#hacking

#hacking

A consumer-grade spyware app, pcTattletale, was hacked with internal data made public by the hacker responsible. [ more ]

A cybersecurity expert in South Korea illegally accessed and distributed private videos from vulnerable wallpad cameras in 400,000 households. [ more ]

China poses a significant cyber threat to the UK and other western countries. [ more ]

Weak and common PIN numbers make accounts vulnerable to hacking. [ more ]

The importance of cybersecurity measures and vigilance in protecting IT systems from malicious hackers. [ more ]

XpressBees experienced a data breach affecting up to 95,000 users' personal information.

Hackers potentially accessed names, addresses, email addresses, phone numbers, and financial details in the breach. [ more ]

Lukfook Jewellery investigating potential data breach and cannot confirm leaked information. [ more ]

Hackers stole 4TB data, including Ready or Not game source code and console builds, no personal info compromised. [ more ]

Midnight Blizzard cyber attack on Microsoft involved password-spraying to access an account.

Microsoft faces ongoing and escalating cyber attacks from Midnight Blizzard, a sophisticated hacker group. [ more ]

A user in a hacking forum claimed to have stolen data from Europcar, but Europcar says the data is fake.

The sample data shared online does not match Europcar's records and appears to be generated by ChatGPT. [ more ]

Increase in cyber security incidents in the mortgage and title industry

Cybersecurity professionals are dealing with more sophisticated hackers [ more ]

Finham Park Multi Academy Trust in Coventry has been reprimanded by the Information Commissioners Office for data breaches.

The school's IT system was hacked three times and 1,843 UK Data Subjects were affected.

The ICO found that the school did not have adequate account lockout or password policies in place. [ more ]

Bitcoin DeFi app ALEX Lab lost $4.3 million in tokens due to private key compromise in bridging service. [ more ]

The SEC's Twitter account was hacked and a false announcement about approving bitcoin ETFs was posted, causing a temporary spike in the price of bitcoin.

The hackers used a relatively simple scam called SIM swapping to gain access to the SEC's Twitter account and post the fraudulent announcement. [ more ]

The SEC's Twitter account was hacked, causing a false announcement about the approval of a Bitcoin ETF and leading to a temporary spike in Bitcoin's price.

The incident highlights the volatility of Bitcoin and the anticipation of a potential SEC announcement regarding a spot Bitcoin ETF. [ more ]

The SEC announced approval of a new investment product tracking the price of Bitcoin, but it was later revealed that the agency's account had been hacked.

The security breach highlights the ongoing pursuit of a Bitcoin exchange traded fund (ETF), with many speculating about the timing of its approval. [ more ]

Bitcoin price briefly spiked after fake announcement of ETF approval

SEC describes social media post as unauthorized and hacked [ more ]

ShotSpotter may provide gunshot data to police even after contracts end, Change Healthcare paid $22 million ransom, North Korean animators working for Hollywood studios, Cisco devices targeted by state-sponsored hackers [ more ]

North Korean hackers breached the personal emails of a South Korean President's staff member.

The cyberattack only affected the personal account of the employee and did not compromise the overall security system. [ more ]

Nation states are shopping for malware on Russian cybercrime forums.

Russian-speaking hacking forums offer a wide range of tools and services for cybercriminals.

Nation states are increasingly using underground cybercrime forums to pose as cybercriminals. [ more ]

A leading member of the malicious hacking group Kelvin Security has been arrested by Spanish police.

Kelvin Security has carried out over 300 attacks in more than 90 countries in the last three years. [ more ]

Hackers are mass exploiting a third vulnerability in Ivanti's VPN appliance, affecting thousands of organizations worldwide.

One of the newly discovered flaws is a server-side request forgery flaw, which is being actively exploited by hacking groups. [ more ]

Spoutible's API had a vulnerability that allowed hackers to take full control of users' accounts.

Hackers could obtain users' personal information, hashed passwords, 2FA codes, and password reset tokens. [ more ]

Genetic testing company 23andMe has revealed more details about a data breach that occurred in October, but the situation remains unclear and creates uncertainty for users.

Hackers were able to access a small percentage of user accounts, approximately 14,000, but the number doesn't include those impacted by data scraping from the company's social sharing service.

The attackers collected the personal data of about 5.5 million people who opted into DNA Relatives and an additional 1.4 million users who had their Family Tree profile information accessed. [ more ]

Hackers stole a report from identity management company Okta, compromising names and email addresses of users of the company's customer support system.

Data on all other Workforce Identity Cloud and Customer Identity Solution customers was exfiltrated in the hack, impacting Okta's FedRAMP Moderate and DOD IL2 systems.

Okta urged customers to be cautious as the stolen information could be used for phishing or social engineering attacks. [ more ]