A threat actor has recently emerged, purportedly offering unauthorized access to firewall VPNs and hosts on a large scale. The VPN access spans countries like the US, UK, and others, primarily targeting industries such as IT and telecom. With root privileges, these accesses encompass VPN, SSH, and shell functionalities, totaling 4,000…
Category: Cyber Attack
Business intelligence software company Sisense suffered a cyberattack that may have exposed sensitive information of major enterprises worldwide. Sisense, a business intelligence software company, experienced a cyberattack potentially exposing the sensitive data of global enterprises. The list of the company’s customers includes Nasdaq, Philips Healthcare, Verizon, and many others. The cyber…
A threat actor has allegedly leaked the database of BHF Couriers, a freight services provider based in Australia. According to the threat actor, their database containing critical information has been compromised. The breach encompasses a vast array of data, including trading addresses, postal addresses, telephone numbers, email addresses, order and payment…
A threat actor has purportedly announced the sale of data associated with Académie de Lyon and the French Ministry of Education, comprising approximately 40,000 users. The disclosed information is said to encompass identities, addresses, phone numbers, emails, and relationships between middle school students, parents, teachers, and academic staff within the Lyon…
In a significant data security incident, a threat actor, IntelBroker, has claimed responsibility for the leakage of a vast database belonging to Accor, a prominent multinational hospitality giant based in France. The breach, occurring in March 2024, resulted in the exposure of personal data belonging to 642,000 users. Among the compromised…
A threat actor alleging to possess a zero-day exploit allowing for Remote Code Execution (RCE) in Microsoft Outlook and trying to sell it on a hacking forum. According to the actor, this zero-day exploit bypasses security measures across all versions of the popular email client. According to the post, the buyer…
Group Health Cooperative of South Central Wisconsin disclosed a data breach that impacted over 500,000 individuals. The Group Health Cooperative of South Central Wisconsin (GHC-SCW) is a non-profit organization that provides health insurance and medical care services to its members in the Madison metropolitan area of Wisconsin. The organization disclosed a…
AT&T confirmed that the data breach impacted 51 million former and current customers and is notifying them. AT&T revealed that the recently disclosed data breach impacts more than 51 million former and current customers and is notifying them. In March 2024, more than 70,000,000 records from an unspecified division of AT&T were…
A recently surfaced threat actor has made alarming claims of offering access to a Snapchat employee’s privileges, purportedly granting buyers the ability to manipulate user data, accelerate account access requests within a short window of 5-15 minutes, immediately alter account details upon approval, authorize reports resulting in account bans, and oversee…
On Q Financial, une société de prêts hypothécaires basée en Arizona, a signalé une violation de données affectant 211,650 clients au bureau du procureur général du Maine le 2 avril, suite à une exploitation de vulnérabilité dans le logiciel ScreenConnect de ConnectWise, détectée le 20 février. Le groupe de rançongiciel BianLian a revendiqué la responsabilité de l’attaque, affirmant avoir volé 1TB de données, y compris des informations financières et personnelles. ConnectWise avait préalablement averti d’une vulnérabilité critique (CVSS 10/10) dans ScreenConnect, mais malgré les avertissements, de nombreux serveurs sont restés non patchés, permettant aux attaquants d’exploiter
L’American Renal Associates (désormais connu sous le nom d’Innovative Renal Care), qui compte plus de 230 établissements aux États-Unis, est devenu la dernière victime en date d’une attaque de ransomware dans le secteur clinique-hospitalier. Récemment, le groupe Medusa a mis à la disposition du public, sur son site web, des milliers de données PHI et PII volées sur les serveurs de l’entreprise.
In a concerning development, a threat actor has surfaced, purporting to sell unauthorized access to a hosting provider infrastructure. With a purported control over a vast network of more than 120,000 registered domains, the offering includes coveted privileges such as root access and administrative panel control. The hosting provider’s revenue, estimated…
Allegedly, a threat actor has shared details of this vulnerability, affecting millions of users associated with Volaris and Invex Mexico. While other hackers have reportedly discovered this vulnerability, they have chosen not to disclose it publicly. It is estimated that over 3 million cards, along with their numbers, dates, CVVs, and…
In a concerning development, a threat actor has claimed responsibility for the sale of a 447.5 GB database allegedly obtained from the Suzuki Pakistan. The compromised dataset includes finance, accounting, HR/employee, IT, compliance, and administrative documents. Additionally, it contains the source code of IT applications, email boxes (PST) from managers/executives, passports,…
In December 2023, a threat actor has purportedly leaked a database containing the employee information of Indosat Ooredoo Hutchison. This data, previously undisclosed, is now being disseminated on the internet for the first time due to Indosat’s failure to comply with the perpetrator’s demands. The breach comprises two distinct files: the…