July 2024

Hackers Leak Data of 440,000 Taylor Swift Tickets 2024-07-10 at 10:37 By Keira Waddell Hackers have gained access to 440,000 Taylor Swift Eras Tour tickets, and are demanding a multi-million dollar ransom from Ticketmaster. The hacker group, ShinyHunters, announced on BreachForums that they possess barcode data for hundreds of thousands of tickets and are threatening […]

‘Protected Health Information’ Stolen in HealthEquity Breach 2024-07-10 at 10:36 By Hendrik Human On July 2, 2024, Health tech provider HealthEquity disclosed a data breach involving unauthorized access to customers’ protected health information via a compromised third-party vendor account. The breach was detected on March 25 and involved HealthEquity’s SharePoint data. The incident, affecting 23,000

Nearly 39 Million Records Were Exposed Online by Legal Services and Technology Company 2024-07-10 at 10:36 By Jeremiah Fowler Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password-protected database that contained 38.6 million records belonging to Rapid Legal — a legal support services company that offers court filing, process serving, and document

Twilio Breach Exposes Millions of Authy Users’ Data 2024-07-10 at 10:36 By Husain Parvez Twilio, the U.S. messaging giant, has confirmed a significant data breach in which hackers stole 33 million phone numbers from Authy, its two-factor authentication app. The breach, linked to the notorious hacking group ShinyHunters, was facilitated by an unauthenticated API endpoint

Over 2.5 Million Affected by Prudential Financial Data Breach 2024-07-10 at 10:36 By Husain Parvez Prudential Financial, a major US life insurance provider, has revealed that a data breach in February 2024 has compromised the personal information of over 2.5 million individuals, a significant increase from the initially reported 36,000. The breach, detected on February

Big Tech’s eventual response to my LLM-crasher bug report was dire 2024-07-10 at 10:31 By Mark Pesce Fixes have been made, it appears, but disclosure or discussion is invisible Column  Found a bug? It turns out that reporting it with a story in The Register works remarkably well … mostly. After publication of my “Kryptonite”

ViperSoftX variant spotted abusing .NET runtime to disguise data theft 2024-07-10 at 09:31 By Brandon Vigliarolo Freeware AutoIt also used to hide entire PowerShell environments in scripts A rapidly-changing infostealer malware known as ViperSoftX has evolved to become more dangerous, according to security researchers at threat detection vendor Trellix.… This article is an excerpt from

ViperSoftX Malware Disguises as eBooks on Torrents to Spread Stealthy Attacks 2024-07-10 at 09:31 By The sophisticated malware known as ViperSoftX has been observed being distributed as eBooks over torrents. “A notable aspect of the current variant of ViperSoftX is that it uses the Common Language Runtime (CLR) to dynamically load and run PowerShell commands,

Europe blasts back into the heavy launch biz with first Ariane 6 flight 2024-07-10 at 09:01 By Simon Sharwood Everything went fine, except the experimental re-ignition The European Space Agency’s new launcher, the Ariane 6, completed its maiden flight on Tuesday.… This article is an excerpt from The Register View Original Source

China pushes for network upgrade blitz as IPv6 adoption slows 2024-07-10 at 08:31 By Simon Sharwood Almost 800 million use the protocol, with more to come as Wi-Fi mandate arrives China’s adoption of IPv6 – a goal the government in Beijing has prioritized – appears to have slowed.… This article is an excerpt from The

Accenture buys Indian chip design firm to expand semiconductor smarts 2024-07-10 at 07:31 By Laura Dobberstein 450 Excelmax Technologies employees to get new badges Global professional services company Accenture on Monday announced the acquisition of India-based semiconductor design services provider Excelmax Technologies.… This article is an excerpt from The Register View Original Source

Ticketmaster tickets leaked for Taylor Swift concerts and more 2024-07-10 at 07:16 By The extortion campaign against Ticketmaster continues with 166,000 Taylor Swift ticket barcodes leaked.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

40% of organizations are unprepared for phishing attacks 2024-07-10 at 07:16 By Cyber risks, ransomware and cyberattacks were analyzed in a recent report. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Advancing technology puts identities at risk 2024-07-10 at 07:16 By Identity and vulnerability management were analyzed in a recent report. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

New OpenSSH Vulnerability Discovered: Potential Remote Code Execution Risk 2024-07-10 at 07:16 By Select versions of the OpenSSH secure networking suite are susceptible to a new vulnerability that can trigger remote code execution (RCE). The vulnerability, tracked as CVE-2024-6409 (CVSS score: 7.0), is distinct from CVE-2024-6387 (aka RegreSSHion) and relates to a case of code

RADIUS networking protocol blasted into submission through MD5-based flaw 2024-07-10 at 06:31 By Connor Jones If someone can do a little MITM’ing and hash cracking, they can log in with no valid password needed Cybersecurity experts at universities and Big Tech have disclosed a vulnerability in a common client-server networking protocol that allows snoops to