In an analysis, cybersecurity firm Hudson Rock found that hacking forum credentials associated with 120,000 computers were compromised by info-stealer malware. Researchers analyzed one hundred prominent cybercrime forums, and found within its intelligence database — which boasts data from more
The Missouri Department of Social Services (DSS) has issued a warning regarding a significant data breach involving Medicaid healthcare information. This breach comes as part of a series of attacks orchestrated by the Cl0p ransomware gang, with reports indicating that the gang stands to gain
Over the course of a year, vpnMentor deployed a honeypot of open servers containing fake personal data to lure outside actors, analyze their behavior, and record what happens once a server is left open without encryption or other safeguards. This gave us near-real-time data on hackers' activity,
Proofpoint Inc. has released a report highlighting the surge in the popularity of EvilProxy, particularly in its use for targeting Microsoft 365 accounts of top-level executives within prominent companies. Cybercriminals favor these kits due to their minimal requirement for technical expertise or
The UK Electoral Commission has disclosed a massive cybersecurity breach that exposed the personal data of an estimated 40 million UK voters. The breach, which began in August 2021, remained undetected until October 2022. The compromised data includes full names, email addresses, home addresses,
On Friday, the Colorado Department of Higher Education (CDHE) made an announcement regarding a data breach. The department detected this breach on June 19th and have since been collaborating with external specialists to manage the situation. Those impacted include people who attended public higher
Hackers exploiting a vulnerability in the corporate file transfer tool MOVEit Transfer have stolen protected health information belonging to Oregon citizens. The hackers accessed sensitive patient data, including names, birthdates, Social Security numbers, email and mailing addresses, and member
Cybersecurity firm CYFIRMA has uncovered a sophisticated spear messaging campaign targeting WhatsApp users in South Asia. The attack involves leading users to install a malicious Android app named "SafeChat". The app then stealthily steals sensitive user data, including call logs, texts, and GPS
Guardio Labs security researchers uncovered a new, unpatched exploit in Salesforce email servers that resulted in an advanced email phishing campaign. The vulnerability allowed hackers to craft phishing emails under the company's email servers and domain, which were then used to target Facebook
In a wave of cyber attacks that have sent shockwaves through the European banking sector, users of multiple financial institutions have fallen victim to the insidious SpyNote Android spyware. The notorious malware, traditionally known for espionage and data collection, has recently been repurposed