A threat actor has announced the sale of a database allegedly obtained from a recent breach of MyRepublic Indonesia, a prominent telecommunications company known for its high-speed fiber broadband services. MyRepublic operates across several countries, offering broadband internet, mobile services, and enterprise solutions. Details of the Breach: Date of Breach: June…
Category: Cyber Attack
A threat actor has recently surfaced, claiming to be selling unauthorized access to the network of a major Irish retailer with an annual revenue exceeding $500 million. The access being sold is of the AnyConnect (AD) type, which potentially grants significant control over the retailer’s network infrastructure. In their announcement, the…
On June 20, 2024, a user known as “inchworm” posted on a forum claiming to have obtained 66,241 records from multiple Toyota dealerships in the Philippines.
A threat actor has claimed to have leaked data for 1 million users of TicketMaster out of a total of 680 million customer records they possess and are attempting to sell. Ticketmaster Entertainment, LLC, is an American ticket sales and distribution company headquartered in Beverly Hills, California. The company operates in…
According to a post on a dark web forum, a threat actor is selling access for a company from the USA and the price for the alleged access is 45k USD. It is also stated that the revenue of the company is 1+ billion USD. The threat actor’s alleged sale of…
A threat actor shared a post on a dark web forum, claiming to have data belonging to accenture, a global consulting firm operating in various domains. According to the post published on a dark web forum, the consulting giant suffered a data breach because of a third party. As a result,…
The threat actor IntelBroker shared an alleged data leak from telecommunications giant T-Mobile. According to the post, compromised data includes source code, SQL files, images, terraform data, t-mobile.com certifications, siloprograms and more. IntelBroker also included several images from the alleged leak. The threat actor didn’t mention any price for those who…
A threat actor has claimed to possess a database from TEG (teg.com.au), an Australian ticket vendor, containing 30 million user records. The alleged data includes sensitive information such as names, genders, dates of birth, usernames, hashed passwords, and more. TEG is a prominent ticketing company in Australia, facilitating a wide range…
Threat Actor: Sp1d3r | Sp1d3r Victim: Jollibee | Jollibee Price: $40,000 USD Exfiltrated Data Type: Personal data of 32 million customers and 650 million records related to food delivery operations. Key Points : The data breach involves Jollibee, the Filipino fast-food giant. The compromised data in…
Globe Life Inc. a signalé une cyberattaque à la Securities and Exchange Commission, qui a probablement entraîné une violation de données affectant des informations de consommateurs et de titulaires de police. L’enquête est en cours pour déterminer l’étendue de la violation et les données compromises. Si la violation est confirmée, les personnes affectées recevront des lettres de notification de violation de données.
Le groupe chinois 俊思集团 (Junsi Group) a été victime d’une cyberattaque, entraînant la fuite de données personnelles de plus de 54 000 membres et employés de la marque Brooks Brothers. Les informations compromises incluent les noms, adresses e-mail, numéros de téléphone, mois de naissance, sexe et nationalité. L’entreprise a pris des mesures pour sécuriser son système et a signalé l’incident aux autorités compétentes.
A threat actor is allegedly selling a zero-day Local Privilege Escalation (LPE) exploit targeting Windows 8.1, 10, and 11. This exploit purportedly leverages a race condition vulnerability in the Windows kernel, specifically designed for x64 systems. It claims to elevate the rights of any already running process to SYSTEM level. For…
AMD announced an investigation after a threat actor attempted to sell data allegedly stolen from its systems. AMD has launched an investigation after the threat actor IntelBroker announced they were selling sensitive data allegedly belonging to the company. “We are aware of a cybercriminal organization claiming to be in possession of…
A threat actor is allegedly selling unauthorized access to an UK bank server with reported revenue under $200 million. The claimed access includes full root privileges, API access, and more. Additionally, the server is reportedly connected to a local LAN, allowing for potential pivot techniques. While the data on this specific…
Supply chain attacks have become increasingly prevalent. While large corporations and government agencies typically boast complex information security systems and robust defense infrastructure, their smaller vendor counterparts often lack comparable defensive capabilities.