#data-theft
#data-theft

Information security

Cisco Talos: LilacSquid Threat Actor Targets Multiple Sectors Worldwide With PurpleInk Malware

LilacSquid, a cyberespionage group, uses various tactics to compromise systems with custom malware, targeting organizations worldwide for data theft. [ more ]

Theregister

Information security

New Nork-y cyberespionage outfit uncovered after three years

A new cybercrime group named LilacSquid has been active for three years, targeting organizations in the US, Europe, and Asia with espionage-focused attacks. [ more ]

TechRepublic

Information security

Cisco Talos: LilacSquid Threat Actor Targets Multiple Sectors Worldwide With PurpleInk Malware

LilacSquid, a cyberespionage group, uses various tactics to compromise systems with custom malware, targeting organizations worldwide for data theft. [ more ]

morelilacsquid

#cybersecurity

ITPro

Information security

Ticketmaster hackers could have exploited AWS instances to gain access to half a billion customer records

Sensitive data of over 560 million Ticketmaster customers stolen and listed for sale by threat actors.

The breach appears to have compromised a vast amount of personal and payment information, going back to 2011.

FBI seized BreachForums for the second time, impacting ShinyHunters. [ more ]

ITPro

3 weeks ago

Information security

Old but gold: Why shoulder surfing is an underappreciated cyber threat

Shoulder surfing, an old yet effective cyber threat, was demonstrated through a real event involving a UK cabinet minister's leaked memo. [ more ]

TechRepublic

Information security

Black Basta Ransomware Struck More Than 500 Organizations Worldwide

Ransomware threat remains high with companies paying ransoms for data recovery. [ more ]

www.dw.com

Europe news

Germany: Cybercrime by foreign actors rose by 28% in 2023 DW 05/13/2024

Cybercrimes by foreign actors increased by 28% in 2023, with most attacks targeted at German companies for data theft, espionage, or sabotage. [ more ]

ComputerWeekly.com

Privacy professionals

Qilin ransomware gang claims cyber attack on the Big Issue | Computer Weekly

A ransomware gang called Qilin claimed responsibility for breaching the Big Issue Group's IT systems and stealing 550GB of confidential data.

The stolen data includes personnel info, contracts, financial statements, and personal addresses like passport scans and payroll information. [ more ]

ComputerWeekly.com

Privacy professionals

British Library opens up over ransomware attack to help others | Computer Weekly

Ransomware attack on British Library

Importance of transparency in cybersecurity incidents [ more ]

ITPro

Information security

Ticketmaster hackers could have exploited AWS instances to gain access to half a billion customer records

Sensitive data of over 560 million Ticketmaster customers stolen and listed for sale by threat actors.

The breach appears to have compromised a vast amount of personal and payment information, going back to 2011.

FBI seized BreachForums for the second time, impacting ShinyHunters. [ more ]

ITPro

3 weeks ago

Information security

Old but gold: Why shoulder surfing is an underappreciated cyber threat

Shoulder surfing, an old yet effective cyber threat, was demonstrated through a real event involving a UK cabinet minister's leaked memo. [ more ]

TechRepublic

Information security

Black Basta Ransomware Struck More Than 500 Organizations Worldwide

Ransomware threat remains high with companies paying ransoms for data recovery. [ more ]

www.dw.com

Europe news

Germany: Cybercrime by foreign actors rose by 28% in 2023 DW 05/13/2024

Cybercrimes by foreign actors increased by 28% in 2023, with most attacks targeted at German companies for data theft, espionage, or sabotage. [ more ]

ComputerWeekly.com

Privacy professionals

Qilin ransomware gang claims cyber attack on the Big Issue | Computer Weekly

A ransomware gang called Qilin claimed responsibility for breaching the Big Issue Group's IT systems and stealing 550GB of confidential data.

The stolen data includes personnel info, contracts, financial statements, and personal addresses like passport scans and payroll information. [ more ]

ComputerWeekly.com

Privacy professionals

British Library opens up over ransomware attack to help others | Computer Weekly

Ransomware attack on British Library

Importance of transparency in cybersecurity incidents [ more ]

morecybersecurity

#cybercrime

Theregister

Data science

Europol confirms incident after data breach claims

Europol is investigating a cybercriminal's claims of stealing data; Europol Platform for Experts affected but no core systems compromised. [ more ]

Nextgov.com

Privacy professionals

FCC staff targeted in phishing attack that cloned agency login site

The FCC was targeted in a phishing operation using a fake login page.

The phishing kit named CryptoChameleon targeted cryptocurrency exchange platforms and successfully collected sensitive information. [ more ]

TechRepublic

4 days ago

Information security

Snowflake Users Targeted for Data Theft and Extortion

Financially motivated threat actor UNC5537 accessed data from 165 organizations' Snowflake instances using stolen credentials and sold data to cybercriminals for various malicious purposes. [ more ]

Theregister

Data science

Europol confirms incident after data breach claims

Europol is investigating a cybercriminal's claims of stealing data; Europol Platform for Experts affected but no core systems compromised. [ more ]

Nextgov.com

Privacy professionals

FCC staff targeted in phishing attack that cloned agency login site

The FCC was targeted in a phishing operation using a fake login page.

The phishing kit named CryptoChameleon targeted cryptocurrency exchange platforms and successfully collected sensitive information. [ more ]

TechRepublic

4 days ago

Information security

Snowflake Users Targeted for Data Theft and Extortion

Financially motivated threat actor UNC5537 accessed data from 165 organizations' Snowflake instances using stolen credentials and sold data to cybercriminals for various malicious purposes. [ more ]

morecybercrime

TechCrunch

Privacy professionals

Hackers are threatening to publish a huge stolen sanctions and financial crimes watchlist | TechCrunch

The stolen World-Check database contains 5.3 million records [ more ]

Theregister

Privacy professionals

185K people's data stolen in Cherry Health ransomware raid

Ransomware attack on US healthcare organization compromised sensitive data of nearly 185,000 individuals. [ more ]

Developer Tech News

Python

PyPI suspends registrations amid malware attack

PyPI has suspended new project creation due to a malware upload campaign.

Attackers are using typosquatting to distribute malicious Python packages for data theft. [ more ]

#cyber-attack

ComputerWeekly.com

Privacy professionals

Ransomware gang leaks data stolen from Scottish NHS board | Computer Weekly

Inc Ransom claimed to have stolen three terabytes of data from NHS Scotland, including sensitive medical reports and patient letters.

NHS Dumfries and Galloway acknowledged a cyber attack, with a small data dump disclosed and ongoing efforts to limit any data sharing. [ more ]

Databreaches

Privacy technologies

After cyber attack, New York hospitals find stolen patient info stored in Massachusetts, look for its return

Claxton-Hepburn Medical Center and Carthage Area Hospital have filed legal paperwork to get their stolen data back

The stolen data was found to be stored on a server owned by Wasabi Technologies in Boston, Massachusetts [ more ]

ComputerWeekly.com

Privacy professionals

Ransomware gang leaks data stolen from Scottish NHS board | Computer Weekly

Inc Ransom claimed to have stolen three terabytes of data from NHS Scotland, including sensitive medical reports and patient letters.

NHS Dumfries and Galloway acknowledged a cyber attack, with a small data dump disclosed and ongoing efforts to limit any data sharing. [ more ]

Databreaches

Privacy technologies

After cyber attack, New York hospitals find stolen patient info stored in Massachusetts, look for its return

Claxton-Hepburn Medical Center and Carthage Area Hospital have filed legal paperwork to get their stolen data back

The stolen data was found to be stored on a server owned by Wasabi Technologies in Boston, Massachusetts [ more ]

morecyber-attack

#minnesota-timberwolves

ESPN.com

National Basketball Association

Fired Wolves employee given supervised release

An ex-employee of the Minnesota Timberwolves was arrested for stealing sensitive internal information.

The stolen data included strategic NBA information and the executive's personal details. [ more ]

ESPN.com

National Basketball Association

Wolves employee fired, arrested for alleged theft

An employee of the Minnesota Timberwolves was fired, arrested, and charged with felony third-degree burglary for stealing strategic NBA information.

The Timberwolves executive, Sachin Gupta, had his personal and team-related information stolen from a hard drive left in his office. [ more ]

ESPN.com

National Basketball Association

Fired Wolves employee given supervised release

An ex-employee of the Minnesota Timberwolves was arrested for stealing sensitive internal information.

The stolen data included strategic NBA information and the executive's personal details. [ more ]

ESPN.com

moreminnesota-timberwolves

National Basketball Association

Wolves employee fired, arrested for alleged theft

An employee of the Minnesota Timberwolves was fired, arrested, and charged with felony third-degree burglary for stealing strategic NBA information.

The Timberwolves executive, Sachin Gupta, had his personal and team-related information stolen from a hard drive left in his office. [ more ]

Theregister

Privacy professionals

Change Healthcare's data protection under US investigation

Change Healthcare under investigation for alleged data theft by ALPHV ransomware group

US HHS launching formal inquiry into Change Healthcare's data protection practices [ more ]

#extortion

Databreaches

Privacy technologies

Vastaamo victims' lawyer: Some took their own lives after patient record leak

Patient records from Vastaamo used in extortion led to suicides.

Trial of Aleksanteri Kivimäki nearing conclusion in data theft case. [ more ]

Databreaches

Public health

Capital Health acknowledges a cyberattack last month but details are lacking

LockBit3.0 claims to have stolen over 10 million files and 7 terabytes of medical confidentiality data from CapitalHealth.org in New Jersey.

There is no proof to support LockBit3.0's claims and Capital Health has not mentioned any extortion attempt or known group claiming responsibility. [ more ]

Databreaches

Privacy technologies

Vastaamo victims' lawyer: Some took their own lives after patient record leak

Patient records from Vastaamo used in extortion led to suicides.

Trial of Aleksanteri Kivimäki nearing conclusion in data theft case. [ more ]

Databreaches

Public health

Capital Health acknowledges a cyberattack last month but details are lacking

LockBit3.0 claims to have stolen over 10 million files and 7 terabytes of medical confidentiality data from CapitalHealth.org in New Jersey.

There is no proof to support LockBit3.0's claims and Capital Health has not mentioned any extortion attempt or known group claiming responsibility. [ more ]

moreextortion

WIRED

Artificial intelligence

Here Come the AI Worms

AI worms can now spread between generative AI agents, potentially causing data theft and malware deployment.

As generative AI systems become more autonomous, the risk of new cyberattacks increases. [ more ]

#cybersecurity-threats

Theregister

Information security

GitHub struggles to keep up with automated malicious forks

Malware campaign started in PyPI spread to GitHub infecting 100,000 repositories.

Attackers upload altered files to GitHub, cloning legitimate repos to spread malware loaders. [ more ]

TechRepublic

Privacy professionals

Google's Threat Analysis Group's Spyware Research: How CSVs Target Devices and Applications

Commercial surveillance vendors sell surveillance services to governments for monitoring or spying purposes.

CSVs openly operate with websites, marketing content, and sales teams, and may change names to avoid scrutiny. [ more ]

Theregister

Information security

GitHub struggles to keep up with automated malicious forks

Malware campaign started in PyPI spread to GitHub infecting 100,000 repositories.

Attackers upload altered files to GitHub, cloning legitimate repos to spread malware loaders. [ more ]

TechRepublic

morecybersecurity-threats

Privacy professionals

Google's Threat Analysis Group's Spyware Research: How CSVs Target Devices and Applications

Commercial surveillance vendors sell surveillance services to governments for monitoring or spying purposes.

CSVs openly operate with websites, marketing content, and sales teams, and may change names to avoid scrutiny. [ more ]

#cyberattack

BleepingComputer

Privacy professionals

Pharmaceutical giant Cencora says data was stolen in a cyberattack

Cencora, previously AmerisourceBergen, faced a cyberattack involving data theft.

The company contained the incident, is cooperating with authorities, but impact on finances is undetermined. [ more ]

Theregister

Privacy professionals

Caravan club admits members' personal data possibly accessed

The Caravan and Motorhome Club (CAMC) still cannot confirm whether members' data was stolen in a January cyberattack.

The club has listed the types of data that might have been accessed, but remains uncertain about any theft. [ more ]

Forbes

Privacy professionals

4 Remote Workplaces Most Vulnerable To Cyberattacks And 9 Common Mistakes

Remote workers face increased cyber threats as cyberattacks on individuals and companies continue to rise.

Co-working spaces, libraries, coffee shops, cafes, and working in a different country or city from your company are the most vulnerable locations for data theft. [ more ]

ComputerWeekly.com

Privacy professionals

Rhysida ransomware gang hits hospital holding royal family's data | Computer Weekly

The Rhysida ransomware group has targeted the private King Edward VII Hospital in London and claims to have stolen data on the royal family.

The gang is offering the stolen data for sale, with a price set at 10 bitcoin if no buyer takes up the offer within seven days, they will make the data publicly available. [ more ]

Theregister

Information security

Christie's confirms RansomHub stole data on 45K clients

Christie's experienced a cyberattack affecting 45,798 individuals, with data theft including names and ID document numbers. [ more ]

BleepingComputer

Privacy professionals

Pharmaceutical giant Cencora says data was stolen in a cyberattack

Cencora, previously AmerisourceBergen, faced a cyberattack involving data theft.

The company contained the incident, is cooperating with authorities, but impact on finances is undetermined. [ more ]

Theregister

Privacy professionals

Caravan club admits members' personal data possibly accessed

The Caravan and Motorhome Club (CAMC) still cannot confirm whether members' data was stolen in a January cyberattack.

The club has listed the types of data that might have been accessed, but remains uncertain about any theft. [ more ]

Forbes

Privacy professionals

4 Remote Workplaces Most Vulnerable To Cyberattacks And 9 Common Mistakes

Remote workers face increased cyber threats as cyberattacks on individuals and companies continue to rise.

Co-working spaces, libraries, coffee shops, cafes, and working in a different country or city from your company are the most vulnerable locations for data theft. [ more ]

ComputerWeekly.com

Privacy professionals

Rhysida ransomware gang hits hospital holding royal family's data | Computer Weekly

The Rhysida ransomware group has targeted the private King Edward VII Hospital in London and claims to have stolen data on the royal family.

The gang is offering the stolen data for sale, with a price set at 10 bitcoin if no buyer takes up the offer within seven days, they will make the data publicly available. [ more ]

Theregister

Information security

Christie's confirms RansomHub stole data on 45K clients

Christie's experienced a cyberattack affecting 45,798 individuals, with data theft including names and ID document numbers. [ more ]

morecyberattack

Theregister

Privacy professionals

Phishers pwn hundreds of users, dozens of Azure environments

Phishing campaign targets senior business executives, including C-suite roles and VPs.

Attackers aim to gain access to privileged accounts and steal sensitive data. [ more ]

Databreaches

Privacy professionals

Warzone RAT Sales and Support Actors in Malta and Nigeria Charged in U.S. Federal Indictments

Federal authorities seized internet domains used to sell RAT malware

Individuals in Malta and Nigeria were indicted for selling malware and supporting cybercriminals [ more ]

Ars Technica

Artificial intelligence

New attack steals AI secrets from GPUs made by Apple, AMD, and Qualcomm

Demand for GPU chips is increasing as companies rely on them for running large language models and processing data at scale.

Researchers have uncovered a vulnerability in multiple brands of GPUs, including Apple, Qualcomm, and AMD chips, that could allow attackers to steal data from a GPU's memory. [ more ]

Theregister

Privacy professionals

Data-theft malware exploits Windows Defender SmartScreen

Criminals are exploiting a Windows Defender SmartScreen bypass vulnerability to distribute Phemedrone Stealer malware that steals sensitive information from infected PCs.

The malware targets a wide range of browsers, applications, cryptocurrency wallets, and messaging apps to gather sensitive information and login credentials. [ more ]

www.housingwire.com

Information security

First American makes progress on restoring systems from pre-Christmas cyberattack

First American Financial is making progress in restoring its systems after a data theft incident.

This is the second major cyber security incident to hit the title industry in less than a month. [ more ]

Databreaches

Privacy technologies

Recent attacks on Fred Hutch and Integris: Is attempting to extort patients directly becoming the "new normal?"

DataBreaches previously reported a breach involving Integris Health in Oklahoma.

Databreaches

Privacy professionals

Au: St Vincent's unable to confirm if medical records stolen

Jess Malcolm and Greg Brown report:

Acm

Information security

Multiple Data Leaks at 23andme

Genetics testing firm 23andme and its users were targeted by cybercriminals who leaked or breached millions of user profiles and genetic data records.

The threat actors accessed user accounts through credential stuffing and scraped data from the DNA Relatives feature. [ more ]

#data theft

Databreaches

Privacy professionals

Some city data was stolen during cyber breach; full scope remains unknown, Long Beach says

Long Beach officials confirmed a cybersecurity breach and data theft.

The city does not currently know what data was taken or the extent of the breach. [ more ]

TechCrunch

Privacy professionals

British Library confirms data stolen during ransomware attack | TechCrunch

The British Library has confirmed that a ransomware attack led to the theft of internal data.

The attack caused a major technology outage across the library's sites and disrupted online and on-site services.

The ransomware gang responsible for the attack has demanded over $740,000 worth of bitcoin. [ more ]

Engadget

7 months ago

Privacy professionals

An email vulnerability let hackers steal data from governments around the world

Google's Threat Analysis Group discovered and helped patch an email server flaw used to steal data from government organizations in several countries.

The exploit targeted the email server Zimbra Collaboration and stole email data, user credentials, and authentication tokens.

Updating software with the latest fixes is crucial to protect against these types of exploits. [ more ]

Databreaches

Privacy professionals

Some city data was stolen during cyber breach; full scope remains unknown, Long Beach says

Long Beach officials confirmed a cybersecurity breach and data theft.

The city does not currently know what data was taken or the extent of the breach. [ more ]

TechCrunch

Privacy professionals

British Library confirms data stolen during ransomware attack | TechCrunch

The British Library has confirmed that a ransomware attack led to the theft of internal data.

The attack caused a major technology outage across the library's sites and disrupted online and on-site services.

The ransomware gang responsible for the attack has demanded over $740,000 worth of bitcoin. [ more ]

Engadget

7 months ago

Privacy professionals

An email vulnerability let hackers steal data from governments around the world

Google's Threat Analysis Group discovered and helped patch an email server flaw used to steal data from government organizations in several countries.

The exploit targeted the email server Zimbra Collaboration and stole email data, user credentials, and authentication tokens.

Updating software with the latest fixes is crucial to protect against these types of exploits. [ more ]

moredata theft

#snowflake

TechCrunch

Information security

Hundreds of Snowflake customer passwords found online are linked to info-stealing malware | TechCrunch

Snowflake, a cloud data analysis company, is at the center of recent alleged data thefts affecting some of its major customers. [ more ]

The Verge

6 days ago

Information security

Ticketmaster's Snowflake data breach was just one of 165

Snowflake cloud storage customers affected by data theft linked to Ticketmaster and Santander Bank breaches. [ more ]

TechCrunch

Information security

Hundreds of Snowflake customer passwords found online are linked to info-stealing malware | TechCrunch

Snowflake, a cloud data analysis company, is at the center of recent alleged data thefts affecting some of its major customers. [ more ]

The Verge

6 days ago

Information security

Ticketmaster's Snowflake data breach was just one of 165

Snowflake cloud storage customers affected by data theft linked to Ticketmaster and Santander Bank breaches. [ more ]

moresnowflake

CyberScoop