Customers complain of exposed order info, multiple charges — but still no postage

Security03 Nov 2022 | 25

Education tech giant gets an F for security after sensitive info on 40 million users stolen

Chegg it out: Four blunders in four years

CSO31 Oct 2022 | 6

Health insurer Medibank's data breach diagnosis keeps getting worse

All four million customers at risk of having records of medical treatments exposed

Cyber-crime26 Oct 2022 | 11

FTC slaps down Drizly CEO after 2.4m user records stolen from 'careless' booze app biz

Analysis At least this'll give some ammo to CISOs dying for stronger IT defenses

CSO26 Oct 2022 | 10

Alert: This ransomware preys on healthcare orgs via weak-ass VPN servers

FBI, CISA warn of Daixin gang after OakBend Medical Center hit

Cyber-crime24 Oct 2022 | 1

Blazing South Korean datacenter operator raided by cops, blames its own batteries

Asia In Brief PLUS: Australia boosts data breach fines; India outlet drops Meta allegations; AWS spices up Thailand's cloud; and more

Off-Prem24 Oct 2022 | 2

Oops, web trackers may have leaked 3 million patients' info

Scream with us: Aaaaaa-AAH

CSO20 Oct 2022 | 35

Cost of a health insurance security breach? NY watchdogs say it's $4.5m

Hundreds of thousands of people's sensitive info poorly protected

CSO19 Oct 2022 | 1

Verizon prepaid accounts hijacked by SIM swap crooks

Nightmare for those with one-time security codes texted to their phones

Security19 Oct 2022 | 7

Store credit card numbers in a debug log, lose millions of accounts. Cost? $1.9m

That's roughly 300,000 Shein crop tops

Cyber-crime14 Oct 2022 | 4

Mormon Church IT ransacked, data stolen by 'state-sponsored' cyber-thieves

Don't get your underwear in a twist

Cyber-crime14 Oct 2022 | 53

Insurer Medibank hit by targeted cyberattack

Hot on heels of Optus and Dialog breaches, criminals turn sights to insurance sector

Cyber-crime13 Oct 2022 | 1

Optus data breach prompts pincer movement of twin regulatory probes

Data retention requirements to be considered alongside infosec failings

Security11 Oct 2022 | 4

Toyota dev left key to customer info on public GitHub page for five years

'Oh what a feeling' when your contractor leaks site source code

Security11 Oct 2022 | 8

Intel Alder Lake BIOS code leak may contain vital secrets

Gurus say source includes secret hardware info, private signing key for Boot Guard protection

Security10 Oct 2022 | 13

Singtel confirms digital burglary at Dialog subsidiary

Second of Singapore telco's Australian businesses to be prised open by criminals in weeks

Cyber-crime10 Oct 2022 |

No Shangri-La for you: Top hotel chain confirms data leak

In Xanadu did Kubla Khan a stately pleasure-dome decree

Security05 Oct 2022 | 7

BlackCat malware lashes out at US defense IT contractor

In Brief Also, Amazon's Ring footage TV shows draws criticism, US v Soviet spying docs found, and more

Security02 Oct 2022 | 12

Samsung sued for gobbling up too much personal info that miscreants then stole

If you're gonna force everyone to register an account, at least protect that data, lawsuit argues

Cyber-crime27 Sep 2022 | 9

Significant customer data exposed in attack on Australian telco

Updated Subscribers have questions – like 'When were you going to tell us?'

Cyber-crime23 Sep 2022 | 14

Uber explains how it was pwned this month, points finger at Lapsus$ gang

From annoying MFA alerts to 'several internal systems' infiltrated

CSO19 Sep 2022 | 26

Cisco: Yes, Yanluowang leaked our data. No, it's not serious

Everything's fine!

Security13 Sep 2022 | 4

Shape-shifting cryptominer savages Linux endpoints and IoT

In brief Also, Authorities seize WT1SHOP selling 5.8m sets of PII, The North Face users face tough security hike

Security10 Sep 2022 | 10

Cyberattack brings down InterContinental Hotels' booking systems

Online booking systems and other services knocked offline amid network intrusion

Cyber-crime06 Sep 2022 | 16

NATO investigates after criminals claim to be selling its stolen missile plans

In brief Also, Microsoft’s one-click TikTok trick, a 14-year old Aussie cracks ASD encryption in an hour, and more

Security05 Sep 2022 | 15

Now Oktapus gets access to some DoorDash customer info via phishing attack

Double check who exactly you're sending your username and password to, eh?

Cyber-crime26 Aug 2022 | 8

Attacker snags account details from streaming service Plex

'Limited subset' of users have emails, usernames, and hashed passwords stolen from the platform

Cyber-crime24 Aug 2022 | 18

Smartphone gyroscopes threaten air-gapped systems, researcher finds

Network interface card LEDs are a risk too by blinking in Morse code

CSO23 Aug 2022 | 54

Higher risks and premiums are creating critical gap in cyber insurance

Black Hat Most organizations don’t have the financial resources necessary to address ransomware and other cyberattacks, BlackBerry says

Security11 Aug 2022 | 4

Samsung adds 'repair mode' that hides data on Galaxy smartphones in South Korea

Something Hunter Biden probably wishes computers had ages ago

Personal Tech01 Aug 2022 | 8

BreachForums booms on the back of billion-record Chinese data leak

Plenty of recent users appear to be from China, and hoping for more leaks of local data

Security29 Jul 2022 |

Businesses confess: We pass cyberattack costs onto customers

Cover an average of $4.4 million per raid ourselves? No chance, mate

Security29 Jul 2022 | 21

US court system suffered 'incredibly significant attack' – sealed files at risk

Effects still being felt today across US government

Security29 Jul 2022 | 15

LockBit ransomware gang claims it ransacked Italy’s tax agency

Miscreants boast of 78GB haul, officials say everything's fine

Security26 Jul 2022 | 7

T-Mobile US to cough up $550m after info stolen on 77m customers

Oops, did the Un-carrier under-count by 29m punters?

CSO25 Jul 2022 | 8

Twitter launches probe after miscreants claim to have swiped 5.4m users' details

And yes, Musk is back in the headlines, denying another affair

Cyber-crime25 Jul 2022 | 8

Microsoft sunsets Windows built-in data leak prevention

The alternative is a paid subscription service. What's the bet it's more expensive than the current offering?

Software22 Jul 2022 | 10

Walmart-controlled flight booking service suffers substantial data leak

India's Cleartrip is being very opaque about what happened

Security19 Jul 2022 | 7