Cyber Attack Archives - Cybersecurity News Everyday

CTM360 Tracks Global Surge in SMS-Based Reward and Toll Scams

Summary: CTM360 has reported a significant rise in SMS-based phishing campaigns known as PointyPhish and TollShark, targeting consumers globally through automated tactics. Both campaigns leverage urgency and impersonation of trusted entities to extract sensitive financial information, posing a severe threat to a wide range of customers.…

Cyber Attack

Ahold Delhaize confirms data theft after INC ransomware claims attack

April 17, 2025 BleepingComputer

Summary: Ahold Delhaize has confirmed that data was stolen from its U.S. business systems during a cyberattack in November 2024. The investigation is ongoing, with potential impacts on customer data being assessed. The ransomware group INC Ransom has publicly leaked documents allegedly obtained from the company.…

Cyber Attack

William Buck Responds to Cybersecurity Incident with External Investigation

April 17, 2025 Monitorman

Date Reported: 2025-04-17 Country: AUS | Australia Victim: William Buck | William Buck Website: williambuck.com Information :William Buck experienced a security breach affecting its IT systems. Some data may have been compromised due to this incident. The company has activated its incident response plan. External experts have been engaged to investigate the breach.…

Cyber Attack

CISA Warns of Credential Risks Tied to Oracle Cloud Breach

April 17, 2025 SecurityOnline

Summary: Oracle has informed select clients about a security breach where attackers accessed legacy environments, exposing outdated user credentials. Data from the breach, including usernames and hashed passwords, has been shared publicly, raising concerns due to the potential for misuse. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning around the risks of compromised credentials in this incident.…

Cyber Attack

Cisco Webex Vulnerability Lets Hackers Execute Code Through Malicious Meeting Links

April 17, 2025 Cyware

Summary: Cisco has warned of a critical vulnerability (CVE-2025-20236) in its Webex App that could allow attackers to execute arbitrary code on user systems by manipulating meeting invite links. This flaw, stemming from improper input validation, carries a high CVSS score of 8.8 and requires user interaction to exploit.…

Cyber Attack

Anonymous Releases 10TB of Leaked Data Targeting Russia

April 17, 2025 LeakNews

Summary: The hacktivist group Anonymous has released 10 terabytes of classified data in a cyberattack against Russia, claiming it is in defense of Ukraine. The leak includes sensitive information on Russian government officials, pro-Kremlin assets, and notable figures like Donald Trump, suggesting potential foreign influence ties.…

Cyber Attack

CISA warns of potential data breaches caused by legacy Oracle Cloud leak

April 17, 2025 LeakNews

Summary: Federal cybersecurity officials have issued a warning regarding a data breach affecting Oracle, where hackers reportedly accessed and stole client credentials from legacy systems. The incident, which has not been publicly addressed by Oracle, has led to threats against customers as the hacker attempts to sell stolen records.…

Cyber Attack

Experts Uncover Four New Privilege Escalation Flaws in Windows Task Scheduler

April 17, 2025 LeakNews

Summary: Cybersecurity researchers have identified four vulnerabilities in the Windows task scheduling service that allow local attackers to gain privilege escalation and erase critical audit logs. These vulnerabilities relate to the “schtasks.exe” binary, which can be exploited through methods like Batch Logon authentication. This can lead to unauthorized access and data theft while enabling attackers to cover their tracks effectively.…

Cyber Attack

More than 100,000 had information stolen from Hertz through Cleo file share tool

April 17, 2025 LeakNews

Summary: Hertz has reported a data breach impacting thousands of individuals after hackers exploited a vulnerability in the Cleo file sharing platform. The breach resulted in the theft of sensitive information, including Social Security numbers and driver’s licenses, although the total number of affected individuals nationwide is unclear.…

Cyber Attack

Rhône FM Radio in Valais Falls Victim to Cyberattack, Seeks Ransom for Data Recovery

April 16, 2025 Monitorman

Date Reported: 2025-04-15 Country: CHE | Switzerland Victim: Rhône FM | Rhône FM Website: rhonefm.ch Information :The Valais radio station Rhône FM has fallen victim to a cyberattack. Hackers encrypted the broadcasting servers and are demanding a ransom for data recovery. On Tuesday morning, the radio was able to broadcast in a limited mode.…

Cyber Attack

From Third-Party Vendors to U.S. Tariffs: The New Cyber Risks Facing Supply Chains

April 16, 2025 LeakNews

Summary: Cyber threats targeting supply chains have significantly increased, with attackers exploiting vulnerabilities in third-party vendors and interconnected systems. Notable incidents, such as the 2024 ransomware attack on Change Healthcare, underscore the need for improved security measures to protect sensitive data. Industries including manufacturing, healthcare, retail, energy, and finance are particularly vulnerable, necessitating proactive security strategies to mitigate risks and ensure operational continuity.…

Cyber Attack

4chan Suffers Major Cyberattack, Sensitive Data Leaked

April 16, 2025 SecurityOnline

Summary: The online forum 4chan has suffered a severe cyberattack, resulting in the leak of sensitive data including source code and user information. The attackers claim to have infiltrated the site for over a year, leading to potential concerns over further intelligence breaches. As 4chan is currently inaccessible, there are indications that the attack may be driven by animosity rather than financial motives.…

Cyber Attack

Hertz disclosed a data breach following 2024 Cleo zero-day attack

April 16, 2025 Cyware

Summary: Hertz Corporation disclosed a data breach affecting its brands due to vulnerabilities in Cleo’s file transfer software, which were exploited by threat actors. Over 3,400 Maine residents were specifically impacted, and sensitive customer data may have been compromised. The Clop ransomware group claimed responsibility, threatening to publish the stolen data if ransom demands were not met.…

Cyber Attack

PasivRobber Malware Emerges, Targeting macOS to Steal Data From Systems and Apps

April 16, 2025 Cyware

Summary: A new sophisticated malware suite named “PasivRobber” targeting macOS was discovered on March 13, 2025, designed to steal sensitive data from popular applications, particularly among Chinese users. It employs deceptive installation techniques and exhibits a multi-layered structure with advanced capabilities to extract information from various sources.…

Cyber Attack

Ransomware gang says it hacked the Oregon Department of Environmental Quality

April 16, 2025 Cyware

Summary: The ransomware gang Rhysida has claimed responsibility for a cyber attack on the Oregon Department of Environmental Quality (DEQ), resulting in significant disruptions to the department’s operations. While DEQ reported no evidence of a data breach, Rhysida alleges to have stolen over 2.5 TB of sensitive data and is demanding a ransom of 30 bitcoin.…

Cyber Attack

Landmark Admin data breach impact now reaches 1.6 million people

April 16, 2025 BleepingComputer

Summary: Landmark Admin has reported that a cyberattack from May 2024 has impacted approximately 1.6 million individuals, significantly more than initially estimated. The breach exposed various personal information, including Social Security numbers and medical details. Landmark is actively notifying affected individuals and offering credit monitoring services to mitigate risks related to the data exposure.…

Cyber Attack

Insurance Firm Lemonade Says API Glitch Exposed Some Driver’s License Numbers

April 16, 2025 LeakNews

Summary: Lemonade, an insurance firm, is notifying approximately 190,000 individuals that their driver’s license numbers may have been exposed due to a technical glitch from April 2023 to September 2024. The vulnerability in the online application’s quote flow allowed unauthorized access to these numbers, though the company claims no evidence of misuse has been found.…

Cyber Attack

Cyberattack Disrupts Operations at Jemeppe-sur-Sambre Municipal Administration

April 16, 2025 Monitorman

Date Reported: 2025-04-14 Country: BEL | Belgium Victim: Administration communale de Jemeppe-sur-Sambre | Jemeppe-sur-Sambre Municipal Administration Website: jemeppe-sur-sambre.be Information :The municipal administration of Jemeppe-sur-Sambre was the victim of a cyberattack. Employees were unable to connect to the server or access their email accounts. Authorities contacted the federal judicial police for assistance.…

Category: Cyber Attack