LastPass, a well-known password manager, disclosed the security problems encountered by the company in the latest blog. It is suspected that hackers invaded the intranet after stealing accounts through phishing. The good news is...
The post Hackers attacks LastPass and steals source code appeared first on Cybersecurity News….
Category: Cyber Attack
In April, MSI fell victim to a cyberattack perpetrated by the ransomware group Money Message, who successfully infiltrated MSI’s internal systems and exfiltrated a staggering 1.5TB of data, predominantly comprising source code. Nowadays, ransomware...
The post Intel OEM Private Key Leak: A Blow to UEFI Secure Boot Security appeared first on Cybersecurity…
A threat actor has surfaced with claims of selling unauthorized access to the database of a major Italian Internet Service Provider (ISP) through an SQL Injection vulnerability. This access allegedly compromises critical data from 20 different databases. The databases include “clienti,” “information_schema,” “n2q_gest,” and others that have been redacted to avoid…
Recent cyberattacks have been reported in the cybersecurity landscape in the Philippines, with both Cargo Padala Express Forwarding Corporation, a logistics and freight forwarding company, and Toyota Zamboanga City as the latest victims to data breaches which is attributed to threat actors known as “Nick Diesel” and “inchworm” respectively. At Cargo Padala Express Corporation, Nick … Continue reading Data Breach Hits Cargo Padala Express Forwarding Corporation (CaPEx) and Toyota Zamboanga City Branch
In a cybersecurity incident, a threat actor is allegedly offering VPN access to the network of a large manufacturing company based in the USA. The access includes domain admin and NTDS rights for two main domains, posing a significant security risk. The targeted company, with a revenue exceeding $3 billion, operates…
A threat actor is selling the data belonging to BlackBerry’s Cylance cybersecurity unit, he demanded $750,000. A threat actor, that goes online with the moniker Sp1d3r, is selling the stolen data for $750,000. The data includes 34 million customer and employee emails, customer / prospect email and PII, products used by…
The threat actor, under the moniker Black Maskers Army, shared messages from their Telegram channel. In these messages, they mentioned their previous attacks with TeamX, another threat actor. The message mentions that they didn’t share any data because their aim is to disrupt services due to the content published on TV…
In a dark web forum, a threat actor is claiming to have patient data from a hospital group. The post owner is selling the data from India’s Metro Group of Hospitals (metrohospitals.com). According to the threat actor, the database is 379 GB and it consists of approximately 1.5 million records of…
In a announcement, the hacker group known as Darkmeta has claimed responsibility for a series of distributed denial-of-service (DDoS) attacks targeting multiple Microsoft platforms. The group alleges that their attacks have been ongoing for over 27 hours, causing significant disruptions to Microsoft’s online services. Duration and Impact Darkmeta’s statement asserts that…
A threat actor has announced the sale of unauthorized VPN access to an IT service management company operating in the United States and another unspecified country. The company reportedly has annual revenue exceeding $500 million. The asking price for this access is set at $5,000, with the possibility of negotiation. Details…
A threat actor has announced that they are selling a significant amount of data allegedly stolen from Truist Bank, linking the breach to a wider Snowflake breach. The compromised data includes sensitive information about both employees and bank transactions, alongside source code for the bank’s IVR funds transfer system. Details of…
Handala Team has announced that it has successfully hacked SolidCAM, a leading provider of integrated CAD/CAM solutions for manufacturing applications. According to the group, they have gained access to over 800GB of the company’s data. SolidCAM is known for its on-premise computer-aided manufacturing (CAM) software, which integrates with other CAD and…
A threat actor has announced that they are selling a database allegedly stolen from Aruba S.p.A., an Italian web hosting and domain registration company. The database is said to contain 10,400 records with extensive personal information. Details of the Leak: Date: 10.06.24 Website: Aruba.it Price: Private Message for details Format: XLSX…
In a post from a dark web forum, a threat actor has claimed to have identified two critical 0-day vulnerabilities in the most recent version of OpenCart, a popular online store management system. The vulnerabilities stated by the threat actor include an SQL injection flaw and a broken access control issue….
Auction house Christie’s revealed that the data breach caused by the recent ransomware attack impacted 45,000 individuals. At the end of May, the auction house Christie’s disclosed a data breach after the ransomware group RansomHub threatened to leak stolen data. The security breach occurred in early May and the website of the auction…