Security
ShinyHunters claims Kodak hack, threatens to leak 2.2M records
The ShinyHunters gang on Monday claims it has stolen more than 2.2 million customer and corporate records from Eastman Kodak, targeting the American photography giant as part of its latest “pay or leak” ransomware campiagn.
Read more about ShinyHunters claims Kodak hack, threatens to leak 2.2M records
Google says Chinese-linked hackers stole defence and AI data from US and Canadian labs for a year
A Chinese-linked hacking group spent more than a year secretly stealing data from US and Canadian academic, medical and military research institutions, before being detected, Google said on Monday.
Read more about Google says Chinese-linked hackers stole defence and AI data from US and Canadian labs for a year
Hackers demand $2M from Nintendo over alleged data breach
A threat actor is demanding $2 million from Nintendo after allegedly stealing a decade's worth of corporate data.
Read more about Hackers demand $2M from Nintendo over alleged data breach
Hackers claim massive Council of Europe breach: troves of personal data exposed
The gang is claiming a massive data breach that exposes nearly half a million HR and payroll records, as well as COE employee data such as names and home addresses.
Read more about Hackers claim massive Council of Europe breach: troves of personal data exposed
Over 73K accounts caught up in breach of France’s government messaging platform Tchap
According to DINUM, the digital affairs directorate of the French government, a total of 73,467 users of the French instant messaging service and collaboration tool Tchap have been affected by the recent breach.
Read more about Over 73K accounts caught up in breach of France’s government messaging platform Tchap
Poland to criminalise violent livestreaming with jail terms of up to 5 years
Polish lawmakers have backed new legislation aimed at tackling so-called “trash streaming”, introducing prison sentences of up to five years for broadcasting serious crimes such as murder or rape, as well as content involving animal cruelty or violence used to humiliate others.
Read more about Poland to criminalise violent livestreaming with jail terms of up to 5 years
Hackers claim theft of source code from AI giant Dynatrace
A hacker claims to have stolen internal Dynatrace GitHub repositories, potentially exposing source code and the company's cloud infrastructure.
Read more about Hackers claim theft of source code from AI giant Dynatrace
ShinyHunters claim JCPenney retail data theft involving SSNs and payroll files
ShinyHunters has targeted JCPenney, issuing the company an ultimatum: release highly sensitive identity data publicly or face further attacks.
Read more about ShinyHunters claim JCPenney retail data theft involving SSNs and payroll files
Chinese hackers use fake FIFA sites to steal card data in Facebook-targeted scam
A Chinese-linked cybercrime operation is using fake FIFA World Cup ticket websites to monitor victims as they shop, harvest payment card details, and intercept security codes used by banks to verify transactions. The scam is using Facebook and Instagram as its main channels.
Read more about Chinese hackers use fake FIFA sites to steal card data in Facebook-targeted scam
Was New York Knicks owner breached? ShinyHunters say so
Madison Square Garden Sports (MSGS), the company behind the NBA’s New York Knicks basketball club and the NHL's New York Rangers, has been claimed by the notorious ShinyHunters hacker collective.
Read more about Was New York Knicks owner breached? ShinyHunters say so
Google links ShinyHunters to Oracle PeopleSoft zero-day extortion campaign targeting universities
Alphabet's cybersecurity unit Mandiant and Google Threat Intelligence Group said Thursday they had identified an active compromise and extortion campaign targeting Oracle's PeopleSoft enterprise software, which they attributed to the hacking group ShinyHunters.
Read more about Google links ShinyHunters to Oracle PeopleSoft zero-day extortion campaign targeting universities
VRChat data breach exposes 2.4M users, but they say it’s fake
VRChat, the online virtual world platform, allegedly exposed 2.4 million users in a data breach. However, the company says that it’s all fake.
Read more about VRChat data breach exposes 2.4M users, but they say it’s fake
Ozempic maker Novo Nordisk says clinical trial patient data copied in cyberattack
Novo Nordisk said on Thursday it has identified a security incident in which certain information, including patient data from some clinical trials, was copied externally without authorization from its internal IT systems.
Read more about Ozempic maker Novo Nordisk says clinical trial patient data copied in cyberattack
Hacker group boasts about Ralph Lauren data breach: 220GB allegedly stolen
The notorious ShinyHunters hacker collective claims to have stolen troves of data from American fashion giant Ralph Lauren.
Read more about Hacker group boasts about Ralph Lauren data breach: 220GB allegedly stolen
Hackers claim massive data breach affecting 4.9M records, but Wise denies any breach
Hackers claim that millions of Wise customer records, including ID card numbers, are for sale, but Wise said there is no signs of compromise.
Read more about Hackers claim massive data breach affecting 4.9M records, but Wise denies any breach
2.4 billion TikTok user records leaked online, hackers claim
A hacker is advertising what they claim is a 2.4 billion-record TikTok user data leak exposing personal user details. Our researchers believe the data could come from infostealers.
Read more about 2.4 billion TikTok user records leaked online, hackers claim
Chrome update will soon disable adblockers for good
Google Chrome’s browser extension framework has received a major update to enhance security.
Read more about Chrome update will soon disable adblockers for good
US seizes 13 website domains tied to alleged Chinese intelligence collection
Federal authorities announced on Wednesday the seizure of 13 internet domains tied to what the US Justice Department called fake consulting firms designed to recruit current or former US government and military employees to provide information to suspected Chinese agents.
Read more about US seizes 13 website domains tied to alleged Chinese intelligence collection
Got hacked? The EU wants every company to explain data breaches using the same reporting form
A company that suffers a data breach in Europe may soon have less paperwork to deal with. The European Data Protection Board (EDPB) has developed a common data breach notification template that all organizations in the EU will soon be able to use in the event of a data breach.
Read more about Got hacked? The EU wants every company to explain data breaches using the same reporting form
China-linked JDY botnet rapidly exploits new flaws, raising fresh Volt Typhoon concerns
A covert botnet linked to the Chinese nation-state actors Volt Typhoon – and first observed in 2024 – has more than doubled in size and is now actively targeting the US military and associated entities, new research finds.
Read more about China-linked JDY botnet rapidly exploits new flaws, raising fresh Volt Typhoon concerns
