AT&T data leaked: 73 million customers affected 2024-04-02 at 15:31 By Zeljka Zorz AT&T has confirmed that the data set leaked on the dark web some two weeks ago does, indeed, contain “AT&T data-specific fields”. The company is reaching out to affected customers and offering credit monitoring services. What type of data has been leaked? […]
React to this headline:
AT&T data leaked: 73 million customers affected Read More »
NHS Scotland confirms ransomware attackers leaked patients’ data 2024-03-28 at 14:31 By Zeljka Zorz NHS Dumfries and Galloway (part of NHS Scotland) has confirmed that a “recognised ransomware group” was able to “access a significant amount of data including patient and staff-identifiable information,” and has published “clinical data relating to a small number of patients.”
React to this headline:
NHS Scotland confirms ransomware attackers leaked patients’ data Read More »
Misconfigured Firebase Instances Expose 125 Million User Records 2024-03-19 at 12:23 By Ionut Arghire A weakness in a Firebase implementation allowed researchers to gain access to names, phone numbers, email addresses, plaintext passwords, confidential messages, and more. The post Misconfigured Firebase Instances Expose 125 Million User Records appeared first on SecurityWeek. This article is an
React to this headline:
Misconfigured Firebase Instances Expose 125 Million User Records Read More »
90% of exposed secrets on GitHub remain active for at least five days 2024-03-15 at 07:30 By Help Net Security 12.8 million new secrets occurrences were leaked publicly on GitHub in 2023, +28% compared to 2022, according to GitGuardian. Remarkably, the incidence of publicly exposed secrets has quadrupled since the company started reporting in 2021.
React to this headline:
90% of exposed secrets on GitHub remain active for at least five days Read More »
GitHub push protection now on by default for public repositories 2024-03-04 at 16:15 By Zeljka Zorz GitHub push protection – a security feature aimed at preventing secrets such as API keys or tokens getting accidentally leaked online – is being switched on by default for all public repositories. “This means that when a supported secret
React to this headline:
GitHub push protection now on by default for public repositories Read More »
Cybercriminals harness AI for new era of malware development 2024-03-01 at 08:31 By Help Net Security The alliance between ransomware groups and initial access brokers (IABs) is still the powerful engine for cybercriminal industry, as evidenced by the 74% year-on-year increase in the number of companies that had their data uploaded on dedicated leak sites
React to this headline:
Cybercriminals harness AI for new era of malware development Read More »
ExpressVPN User Data Exposed Due to Bug 2024-02-12 at 16:16 By Ionut Arghire ExpressVPN disables split tunneling on Windows after learning that DNS requests were not properly directed. The post ExpressVPN User Data Exposed Due to Bug appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to
React to this headline:
ExpressVPN User Data Exposed Due to Bug Read More »
Researchers discover exposed API secrets, impacting major tech tokens 2024-02-05 at 07:33 By Help Net Security Escape’s security research team scanned 189.5 million URLs and found more than 18,000 exposed API secrets. 41% of exposed secrets were highly critical, i.e. could lead to financial risks for the organizations. Exposed API secrets The exposed secrets include
React to this headline:
Researchers discover exposed API secrets, impacting major tech tokens Read More »
Ex-CIA Computer Engineer Gets 40 Years in Prison for Giving Spy Agency Hacking Secrets to WikiLeaks 2024-02-02 at 12:47 By Associated Press Former CIA software engineer sentenced to 40 years in prison for biggest theft of classified information in CIA history and for possession of child sexual abuse images and videos. The post Ex-CIA Computer
React to this headline:
Leaked GitHub Token Exposed Mercedes Source Code 2024-01-31 at 15:47 By Ionut Arghire A leaked token provided unrestricted access to the entire source code on Mercedes-Benz’s GitHub Enterprise server. The post Leaked GitHub Token Exposed Mercedes Source Code appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React
React to this headline:
Leaked GitHub Token Exposed Mercedes Source Code Read More »
Data of 15 million Trello users scraped and offered for sale 2024-01-23 at 13:16 By Zeljka Zorz Someone is selling scraped data of millions of users of Trello, a popular a web-based list-making application and project management platform, on a dark web hacker forum. The database dump “contains emails, usernames, full names and other account
React to this headline:
Data of 15 million Trello users scraped and offered for sale Read More »
List Containing Millions of Credentials Distributed on Hacking Forum, but Passwords Old 2024-01-18 at 15:31 By Ionut Arghire Naz.API credential stuffing list containing 70 million unique email addresses and old passwords found on hacking forum. The post List Containing Millions of Credentials Distributed on Hacking Forum, but Passwords Old appeared first on SecurityWeek. This article
React to this headline:
List Containing Millions of Credentials Distributed on Hacking Forum, but Passwords Old Read More »
Customer Information of Toyota Insurance Company Exposed Due to Misconfigurations 2024-01-18 at 14:32 By Ionut Arghire Exposed credentials for an email address at an Indian Toyota insurance broker led to customer information compromise. The post Customer Information of Toyota Insurance Company Exposed Due to Misconfigurations appeared first on SecurityWeek. This article is an excerpt from
React to this headline:
Customer Information of Toyota Insurance Company Exposed Due to Misconfigurations Read More »
Top LLM vulnerabilities and how to mitigate the associated risk 2024-01-10 at 07:31 By Help Net Security As large language models (LLMs) become more prevalent, a comprehensive understanding of the LLM threat landscape remains elusive. But this uncertainty doesn’t mean progress should grind to a halt: Exploring AI is essential to staying competitive, meaning CISOs
React to this headline:
Top LLM vulnerabilities and how to mitigate the associated risk Read More »
Celebrities Found in Unprotected Real Estate Database Exposing 1.5 Billion Records 21/12/2023 at 18:17 By Ionut Arghire Real Estate Wealth Network database containing real estate ownership data, including for celebrities and politicians, was found unprotected. The post Celebrities Found in Unprotected Real Estate Database Exposing 1.5 Billion Records appeared first on SecurityWeek. This article is
React to this headline:
Celebrities Found in Unprotected Real Estate Database Exposing 1.5 Billion Records Read More »
Air Force Disciplines 15 as IG Finds That Security Failures Led to Massive Classified Documents Leak 12/12/2023 at 16:46 By Associated Press Air Force disciplines 15 personnel as the inspector general finds that security failures led to massive classified documents leak. The post Air Force Disciplines 15 as IG Finds That Security Failures Led to
React to this headline:
Selective disclosure in the identity wallet: How users share the data that is really needed 09/10/2023 at 07:46 By Help Net Security Name, date of birth, address, email address, passwords, tax records, or payroll – all this sensitive user data is stored by companies in huge databases to identify individuals for digital services. Although companies
React to this headline:
Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations 26/09/2023 at 15:01 By Helga Labus The number of victim organizations hit by Cl0p via vulnerable MOVEit installations has surpassed 2,000, and the number of affected individuals is now over 60 million. The victim organizations are overwhelmingly based in the US. “The most heavily impacted sectors are
React to this headline:
Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations Read More »
Airbus Launches Investigation After Hacker Leaks Data 13/09/2023 at 16:47 By Eduard Kovacs Airbus has launched an investigation after a hacker claimed to have breached the company’s systems and leaked some business documents. The post Airbus Launches Investigation After Hacker Leaks Data appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed
React to this headline:
Airbus Launches Investigation After Hacker Leaks Data Read More »
LockBit leaks sensitive data from maximum security fence manufacturer 05/09/2023 at 17:32 By Helga Labus The LockBit ransomware group has breached Zaun, a UK-based manufacturer of fencing systems for military sites and critical utilities, by compromising a legacy computer running Windows 7 and using it as an initial point of access to the wider company
React to this headline:
LockBit leaks sensitive data from maximum security fence manufacturer Read More »