In a recent announcement, the hacking group SiegedSec declared the start of their campaign titled “Seven Days of Siege”, which promises to release a series of hacks over a week. The group apologized for their recent inactivity, attributing it to the preparation of multiple hacks that are set to be unveiled…
Category: Cyber Attack
Healthcare firm HealthEquity disclosed a data breach caused by a partner’s compromised account that exposed protected health information. Healthcare fintech firm HealthEquity disclosed a data breach after a partner’s compromised account was used to access its systems. The intruders have stolen protected health information from the company systems. The company discovered…
Les autorités de l’État de l’Alabama enquêtent sur une cyberattaque contre le Département de l’éducation de l’État, qui a entraîné une violation de données et la perturbation de services. Les hackers ont pu accéder à des informations personnelles de étudiants et d’employés, mais les autorités travaillent à déterminer l’étendue de la violation. Des mesures de sécurité supplémentaires ont été mises en place pour protéger les données et une page d’information a été créée pour informer le public sur l’enquête.
A threat actor is allegedly selling Docker container escape on a dark web forum. According to the post on the forum, this allows an attacker to escape the container environment to the host system. It is also stated that a previous vulnerability published by the same threat actor can be chained…
A threat actor is allegedly selling a database of an agency from the Government of Colombia consisting of user data as well as an access to the databa on a dark web forum. According to the threat actor the alleged data includes user id, numbers, emails, PDF invoices, user documents and…
La société néo-zélandaise Elite Fitness a confirmé avoir été victime d’une attaque ransomware par le groupe DragonForce, qui a entraîné la fuite de données de clients et d’employés. Les données volées, qui comprennent des informations personnelles et des documents commerciaux, ont été publiées sur le dark web. Elite Fitness a notifié les autorités compétentes et a mis son site web hors ligne en raison de l’incident.
A threat actor on a dark web forum published a SYSMON Administrator access for an Indonesian cloud service provider offering solutions including multi-data center services, cloud, cyber security, office collaboration, disaster recovery, cloud software, and much more. According to the post, the alleged access for sale offers full control over 11,903…
Le Banco de Desenvolvimento da Região Sul do Brasil (BRDE) a été victime d’une cyberattaque le 25 juin, ce qui a rendu ses systèmes temporairement indisponibles. Les équipes internes travaillent pour restaurer la normalité des services, et l’institution a informé les autorités compétentes et a ouvert une enquête sur l’incident. Selon le BRDE, les attaquants n’ont pas eu accès aux données du banque ni de ses clients.
L’Institut des architectes et le Bureau de gestion des registres d’architecture ont été victimes d’une attaque de logiciel de rançon, entraînant l’interruption de leurs services de site web. Les données personnelles des utilisateurs pourraient avoir été compromises. Les détails de l’incident ne sont pas encore clairs.
A threat actor claims to be selling the databases of Rappi, RappiCarga, and RappiPay, affecting users across Colombia, Peru, Mexico, Brazil, and Chile. According to the threat actor, the full data amounts to more than 5TB. The alleged price for this extensive data set is $10,000. The threat actor also states…
In June, cybersecurity experts have identified of 28 new variants of ransomware. These malicious programs, characterized by their insidious nature, pose a significant threat to individuals and businesses alike. With each new variant, cybercriminals are refining their tactics, making detection and mitigation increasingly challenging. Ransomware operates by encrypting valuable data on…
In a cyber incident, an individual claims to be selling a massive trove of data allegedly stolen from Shopify, a leading global e-commerce platform. The data purportedly includes personal and transactional information of nearly 180,000 Shopify users. The breach, which reportedly occurred in 2024, exposes sensitive customer information. The data set…
In a huge cyber incident, a data breach allegedly involving Airtel India, one of the country’s largest telecommunications providers, has been announced. The breach reportedly exposes the personal details of over 375 million Airtel India customers, with the data being offered for sale on the dark web. The seller, who claims…
A threat actor published a post on a dark web forum, advertising an account takeover vulnerability for npm, a package manager for JavaScript. The alleged vulnerability has several capabilities according to the post. It can target the npm accounts of specific organizations or developers and allow for the injection of backdoors….
A threat actor, identified as “chengyi,” posted on a dark web forum offering Philippine Ministry of Foreign Affairs emails for sale. The post included a sample download link and contact information, indicating the data could be updated regularly. The said breach happened sometime in June 2024 as per the threat actor.