A threat actor has announced the sale of confidential data from Energo, the primary producer of electric and heat energy in Kyrgyzstan. The data, allegedly extracted directly from Energo’s network, is being offered for $5,000. Details of the Alleged Breach: Source: Energo’s network Total Size: 230 GB Price: $5,000 USD Network…
Category: Cyber Attack
A threat actor published their alleged cyber attacks on Israeli targets. A threat actor under the moniker “Handala Hack” shared two Telegram messages in their channel, claiming to have attacked Chaim Sheba Medical Center and Innovalve Bio Medical LTD. According to the context of the messages, it can be considered that…
According to a threat actor on a dark web forum, customer data from BWW Hong Kong is allegedly leaked. The threat actor claims that nearly 14,000 rows of customer information from BMW Hong Kong was breached. The alleged breach occurred in July 2024. The forum post indicates that the compromised data…
A threat actor on a dark web forum published a database allegedly belonging to Trello. In the forum post it is stated that Trello has an open API endpoint that allows any unauthenticated user to map an email address to a Trello account as the source of alleged leak. According to…
Wired attributes the recently disclosed AT&T data breach to a hacker living in Turkey and reported the company paid a $370,000 ransom. An American hacker who lives in Turkey claimed responsibility for the recently disclosed AT&T data breach. The man also said the company paid a ransom to ensure that stolen…
A post has surfaced from a threat actor claiming to sell full access to the internal network of one of the largest companies in Poland. The compromised network reportedly includes 5,068 PCs and spans 34 networks. The access is described as active, meaning the infiltrator currently maintains control. The asking price…
A hacker is offering for sale an SQL injection exploit targeting PHPBB forums. This exploit allows an authenticated attacker to execute SQL queries and retrieve databases from the targeted PHPBB installation. Exploit Details: Type: SQL Injection Target: PHPBB (Tested on the latest version) Capabilities: Execute SQL queries and retrieve databases Price:…
Earlier, motherboard manufacturer Zotac was found to have leaked a significant amount of detailed customer information due to a failure to configure server permissions properly. This oversight allowed search engine crawlers to directly index...
The post MSI’s Massive Security Breach: 600K+ Warranties Exposed appeared first on Cybersecurity News….
A hacker has put up for sale an exploit targeting OpenSSH version 9.6, which allows for command injection and remote code execution (RCE). The seller claims this exploit is tested and confirmed to work, posing a significant risk to systems running the affected version. Exploit Details: Type: Command Injection (RCE) Target:…
Threat Actor: FIN7 | FIN7 Victim: Silent Push | Silent Push Price: Not specified Exfiltrated Data Type: Data and credit card information Key Points : Russian-linked FIN7 is a financial cybercrime group that targets US industries. FIN7 uses spearphishing, ransomware, malicious browser extensions, and…
In July 2024, a threat actor claimed that 1Tx.io suffered a data breach, potentially exposing the information of up to 23,000 companies. The compromised data, formatted in a CSV file with 23,305 rows, includes various sensitive details. The data fields allegedly include company IDs, account types, company names, emails, first and…
The American drugstore chain Rite Aid Corporation disclosed a data breach following the cyber attack that hit the company in June. The American drugstore chain giant Rite Aid suffered a data breach following a cyberattack in June conducted by the RansomHub ransomware group. The group is the third-largest drugstore chain in…
A threat actor has surfaced on Breachforums, claiming to possess and sell a database from SFR (Société Française du Radiotéléphone), the third-largest telecom company in France. Breach Details: Breach Date: June 7, 2024 Compromised Users: 1,445,683 Compromised Data: Names Landline Phone Numbers Geographic Locations (including latitude and longitude) Subscription status Redlist…
AT&T disclosed a new data breach that exposed phone call and text message records for approximately 110 million people. AT&T suffered a massive data breach, attackers stole the call logs for approximately 110 million customers, which are almost all of the company’s mobile customers. The stolen data was stolen on a…
According to a post on a dark web forum, a threat actor claims to offer the personal details of 11 million Dresslily users for sale. The data is being sold for $200,000, with a promise of a one-time sale. The threat actor provided a sample as well as an email as…