Data Breach Today

MARCH 4, 2024

Critics Fear Exceptions for Private Sector, National Security Could Weaken Privacy Privacy groups are urging European lawmakers finalizing the global treaty on artificial intelligence to tighten rules surrounding the use of AI by the private sector and states.

Artificial Intelligence 259

Artificial Intelligence Privacy Security 259

Data Breach Today

NOVEMBER 10, 2023

Security Firm Adds Chris Krebs, Alex Stamos to C-Suite to Take on Geopolitical Risk SentinelOne purchased a boutique consultancy established by two of the world's most famous security minds and launched its own strategic risk analysis and advisory group.

Risk 289

Risk Security IT 289

Krebs on Security

JANUARY 30, 2024

Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. Multiple security firms soon assigned the hacking group the nickname “ Scattered Spider.” 9, 2024, U.S. Twilio disclosed in Aug. According to an Aug.

Passwords 305

Passwords Phishing Access Encryption 305

Data Breach Today

SEPTEMBER 25, 2023

2,050 Organizations Affected After Data Stolen From Secure File-Sharing Software The count of organizations affected by the Clop ransomware group's most recent mass targeting of Progress Software's secure file transfer software doubled last week.

Data breaches 312

Data breaches Ransomware Security IT 312

Data Breach Today

NOVEMBER 28, 2023

CISA Investigating Iranian Hacking Group Attack on Pennsylvania Water Authority The U.S.

Cybersecurity 279

Cybersecurity Security IT 279

Security Affairs

APRIL 10, 2024

Group Health Cooperative of South Central Wisconsin disclosed a data breach that impacted over 500,000 individuals. The Group Health Cooperative of South Central Wisconsin (GHC-SCW) is a non-profit organization that provides health insurance and medical care services to its members in the Madison metropolitan area of Wisconsin.

Data breaches 113

Data breaches e-Discovery Ransomware Insurance 113

Data Breach Today

OCTOBER 4, 2023

Current Atos Security Leader to Leave as Company Gets 3rd CEO In Less Than 2 Years Atos snagged the longtime European CEO of Accenture Technology to lead its soon-to-be-independent $5.76 billion cybersecurity, big data and digital unit.

Big data 272

Big data Security Cybersecurity IT 272

Data Breach Today

AUGUST 15, 2023

Kaspersky Says APT31 Targeted Industrial Organizations for Spying A Chinese state-sponsored hacking group likely deployed more than a dozen malware variants to target critical infrastructure across Eastern European as part of an espionage campaign, warns security firm Kaspersky.

Security 236

Security 236

Data Breach Today

AUGUST 10, 2023

Motives, Operations Closely Linked to China's Ministry of State Security A Chinese state-sponsored spy group called RedHotel has emerged as a dominant espionage agent against government entities of at least 17 countries worldwide.

Government 237

Government Security IT 237

Krebs on Security

SEPTEMBER 27, 2023

The victim shaming site operated by the Snatch ransomware group is leaking data about its true online location and internal operations, as well as the Internet addresses of its visitors, KrebsOnSecurity has found. Or perhaps they are simply selling any stolen data (and any corporate access) to active and hungry ransomware group affiliates.

Ransomware 238

Ransomware Phishing Access Authentication 238

Data Breach Today

MARCH 30, 2023

Buhti and IceFire Ransom Groups Tied to Attacks Targeting Vulnerable Servers Security experts are urging users of IBM's Aspera Faspex file-exchange application to take it offline immediately unless they've patched a flaw being actively exploited by ransomware groups, including Buhti and IceFire.

Ransomware 234

Ransomware Security IT 234

Data Breach Today

MAY 17, 2023

New Ransomware Gang Attacked 4 US and Korean Organizations in April Security researchers say a new Babuk knockoff ransomware group emerged in April and has already claimed targets in the United States and South Korea.

Ransomware 252

Ransomware Security 252

Data Breach Today

JULY 24, 2021

StrongPity Campaign Targeted Syrian E-Governance Website Hack-for-hire group StrongPity deployed Android malware to target Syria's e-government site visitors as part of its latest cyberespionage campaign, a new report by security firm Trend Micro details.

Government 363

Government Security IT 363

Data Breach Today

MARCH 26, 2024

The Firm Is Operating Alongside RedHotel, RedAlpha and Poison Carp Chinese hacking contractor iSoon supported three separate cyberespionage operations on behalf of Beijing, say security researchers who analyzed a leaked data trove belonging to the firm.

Security 288

Security 288

Data Breach Today

MARCH 3, 2023

Mustang Panda Using MQsTTang Tool to Target Victims in Asia and Europe, Eset Finds Chinese APT group Mustang Panda is deploying a previously unseen malware backdoor dubbed MQsTTang as part of a spear-phishing campaign targeting governmental organizations, specifically in Ukraine and Taiwan, security firm Eset says.

Phishing 256

Phishing Security IT 256

Data Breach Today

APRIL 2, 2021

Google: Attackers Leverage Social Media Accounts A North Korean government-backed threat group that was detected targeting security researchers in January is once again staging a campaign against them using advanced social engineering techniques, Google reports.

Security 194

Security Government 194

Data Breach Today

AUGUST 9, 2021

IBM: Campaign Targeted Reformists Before Election A group dubbed "ITG18," which apparently is linked to an Iranian advanced persistent threat group, deployed an Android backdoor it used to exfiltrate sensitive information from at least 20 reformists in Iran in the run up to the country's June 18 presidential election, IBM's Security Intelligence reports. (..)

Security 293

Security IT 293

Data Breach Today

JULY 20, 2023

APT41 Used WyrmSpy and DragonEgg Surveillance Malware to Target Android Users Security researchers say the Chinese state-sponsored espionage group APT41 is using WyrmSpy and DragonEgg surveillance malware to target Android mobile devices. APT41 recently switched tactics to develop malware specific to the Android operating system.

Security 237

Security 237

Data Breach Today

MARCH 21, 2024

Software Integrity Business Could Fetch More Than $3B, Attract Private Equity Firms Synopsys' board of directors signed off Wednesday on selling the company's $525 million application security testing business to focus exclusively on design automation and IP.

Sales 253

Sales Security IT 253

Data Breach Today

DECEMBER 24, 2020

Kaspersky: North Korean APT Group Used Malware in Attempt to Steal Information The Lazarus Group, a North Korean advanced persistent threat gang, apparently recently targeted a national ministry of health and a drug manufacturer involved in developing a COVID-19 vaccine in an attempt to steal information, according to the security firm Kaspersky.

Manufacturing 328

Manufacturing Security 328

Data Breach Today

MARCH 22, 2024

Proofpoint Researchers Say Beware of Phishing Emails, Embedded Links in PDFs Iran-aligned threat actor TA450, also called MuddyWater, is using fake salary, compensation and financial incentive emails to trick Israeli employees at multi-national organizations into clicking malicious links, according to researchers at security firm Proofpoint.

Phishing 288

Phishing Security 288

Data Breach Today

OCTOBER 8, 2022

Phishing Incident Caused Service Disruptions and Delays Australian fruit and vegetable supplier Costa Group says it was subjected to a malicious and sophisticated phishing attack in August that resulted in unauthorized access to its servers.

Phishing 261

Phishing Access Security IT 261

Data Breach Today

JANUARY 22, 2024

Experts Warn Tech Giant Faces Potential for Future Cyberattacks After Email Hacking Security experts told ISMG they were concerned Microsoft could suffer future cyberattacks and threats to its customers after a Russian state hacking group managed to evade detection for several weeks while targeting accounts associated with the company’s top executives. (..)

Security 285

Security IT 285

Krebs on Security

JUNE 14, 2022

Cybercrime groups that specialize in stealing corporate data and demanding a ransom not to publish it have tried countless approaches to shaming their victims into paying. The latest innovation in ratcheting up the heat comes from the ALPHV/BlackCat ransomware group, which has traditionally published any stolen victim data on the Dark Web.

Ransomware 235

Ransomware Privacy Security IT 235

Krebs on Security

SEPTEMBER 30, 2023

Earlier this week, KrebsOnSecurity revealed that the darknet website for the Snatch ransomware group was leaking data about its users and the crime gang’s internal operations. ru, the very same account Truniger used to recruit hackers for the Snatch Ransomware group back in 2018. ru account and posted as him.

Ransomware 206

Ransomware Data breaches Encryption Systems administration 206

Data Breach Today

JANUARY 29, 2021

Researchers: Lebanese Cedar's Campaigns Expand Beyond Middle East An APT group known as Lebanese Cedar has launched a cyberespionage campaign targeting telecommunication companies and ISPs, according to the Israeli security firm ClearSky, which says the attacks have spread beyond the Middle East to the U.S. and Europe.

Security 347

Security 347

Data Breach Today

FEBRUARY 28, 2024

UNC5325 Can Remain in Hacked Devices Despite Factory Reset and Patches Chinese threat actors are continuing to persist after exploiting the recent Ivanti Connect Secure VPN vulnerability even after factory resets, system upgrades and patches.

Security 296

Security 296

Krebs on Security

NOVEMBER 10, 2020

Now, one crime group has started using hacked Facebook accounts to run ads publicly pressuring their ransomware victims into paying up. The ad was designed to turn the screws to the Italian beverage vendor Campari Group , which acknowledged on Nov. Of course, it didn’t cost the ransomware group anything. ”

Ransomware 345

Ransomware IT Security 345

Data Breach Today

JUNE 4, 2021

Ransomware Suspected as a Possible Reason for the Outage at Some Outlets Cox Media Group's TV and radio affiliates' ability to livestream content was mostly offline Thursday evening, possibly due to an unspecified cyber incident, says the security firm Recorded Future.

Ransomware 293

Ransomware Security 293

Data Breach Today

AUGUST 5, 2022

Also: BEC Attack Headaches and Inside the Nomad Bridge Hack In the latest weekly update, four editors at Information Security Media Group discuss key takeaways from ISMG's recent Government Summit, how hackers siphoned nearly $200 million from cryptocurrency bridge Nomad and how midsized businesses are the new frontier for ransomware.

Ransomware 260

Ransomware Information Security Government Security 260

Data Breach Today

JUNE 3, 2022

Extortion Group Won’t Stop Data Leaks Even If Its Demands Are Met, Feds Say U.S. government agencies have issued a warning to organizations in the country against paying ransom to the Karakurt data extortion group.

Government 258

Government Security IT 258

Data Breach Today

AUGUST 25, 2022

The latest edition of the ISMG Security Report discusses how ransomware-as-a-service groups are shifting their business models, how investigators battling cybercrime have been hindered by GDPR, and how employees consider workplace "choice" a key factor for job satisfaction.

Ransomware 245

Ransomware GDPR Security 245

Data Breach Today

DECEMBER 11, 2023

Venezuelan National Detained on Mediterranean Coast on Sunday Spanish national police on Sunday arrested an alleged key money laundering figure of the profit-seeking Kelvin Security hacking operation. Police said the man is the head of the group's money laundering operation.

Security 292

Security 292

Krebs on Security

MARCH 1, 2022

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti , an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue. ” GAP #1. 22, 2020, the U.S. 22, 2020, the U.S.

Ransomware 260

Ransomware Government Security IT 260

Krebs on Security

FEBRUARY 29, 2024

The ransomware group LockBit told officials with Fulton County, Ga. Security experts say LockBit was likely bluffing and probably lost most of the data when the gang’s servers were seized this month by U.S. 13, saying that unless it was paid a ransom the group would publish files stolen in a breach at the county last month.

Security 244

Security Ransomware IT Access 244

Data Breach Today

JUNE 8, 2023

Suspected Belarusian Hacking Group Has Targeted Ukraine; Crime Crossover 'Unusual' Hacking group Asylum Ambuscade, which security researchers say aligns with Belarusian government interests, has an "unusual" twist: it appears to be mixing cybercrime - focused on banking and cryptocurrency customers - with cyberespionage, including attacks targeting (..)

Government 144

Government Security IT 144

Data Breach Today

JULY 9, 2020

Report: Little-Known Evilnum Group Relies on Spear-Phishing Emails A little-known advanced persistent threat group dubbed Evilnum has been targeting fintech firms in the U.K. and Europe over the past two years, using spear-phishing emails and social engineering to start their attacks, according to the security firm ESET.

Phishing 272

Phishing Security 272