Latest Breach news

MITRE says state hackers breached its network via Ivanti zero-days

The MITRE Corporation says a state-backed hacking group breached its systems in January 2024 by chaining two Ivanti VPN zero-days.
- Sergiu Gatlan
- April 19, 2024
- 03:02 PM
- 4
CISA orders agencies impacted by Microsoft hack to mitigate risks

CISA has issued a new emergency directive ordering U.S. federal agencies to address risks resulting from the breach of multiple Microsoft corporate email accounts by the Russian APT29 hacking group.
- Sergiu Gatlan
- April 11, 2024
- 01:47 PM
- 0
CISA says Sisense hack impacts critical infrastructure orgs

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is investigating the recent breach of data analytics company Sisense, an incident that also impacted critical infrastructure organizations.
- Sergiu Gatlan
- April 11, 2024
- 10:55 AM
- 0
GHC-SCW: Ransomware gang stole health data of 533,000 people

Non-profit healthcare service provider Group Health Cooperative of South Central Wisconsin (GHC-SCW) has disclosed that a ransomware gang breached its network in January and stole documents containing the personal and medical information of over 500,000 individuals.
- Sergiu Gatlan
- April 09, 2024
- 02:02 PM
- 0
Acuity confirms hackers stole non-sensitive govt data from GitHub repos

Acuity, a federal contractor that works with U.S. government agencies, has confirmed that hackers breached its GitHub repositories and stole documents containing old and non-sensitive data.
- Sergiu Gatlan
- April 05, 2024
- 11:32 AM
- 0
US State Department investigates alleged theft of government data

The U.S. Department of State is investigating claims of a cyber incident after a threat actor leaked documents allegedly stolen from a government contractor.
- Sergiu Gatlan
- April 03, 2024
- 02:55 PM
- 1
Ukraine claims it hacked Russian Ministry of Defense servers

The Main Intelligence Directorate (GUR) of Ukraine's Ministry of Defense claims that it breached the servers of the Russian Ministry of Defense (Minoborony) and stole sensitive documents.
- Bill Toulas
- March 04, 2024
- 10:41 AM
- 2
Malicious code in Tornado Cash governance proposal puts user funds at risk

Malicious JavaScript code hidden in a Tornado Cash governance proposal has been leaking deposit notes and data to a private server for almost two months.
- Bill Toulas
- February 27, 2024
- 09:20 AM
- 0
Steel giant ThyssenKrupp confirms cyberattack on automotive division

Steel giant ThyssenKrupp confirms that hackers breached systems in its Automotive division last week, forcing them to shut down IT systems as part of its response and containment effort.
- Bill Toulas
- February 26, 2024
- 12:03 PM
- 0
Prudential Financial breached in data theft cyberattack

Prudential Financial has disclosed that its network was breached last week, with the attackers stealing employee and contractor data before being blocked from compromised systems one day later.
- Sergiu Gatlan
- February 13, 2024
- 05:35 PM
- 0
FCC orders telecom carriers to report PII data breaches within 30 days

Starting March 13th, telecommunications companies must report data breaches impacting customers' personally identifiable information within 30 days, as required by FCC's updated data breach reporting requirements.
- Sergiu Gatlan
- February 12, 2024
- 04:50 PM
- 0
Cloudflare hacked using auth tokens stolen in Okta attack

Cloudflare disclosed today that its internal Atlassian server was breached by a suspected 'nation state attacker' who accessed its Confluence wiki, Jira bug database, and Bitbucket source code management system.
- Sergiu Gatlan
- February 01, 2024
- 03:53 PM
- 4
Global fintech firm EquiLend offline after recent cyberattack

New York-based global financial technology firm EquiLend says its operations have been disrupted after some systems were taken offline in a Monday cyberattack.
- Sergiu Gatlan
- January 24, 2024
- 11:36 AM
- 0
Trezor support site breach exposes personal data of 66,000 customers

Trezor issued an alert following a security breach on January 17, 2024, when unauthorized access was gained to their third-party support ticketing portal.
- Bill Toulas
- January 22, 2024
- 09:16 AM
- 0
TeamViewer abused to breach networks in new ransomware attacks

Ransomware actors are again using TeamViewer to gain initial access to organization endpoints and attempt to deploy encryptors based on the leaked LockBit ransomware builder.
- Bill Toulas
- January 18, 2024
- 04:07 PM
- 4
US govt wants BreachForums admin sentenced to 15 years in prison

The United States government has recommended that Conor Brian Fitzpatrick, the creator and lead administrator of the now-defunct BreachForums hacking forums, receive a sentence of 15 years in prison.
- Bill Toulas
- January 18, 2024
- 11:08 AM
- 3
Panasonic discloses data breach after December 2022 cyberattack

Panasonic Avionics Corporation, a leading supplier of in-flight communications and entertainment systems, disclosed a data breach affecting an undisclosed number of individuals after its corporate network was breached more than one year ago, in December 2022.
- Sergiu Gatlan
- December 27, 2023
- 12:28 PM
- 0
Ubisoft says it's investigating reports of a new security breach

Ubisoft is investigating whether it suffered a breach after images of the company's internal software and developer tools were leaked online.
- Lawrence Abrams
- December 22, 2023
- 01:10 PM
- 2
FBI disrupts Blackcat ransomware operation, creates decryption tool

The Department of Justice announced today that the FBI successfully breached the ALPHV ransomware operation's servers to monitor their activities and obtain decryption keys.
- Lawrence Abrams
- December 19, 2023
- 09:16 AM
- 0
Long Beach, California turns off IT systems after cyberattack

The City of Long Beach in California is warning that they suffered a cyberattack on Tuesday that has led them to shut down portions of their IT network to prevent the attack's spread.
- Lawrence Abrams
- November 16, 2023
- 05:23 PM
- 0