Topic: data leak
-
Apple Health May Soon Integrate With ChatGPT
A potential integration with Apple Health, hinted at by code in the ChatGPT app, would allow the AI to access user health data like activity, sleep, and nutrition. This feature would enable more personalized wellness advice, moving from generic responses to guidance tailored to an individual's lo...
Read More » -
OnSolve CodeRED System Hit by Cyber-Attack, Disrupting Emergency Alerts
A cybersecurity breach compromised the OnSolve CodeRED platform, disrupting emergency alerts and leading to the theft of user data, including names, addresses, and passwords. The INC Ransom group claimed responsibility for the attack, which targeted the legacy system and resulted in encrypted fil...
Read More » -
Nationwide Emergency Alerts Disrupted by OnSolve Cyberattack
The OnSolve CodeRED emergency notification system was compromised by a cyberattack, forcing its operator Crisis24 to decommission the legacy platform and causing widespread disruption to public safety alerts. Sensitive user data, including names, addresses, emails, phone numbers, and passwords, w...
Read More » -
Dartmouth College Hit by Clop Ransomware Data Breach
Dartmouth College experienced a data breach by the Clop ransomware group, which exploited a zero-day vulnerability in Oracle E-Business Suite to steal personal data, including names and Social Security numbers. The breach affected at least 1,494 individuals, with financial account details also co...
Read More » -
Cox Enterprises Hit by Oracle EBS Data Breach
Cox Enterprises suffered a data breach after hackers exploited a zero-day vulnerability in Oracle's E-Business Suite, compromising personal information of thousands and delaying detection until weeks after the attack. The Cl0p ransomware group claimed responsibility, known for weaponizing undisco...
Read More » -
Salesforce Users at Risk From Gainsight Supply Chain Attack
A cybersecurity incident involving Gainsight's Salesforce connector potentially exposed customer data, prompting Salesforce to revoke access and remove Gainsight apps from AppExchange due to unusual activity. The attack, claimed by the Scattered Spider-ShinyHunters-Lapsus$ group, may lead to a de...
Read More » -
CrowdStrike Insider Leaked Data to Hackers Before Firing
CrowdStrike fired an employee for sharing confidential information with the hacking group Scattered Lapsus$ Hunters, who posted evidence of internal access on Telegram. The company denies its infrastructure was breached, attributing the incident to the insider taking and sharing screen photos, wi...
Read More » -
Why ChatGPT Links Get Zero Clicks (Even Top Results)
A leaked OpenAI document reveals that publisher links in ChatGPT receive almost no clicks despite high visibility, challenging the AI's role as a source of referral traffic. Link performance varies significantly by placement, with the main response area generating many impressions but very low cl...
Read More » -
Logitech Data Breach Confirmed After Clop Ransomware Attack
Logitech confirmed a data breach by the Clop ransomware group, involving stolen information from Oracle E-Business Suite systems, as disclosed in an SEC filing. The compromised data includes limited employee, consumer, customer, and supplier details, but sensitive information like national IDs an...
Read More » -
Washington Post Data Breach Hits 10,000 Employees, Contractors
A data breach at The Washington Post exposed personal and financial data of nearly 10,000 employees and contractors, exploiting a zero-day vulnerability in the Oracle E-Business Suite software. The attack, linked to the Clop ransomware gang, involved unauthorized network access from July to Augus...
Read More » -
Apache OpenOffice Denies Ransomware Gang's Breach Claims
The Apache Software Foundation has denied the Akira ransomware group's claims of a security breach in OpenOffice, stating no evidence of compromise has been found. Akira alleged it stole 23 GB of sensitive data, including employee and financial records, but the foundation notes OpenOffice is open...
Read More » -
Hacker Leaks Cellebrite Phone Unlocking Secrets From Microsoft Teams
A security breach exposed Cellebrite's forensic capabilities after an unauthorized person accessed a Microsoft Teams meeting, revealing screenshots on bypassing security for Google Pixel models. This is part of a series of security lapses affecting major phone hacking firms, including competitors...
Read More » -
Envoy Air Hit by Oracle Data Breach, American Airlines Confirms
The Clop ransomware gang breached Envoy Air's Oracle E-Business Suite, claiming responsibility and accusing the company of neglecting security, though Envoy confirmed no sensitive customer data was accessed. This attack is part of a broader campaign by Clop exploiting zero-day vulnerabilities in ...
Read More » -
Salesforce Refuses to Pay Ransom in Massive Data Breach
Salesforce has refused to pay a ransom after a data breach allegedly exposed nearly one billion customer records, emphasizing its policy against negotiating with cybercriminals despite the risk of data exposure. The attack, initiated in May, involved English-speaking operatives tricking employees...
Read More » -
1.2 Million SimonMed Patients Hit by Data Breach
Over 1.2 million patients of SimonMed Imaging were affected by a data breach, where hackers gained unauthorized network access, potentially exposing sensitive personal and medical information. The Medusa ransomware group claimed responsibility, demanding a $1 million ransom after exfiltrating 212...
Read More » -
Harvard Probes Data Breach from Oracle Zero-Day Flaw
Harvard University is investigating a potential data breach after the Clop ransomware group listed it on its leak portal, likely due to a zero-day vulnerability in Oracle's E-Business Suite servers. The university confirmed the issue is widespread among Oracle clients, applied the security patch ...
Read More » -
Qilin Ransomware Hits Asahi Brewery, Leaks Sensitive Data
The Qilin ransomware group claimed responsibility for a cyberattack on Asahi, leaking thousands of sensitive documents including financial records and employee IDs to prove the breach. The attack disrupted Asahi's operations, forcing the temporary shutdown of six production facilities and causing...
Read More » -
Trinity of Chaos Ransomware Unveils New Data Leak Site
Trinity of Chaos, a ransomware collective with ties to major cybercrime groups, has launched a TOR-based data leak site listing 39 international corporations, including Toyota, FedEx, and Disney, marking an escalation in their tactics. The group is publishing previously unreleased data from past ...
Read More » -
Clop Ransomware Group Claims Oracle Data Theft in New Extortion Emails
A sophisticated extortion campaign is targeting corporate executives with emails alleging data theft from Oracle E-Business Suite systems, tracked by security firms Mandiant and Google. Attackers, potentially linked to the Clop ransomware group and historically connected to FIN11, demand payment ...
Read More » -
DHS Data Hub Leaked Sensitive Intel to Thousands
A misconfigured DHS online platform exposed 439 classified intelligence products to thousands of unauthorized users, including government staff, contractors, and foreign nationals, over two months in early 2023. The leaked data included sensitive reports on cybersecurity threats, foreign hacking,...
Read More » -
Naval Group Probes Major 1TB Data Breach in France
France’s Naval Group is investigating a potential cybersecurity incident after a 1TB data leak appeared on hacking forums, dismissing initial breach claims but acknowledging a reputational attack. The company confirmed no unauthorized IT access was detected and operations remain unaffected, while...
Read More » -
Files Encrypted with .rgPrGzyZY Extension
Files encrypted with the .rgPrGzyZY extension indicate a severe ransomware attack, locking data until a ransom is paid, though experts discourage compliance. Attackers exploit IT vulnerabilities, exfiltrating sensitive data like financial records and threatening leaks unless paid. Cybersecurity p...
Read More »