What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-02-01 15:43:12 | Google Fi data breach let hackers carry out SIM swap attacks (lien direct) | Google Fi, Google's U.S.-only telecommunications and mobile internet service, has informed customers that personal data was exposed by a data breach at one of its primary network providers, with some customers warned that it allowed SIM swapping attacks. [...] | Data Breach | ★★ | |
 |
2023-02-01 10:38:16 | Google Fi Data Breach Reportedly Led to SIM Swapping (lien direct) | >Google Fi informs customers about a data breach related to the recent T-Mobile cyberattack and some users claim they were targeted in a SIM swapping attack | Data Breach | ★★★ | |
 |
2023-01-30 21:17:00 | 10M JD Sports Customers\' Info Exposed in Data Breach (lien direct) | UK sportswear retailer asks exposed customers to stay "vigilant" against phishing attempts following cyberattack. | Data Breach | ★★★ | |
 |
2023-01-30 18:00:00 | JD Sports Confirms Breach Affected 10 Million Customers (lien direct) | The cyber-attack hit the company between November 2018 and October 2020 | Data Breach | ★★★ | |
|
2023-01-30 16:17:49 | British Retailer JD Sports Discloses Data Breach Affecting 10 Million Customers (lien direct) | JD Sports discovers unauthorized access to information from orders placed by customers between 2018 and 2020. | Data Breach | ★★★ | |
 |
2023-01-30 15:32:43 | JD Sports admits data breach (lien direct) | JD Sports has warned customers that bought items on its website, as well as those of Size?, Blacks and Millets, between November 2018 and October 2020 may have been impacted in the breach. The company has urged customers to be wary of potential phishing emails, calls and texts in the aftermath of the breach, while […] | Data Breach | ★★ | |
 |
2023-01-30 12:34:09 | Breaking: JD Sports Data Breach Following Cyberattack (lien direct) | JD Sports has issued a warning that a cyberattack that affected the company may have exposed the personal information of roughly 10 million customers, including personal contact information, such as phone and email addresses. The hack may have affected customers who ordered goods from the business between 2018 and 2020. The company claimed that credit […] | Data Breach Hack | ★★ | |
|
2023-01-30 10:55:41 | JD Sports says hackers stole data of 10 million customers (lien direct) | UK sports apparel chain JD Sports is warning customers of a data breach after a server was hacked that contained online order information for 10 million customers. [...] | Data Breach | ★★ | |
|
2023-01-27 20:00:00 | On Data Privacy Day, Organizations Fail Data Privacy Expectations (lien direct) | Data Privacy Day rolls around year after year, and data privacy breaches likewise. Two-thirds of data breaches result in data exposure. | Data Breach | ★★★ | |
 |
2023-01-27 19:55:27 | Racial slurs discovered in leaked Yandex source code (lien direct) | >The code excerpts were part of a 44.7 gigabyte tranche of internal company code leaked online earlier this week. | Data Breach | ★★★ | |
 |
2023-01-26 19:51:00 | Is Once-Yearly Pen Testing Enough for Your Organization? (lien direct) | Any organization that handles sensitive data must be diligent in its security efforts, which include regular pen testing. Even a small data breach can result in significant damage to an organization's reputation and bottom line. There are two main reasons why regular pen testing is necessary for secure web application development: Security: Web applications are constantly evolving, and new | Data Breach | ★★ | |
|
2023-01-26 14:49:02 | 820k Impacted by Data Breach at Zacks Investment Research (lien direct) | >Zacks Investment Research is informing 820,000 individuals that their personal data was compromised in a data breach. | Data Breach | ★★ | |
|
2023-01-26 09:44:29 | 820K Zacks Investment Research Clients Impacted By Data Breach (lien direct) | The company Zacks Investment Research (Zacks) was infiltrated by hackers last year, allowing them access to 820,000 clients’ sensitive and personal data. The 1978-founded business uses cutting-edge financial data analytics systems to assist stock buyers. A threat actor entered the network between November 2021 and August 2022, according to an internal examination of the incident. […] | Data Breach Threat | ★★ | |
|
2023-01-25 19:24:21 | Data breach notices become more opaque, leaving consumers in the dark (lien direct) | >Of the 1,802 breaches the Identity Theft Resource Center tracked in 2022, 66% of notices lacked details about the attack and victims. | Data Breach | ★ | |
|
2023-01-25 13:45:11 | Zacks Investment Research data breach affects 820,000 clients (lien direct) | Hackers breached Zacks Investment Research (Zacks) company last year and gained access to personal and sensitive information belonging to 820,000 customers. [...] | Data Breach | ★★ | |
|
2023-01-24 12:03:34 | Zendesk Hacked After Employees Fall for Phishing Attack (lien direct) | >Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company's employees. | Data Breach | ★★ | |
|
2023-01-24 11:40:14 | How To Safeguard Your Business From Cybersecurity Stress And Prevent IT Burnout (lien direct) | The number of data breaches and their effects are increasing as more aspects of our lives move online. It’s not surprising that the latest IBM Data Breach report found that the average cost of a hack to businesses has reached a record $4.35 million when combined with inflationary levels that are unheard of. Employees are […] | Data Breach Hack | ★★ | |
|
2023-01-23 12:10:54 | Companies Impacted by Recent Mailchimp Breach Start Notifying Customers (lien direct) | Companies affected by the recent Mailchimp data breach have started notifying customers. The list includes WooCommerce, FanDuel, Yuga Labs and the Solana Foundation. | Data Breach | ★★ | |
|
2023-01-23 10:02:40 | FanDuel Cautions Users Of Data Breach In Vendor Hack (lien direct) | Customers of the FanDuel sportsbook and betting platform are being cautioned that their names and email addresses were made public due to a security breach at MailChimp in January 2023. Users are advised to be on the lookout for scam communications. MailChimp announced a compromise on January 13th after hackers used a social engineering effort […] | Data Breach Hack | ★ | |
|
2023-01-22 13:56:45 | (Déjà vu) FanDuels warns of data breach after customer info stolen in vendor hack (lien direct) | The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security breach, urging users to remain vigilant against phishing emails. [...] | Data Breach Hack | ★★ | |
|
2023-01-22 13:56:45 | FanDuel discloses data breach caused by recent MailChimp hack (lien direct) | The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security breach, urging users to remain vigilant against phishing emails. [...] | Data Breach Hack | ★★ | |
 |
2023-01-20 23:13:24 | T-Mobile\'s New Data Breach Shows Its $150 Million Security Investment Isn\'t Cutting It (lien direct) | The mobile operator just suffered at least its fifth data breach since 2018, despite promising to spend a fortune shoring up its systems. | Data Breach | ★ | |
 |
2023-01-20 18:28:54 | Samsung investigating claims of hack on South Korea systems, internal employee platform (lien direct) |  Samsung is investigating a potential cyberattack and data breach on an internal employee platform and several systems in South Korea. On Tuesday, a group of hackers going by the name “Genesis Day” claimed it attacked Samsung's offices in South Korea because of the country's recent opening of a mission to the North Atlantic Treaty Organization [… |
Data Breach Hack | ★★ | |
|
2023-01-20 13:09:07 | T-Mobile confirms another data breach affecting 37 million customer accounts (lien direct) |  T-Mobile, one of the largest wireless network operators in the United States, said on Thursday that it was investigating a data breach involving 37 million customer accounts. In a disclosure notice filed to the U.S. Securities and Exchange Commission, the company explained the breach was discovered after it identified malicious activity on its networks on [… |
Data Breach | ★ | |
 |
2023-01-20 04:09:22 | New T-Mobile Breach Affects 37 Million Accounts (lien direct) | T-Mobile today disclosed a data breach affecting tens of millions of customer accounts, its second major data exposure in as many years. In a filing with federal regulators, T-Mobile said an investigation determined that someone abused its systems to harvest subscriber data tied to approximately 37 million current customer accounts. | Data Breach | ★★ | |
 |
2023-01-20 02:11:00 | T-Mobile suffers 8th data breach in less than 5 years (lien direct) | Telecom player T-Mobile US has suffered a cybersecurity incident that resulted in the exposure of personal details of 37 million users, the company reported in a filing to the US Securities and Exchange Commission on Thursday. Customer data such as customer name, billing address, email, phone number, date of birth, T-Mobile account number and information such as the number of lines on the account and plan features were exposed, the company revealed. However, T-Mobile in a statement insisted that customer payment card information (PCI), social security numbers/tax IDs, driver's license or other government ID numbers, passwords/PINs or other financial account information were not exposed, it . To read this article in full, please click here | Data Breach | ★ | |
|
2023-01-20 01:01:01 | T-Mobile Says Hackers Used API to Steal Data on 37 Million Accounts (lien direct) | Wireless carrier T-Mobile on Thursday fessed up to another massive data breach affecting approximately 37 million current postpaid and prepaid customer accounts. | Data Breach | ★★★ | |
 |
2023-01-19 20:24:53 | Zero-Days in RGB Keyboards, Top DID Network Exposed at INTENT Threat Research Summit (lien direct) | Data breach headlines are daily reminders that cyberattackers keep innovating. While constant research to uncover threats and share crucial intelligence with defenders is far less visible, the second annual INTENT Summit offered a glimpse. Together... | Data Breach Threat | ★★★ | |
|
2023-01-19 17:19:22 | T-Mobile hacked to steal data of 37 million accounts in API data breach (lien direct) | T-Mobile disclosed a new data breach after a threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts through one of its Application Programming Interfaces (APIs). [...] | Data Breach Threat | ★ | |
|
2023-01-19 16:26:49 | Meta Slapped With 5.5 Million Euro Fine for EU Data Breach (lien direct) | Social media giant Meta has been fined an additional 5.5 million euros ($5.9 million) for violating EU data protection regulations with its instant messaging platform WhatsApp, Ireland's regulator announced Thursday. | Data Breach | ★★ | |
|
2023-01-19 16:00:00 | Mailchimp Hit By Another Data Breach Following Employee Hack (lien direct) | According to the company, the incident was limited to 133 accounts | Data Breach Hack | ★★★ | |
 |
2023-01-19 12:14:30 | Integrity360 Comment: Mailchimp Breach (lien direct) | As news brings yet another report of a data breach from Mailchimp, please see comment below from Patrick Wragg, Cyber Incident Response Manager, Integrity360. - Malware Update | Data Breach | ★ | |
|
2023-01-19 09:47:38 | PayPal accounts breached in large-scale credential stuffing attack (lien direct) | PayPal is sending out notices of a data breach to thousands of users who had their accounts accessed by credential stuffing actors, resulting in the compromise of some personal data. [...] | Data Breach | ★★★ | |
|
2023-01-19 02:00:00 | How CISOs can manage the cybersecurity of high-level executives (lien direct) | High-level executives, including board members and C-level executives, often have access to sensitive information, making them prime targets for bad actors looking to penetrate corporate defenses. Their personal devices, among other points of entry, are glaring attack vectors for cybercriminals looking to get in on the top floor.As CISOs know, cyber incidents all too often include the human element-and executives are all too human. According to the Verizon 2022 Data Breach Investigations Report, 82% of breaches involved a human element, the bulk of them involving phishing, business email compromise (BEC), and stolen credentials.To read this article in full, please click here | Data Breach | ★★ | |
|
2023-01-18 17:55:13 | Thousands of Nissan customers affected by data breach through third-party vendor (lien direct) |  Nissan has sent out breach notification letters to thousands of people to inform them of a leak of personal information through a third-party vendor. The car company said it was notified on June 21 that names, dates of birth, and account numbers for Nissan Motor Acceptance Corporation – an indirect lender that helps people [… |
Data Breach | ★★★ | |
|
2023-01-18 11:55:20 | 18k Nissan Customers Affected by Data Breach at Third-Party Software Developer (lien direct) | Nissan North America is informing roughly 18,000 customers that their personal information was exposed in a data breach at a third-party services provider. The breach occurred after data provided by Nissan to the services provider was inadvertently exposed on the internet, the company notes in a notification letter sent to the impacted customers. | Data Breach | ★★ | |
 |
2023-01-18 11:00:00 | Telephony fraud and risk mitigation: Understanding this ever-changing threat (lien direct) | Telephony fraud is a significant challenge. Companies of all sizes and industries are subjected to the malicious usage of voice and SMS with the intent of committing financial fraud, identity theft, denial-of-service, and a variety of other attacks. Businesses that fall victim to fraud can incur significant financial losses, irreparable damage to their reputation, and legal implications. Detection of and preventing fraud can be a complex and time-consuming process, requiring businesses to devote significant resources to protect themselves. Some common challenges that companies face when it comes to fraud include the following:
Swiftly adapting to constantly evolving fraud tactics: Fraudsters are always searching for innovative ways to carry out their schemes. Therefore, businesses must be hyper-aware in identifying and addressing potential threats.
Balancing the need for security with customer convenience: Businesses must balance protecting themselves against fraud and providing a seamless customer experience. This can be particularly challenging in the digital age, as customers expect fast, convenient service.
Investing in fraud prevention solutions and skilling up human resources: To stay ahead of fraudsters, organizations may need to invest in technology solutions, such as fraud detection software or security protocols, to help identify and prevent fraudulent activity. Such solutions are often expensive and may require hiring dedicated employees to manage and maintain these toolsets.
Mitigating the aftermath of a fraud incident: If a business or its customers fall victim to a fraud campaign, this organization must be prepared to not only address the immediate financial losses but also work to repair any damage to its reputation and restore customer trust. Such an endeavor is often a time-consuming and costly process.
Vishing
As mentioned above, telephony fraud can consist of voice fraud and SMS fraud sub-categories. Voice fraud, also known as vishing or voice phishing, involves criminals leveraging voice calls or voice messaging to social engineer potential victims into divulging sensitive information or making payments. In this type of attack vector, the malicious actor often attempts to mask their identity through spoofing, which involves alternating caller-ID information to make the communication appear legitimate.
The attacker may also utilize voice manipulation software or even voice impersonation to mask their identity and solicit a target into taking a specific action, such as revealing sensitive data or even transferring bank funds over to the attacker. In such unfortunate scenarios, Vishers may pretend to be an individual from a legitimate organization, such as a trusted individual, a company/business, or a government agency, and request personal information or login credentials.
Some of the voice fraud challenges that companies may face include the following:
Spoofed caller IDs: Criminals can use spoofed caller IDs to make it appear as if the call is coming from a legitimate source, such as a bank or government agency. This can make it difficult for companies to identify fraudulent calls and protect their customers from these scams.
Automated voice messages: Criminals can also use automated voice messages to deliver phishing scams. These messages may ask the recipient to call a specific number to update their account information or resolve an issue. Still, the call leads to a scammer trying to steal sensitive information.
Social engineering tactics: Criminals may use social engineering tactics, such as creating a sense of urgency or playing on the recipient's emotions, to convince them to divulge sensitive information or make a payment.
Smishing
Smishing is a phishing scam involving using text messages to perform various social engineering attempts to convince v |
Data Breach Threat Guideline | ★★★ | |
|
2023-01-18 09:51:01 | (Déjà vu) Nissan Data Breach Caused By Vendor-Exposed Database (lien direct) | Nissan North America has started delivering data breach notifications that there has been a disclosure of client data due to a breach at a third-party service provider. On Monday, January 16, 2023, Nissan notified the security breach to the Office of the Maine Attorney General, at which point it revealed that 17,998 customers were impacted. […] | Data Breach | ★ | |
|
2023-01-17 09:50:18 | Nissan North America data breach caused by vendor-exposed database (lien direct) | Nissan North America has begun sending data breach notifications informing customers of a breach at a third-party service provider that exposed customer information. [...] | Data Breach | ★★★★ | |
|
2023-01-17 04:47:00 | European data protection authorities issue record €2.92 billion in GDPR fines (lien direct) | European data regulators issued a record €2.92 billion in fines last year, a 168% increase from 2021. That's according to the latest GDPR and Data Breach survey from international law firm DLA Piper, which covers all 27 Member States of the European Union, plus the UK, Norway, Iceland, and Liechtenstein. This year's biggest fine of €405 million was imposed by the Irish Data Protection Commissioner (DPC) against Meta Platforms Ireland Limited relating to Instagram for alleged failures to protect children's personal data. The Irish DPC also fined Meta €265 million for failing to comply with the GDPR obligation for Data Protection by Design and Default. Both fines are currently under appeal.To read this article in full, please click here | Data Breach | ★★★ | |
|
2023-01-16 17:00:00 | CircleCI Confirms Data Breach Was Caused By Infostealer on Employee Laptop (lien direct) | According to CTO Rob Zuber, the malware was not detected by the CircleCI antivirus program | Data Breach Malware | Uber | ★★★★ |
|
2023-01-16 13:22:57 | 6,000+ Customer Accounts Breached, NortonLifeLock Alert Users (lien direct) | More than 6,000 customers of NortonLifeLock have been informed that nefarious outsiders have probably accessed their accounts and may have even gotten to their password vaults. The letter informing customers of the data breach was published on the Vermont attorney general’s website. It stated that hackers have probably gained access to their Norton and Norton […] | Data Breach | ★★ | |
|
2023-01-16 11:53:44 | CircleCI Hacked via Malware on Employee Laptop (lien direct) | Software development service CircleCI has revealed that a recently disclosed data breach was the result of information stealer malware being deployed on an engineer's laptop. The incident was initially disclosed on January 4, when CircleCI urged customers to rotate their secret keys. | Data Breach Malware | ★★★ | |
 |
2023-01-16 10:36:01 | Attackers Infected a CircleCI Employee with Malware to Steal Customer Session Tokens (lien direct) | Software provider CircleCI confirmed that a data breach in December resulted in the theft of some of... | Data Breach Malware | ★★ | |
|
2023-01-13 11:47:56 | NortonLifeLock warns that hackers breached Password Manager accounts (lien direct) | Gen Digital, formerly Symantec Corporation and NortonLifeLock, is sending data breach notifications to customers, informing them that hackers have successfully breached Norton Password Manager accounts in credential-stuffing attacks. [...] | Data Breach | ★★★ | |
|
2023-01-12 20:15:00 | New Survey Sheds Light on Why Enterprises Struggle to Thwart API Attacks (lien direct) | Corsha's Annual State of API Secrets Management Report finds over 50% of respondents suffered a data breach due to compromised API secrets. | Data Breach | ★★ | |
|
2023-01-12 11:31:36 | Vice Society ransomware claims attack on Australian firefighting service (lien direct) | Australia's Fire Rescue Victoria has disclosed a data breach caused by a December cyberattack that is now claimed by the Vice Society ransomware gang. [...] | Ransomware Data Breach | ★★ | |
|
2023-01-12 10:00:00 | BrandPost: How Financial Institutions Can SOAR to Success with Devo SOAR (lien direct) | According to the 2022 IBM Cost of a Data Breach Report, the global average cost of a data breach is $4.35 million. Data breaches in the US are even more costly, averaging over $9 million. However, it isn't just the big players caught in the line of fire. IBM's report also found that 83% of companies will experience a data breach soon, meaning financial institutions of all sizes - from local credit unions to Fortune 500s - are at risk. While ransomware attacks get the most time in the financial headlines, most breaches aren't caused by external factors or threat actors. The majority of system availability problems actually occur due to a lack of staff knowledge and protective protocols, software issues and limited security visibility across the institution. However, “more visibility” is not synonymous with “seeing more alerts.” In fact, the opposite is true. Keep reading to see how Devo SOAR helped a leading US bank streamline its SOC.To read this article in full, please click here | Ransomware Data Breach Threat Guideline | ★★ | |
|
2023-01-11 11:53:21 | 251k Impacted by Data Breach at Insurance Firm Bay Bridge Administrators (lien direct) | Third-party administrator of insurance products Bay Bridge Administrators (BBA) is informing roughly 250,000 individuals that their personal information might have been compromised in a September 2022 data breach. | Data Breach | ★★ | |
|
2023-01-10 22:03:00 | Bay Bridge Administrators, LLC Notifies Individuals of Data Breach (lien direct) | Third-party administrator of insurance products Bay Bridge Administrators (BBA) is informing roughly 250,000 individuals that their personal information might have been compromised in a September 2022 data breach. | Data Breach | ★★ |
To see everything:
Our RSS (filtrered)
