Security
320K+ exposed in Monroe University hacker attack
The New York-based University had somebody roaming its systems for two weeks, accessing a trove of sensitive information, which includes everything from passport numbers to financial account information.
Read more about 320K+ exposed in Monroe University hacker attack
Microsoft hits cybercriminals where it hurts: notorious infrastructure provider disrupted
Many hackers woke up on Wednesday to find a critical part of their operations suddenly gone. They could no longer access the disposable virtual machine provider, which powers fraud, phishing, and other cybercrimes.
Read more about Microsoft hits cybercriminals where it hurts: notorious infrastructure provider disrupted
1M+ customer records stolen from Orange, attackers claim
The leaked Orange database supposedly includes full customer names, national ID numbers, and other personally identifiable information (PII) belonging to the mobile carrier’s customers.
Read more about 1M+ customer records stolen from Orange, attackers claim
South Korea’s Kyowon investigates ransomware attack as millions of accounts face exposure
South Korean authorities are investigating a suspected ransomware attack at Kyowon Group that could affect millions of user accounts. The company states that it is still assessing whether personal data was actually compromised.
Read more about South Korea’s Kyowon investigates ransomware attack as millions of accounts face exposure
Hackers could access data of 71,000 patients at Belgian hospitals
A Belgian cybersecurity expert and his team discovered that three hospitals in Flanders, the northern part of Belgium, were susceptible to a data breach. The vulnerabilities have been patched.
Read more about Hackers could access data of 71,000 patients at Belgian hospitals
Discount giant caught promoting illegal IPTV subscription
An anti-piracy group has thwarted a discount campaign where the popular American marketplace, Groupon, was advertising pirated IPTV packages at extremely low prices.
Read more about Discount giant caught promoting illegal IPTV subscription
The site determined to release the leaked names of ICE agents is under a cyber attack
The ICE List project, currently under attack online, remains committed to releasing information on ICE and DHS agents.
Read more about The site determined to release the leaked names of ICE agents is under a cyber attack
45M French records leaked after suspected attacker exposed data trove
The exposed dataset contained numerous French records, from population registry data to car insurance information, totalling tens of millions of records.
Read more about 45M French records leaked after suspected attacker exposed data trove
Free Mobile and Free fined $49 million in France after major data theft
CNIL, the French data protection regulator, has levied fines of €42 million ($49 million) on telecom companies Free and Free Mobile for failing to ensure the security of their subscribers’ data prior to a data breach in 2024.
Read more about Free Mobile and Free fined $49 million in France after major data theft
why India wants your phone's source code and why tech giants are fighting back
A reported proposal to tighten smartphone security standards in India has put the spotlight on an unusual demand: access to proprietary smartphone source code. As manufacturers push back and the government disputes the reporting, here’s what the debate is really about, why it matters, and what it could mean for users.
Read more about why India wants your phone's source code and why tech giants are fighting back
Fix or ditch: CISA orders federal agencies to stop using Gogs
The US Cybersecurity and Infrastructure Security Agency (CISA) has told federal agencies to stop using Gogs or immediately apply mitigations after adding a high-severity vulnerability in the self-hosted Git service to its Known Exploited Vulnerabilities (KEV) catalog.
Read more about Fix or ditch: CISA orders federal agencies to stop using Gogs
78M Discord files peddled online: Is the data leak real?
For days now, one cybercriminal gang has been attempting to convince fellow hackers that it has nearly 80 million records taken from Discord servers. However, the claims of a massive Discord data breach don’t align with the market's lackluster reception.
Read more about 78M Discord files peddled online: Is the data leak real?
New powerful Linux malware detected targeting critical systems
Highly sophisticated and previously unseen modular Linux malware has been discovered by Check Point Research. With many capabilities, it is specifically designed to attack cloud infrastructure and lurk in virtualized environments that power critical systems.
Read more about New powerful Linux malware detected targeting critical systems
Target source code for sale on dark web as employees confirm it’s authentic
Hackers are reportedly attempting to sell internal source code belonging to Target Corporation, after publishing what appears to be a sample of stolen code repositories on a public software development platform.
Read more about Target source code for sale on dark web as employees confirm it’s authentic
Surgeries postponed in two Belgian hospitals due to cyberattack
On Tuesday, two Belgian hospitals had to cancel approximately 70 surgeries because of the impact of a cyberattack.
Read more about Surgeries postponed in two Belgian hospitals due to cyberattack
Dutch police warn that their IT infrastructure is “outdated and vulnerable”
The Dutch National Police and the Public Prosecution Service say that their IT systems are “outdated” and “vulnerable to external attacks.” The brass is asking for tough choices and substantial investments from the government.
Read more about Dutch police warn that their IT infrastructure is “outdated and vulnerable”
Hackers weaponize LinkedIn comments in new phishing campaign
LinkedIn users beware: a new phishing campaign has surfaced in which hackers post directly in public comments, posing as a LinkedIn autobot flagging policy violations.
Read more about Hackers weaponize LinkedIn comments in new phishing campaign
Hackers’ botnet is exploiting 1234 passwords to steal crypto
Hackers are hijacking tens of thousands of poorly secured servers to build a botnet that targets cryptocurrency wallets containing funds. More than 50,000 internet-facing servers with weak passwords may be vulnerable, according to research.
Read more about Hackers’ botnet is exploiting 1234 passwords to steal crypto
Scammers are tricking Facebook users with login pop-ups that look real
Scammers are harvesting Facebook credentials using fake login popups that are indistinguishable from the real ones, even showing what appears to be a legitimate link (URL). The scam uses so so-called “browser-in-the-browser” technique, making fake pages almost impossible to spot.
Read more about Scammers are tricking Facebook users with login pop-ups that look real
Dell data breach claimed, but researchers are skeptical
A threat actor has claimed a data breach of the tech giant Dell, supposedly accessing thousands of employee emails linked to Facebook, Steam, and other social media accounts.
Read more about Dell data breach claimed, but researchers are skeptical
