Systems East
November 16, 2023
•[ hack, technology ]
Systems East notifies 209,000 consumers after a database with some payment card info is hacked.
MeridianLink
November 15, 2023
•[ ransomware, leak, malware ]
The AlphV/BlackCat ransomware group adds MeridianLink to its leak site and reports its victim to the Securities Exchange Commission (SEC.)
Plume
November 15, 2023
•[ leak, technology ]
The smart Wi-Fi service provider, Plume, apparently falls victim to a data breach. The perpetrators, claiming responsibility for the incident, make their announcement on the notorious Breach Forums.
Studio D.E.L.L.A.
November 15, 2023
•[ ransomware, technology ]
The Knight ransomware group claims responsibility for a cyber attack to Studio D.E.L.L.A..
KitchenPal
November 14, 2023
•[ leak, misconfiguration, technology ]
In November 2023, the kitchen management application KitchenPal suffered a data breach that exposed 146k lines of data. When contacted about the incident, KitchenPal advised the corpus of data came from a staging environment, although acknowledged it contained a small number of users for debugging purposes and included passwords that could not be used. Impacted data included almost 100k email addresses, names, geolocations and incomplete data on dates of birth, genders, height and weight, social media profile identifiers and bcrypt password hashes.
Cloudflare
November 9, 2023
•[ hack, ddos, technology ]
Cloudflare is hit by a DDoS attack. The Pro-Russia group Anonymous Sudan claims responsibility for the attack.
OpenAI
November 8, 2023
•[ hack, ddos, technology ]
OpenAI addresses "periodic outages" due to DDoS attacks targeting its API and ChatGPT. The pro-Russia group Anonymous Sudan claims responsibility for the attack.
LinkedIn Scraped and Faked Data (2023)
November 4, 2023
•[ leak, misconfiguration, technology ]
In November 2023, a post to a popular hacking forum alleged that millions of LinkedIn records had been scraped and leaked. On investigation, the data turned out to be a combination of legitimate data scraped from LinkedIn and email addresses constructed from impacted individuals' names.
Avangate
October 31, 2023
•[ ransomware, malware, technology ]
The Alpha Team ransomware gang claims responsibility for a cyber attack to Avangate.
Undefined tech company
October 31, 2023
•[ espionage, malware, education ]
The Israel Computer Emergency Response Team (CERT) issues an alert about the BiBi wiper malware targeting organizations in Israel in the education and technology sectors. The attacks are attributed to the Iranian APT Agonizing Serpens.
Organizations in the transportation, logistics and technology sectors in Israel
October 31, 2023
•[ espionage, malware, technology ]
Researchers from Crowdstrike reveal the details of a new campaign from Imperial Kitten targeting transportation, logistics, and technology firms in Israel using a novel malware family.
Three Russian internet providers, Miranda-media, Krimtelekom, and MirTelekom
October 27, 2023
•[ hack, ddos, technology ]
The group of cyber activists known as the Ukrainian IT Army claims to have taken down three Russian internet providers, Miranda-media, Krimtelekom, and MirTelekom, operating in the occupied territories.
Spotify
October 27, 2023
•[ hack, ddos, technology ]
Spotify is down and the pro-Russia group Anonymous Sudan claims responsibility for the attack.
Grupo GTD
October 25, 2023
•[ ransomware, malware, technology ]
Chile's Grupo GTD warns that a cyberattack has impacted its Infrastructure as a Service (IaaS) platform, disrupting online services. The attack is attributed to the Rorschach ransomware gang.
Kahua
October 25, 2023
•[ ransomware, malware, technology ]
Kahua files a notice of data breach after discovering that the company had fallen victim to a ransomware attack.
Airbnb
October 25, 2023
•[ leak, technology ]
A threat actor going by the name 'Sheriff' on the darkweb puts on sale 1.2 million records allegedly stolen from Airbnb, including sensitive details such as names, email addresses, countries of residence, cities, and more.
Windstream
October 23, 2023
•[ hack, malware, technology ]
Researchers from Lumen Technologies reveal the details of 'Pumpkin Eclipse', an event where unknown attackers broke into more than 600,000 routers belonging to a single ISP and deployed malware (a commodity malware dubbed Chalubo) on the devices before totally disabling them.
CoinFlip
October 20, 2023
•[ social, phishing, technology ]
GPD Holdings d/b/a CoinFlip files a notice of data breach after discovering that a CoinFlip employee's email account was compromised.
CyberLink
October 20, 2023
•[ hack, malware, technology ]
Researchers from Microsoft reveal that the North Korean group tracked as Lazarus, has breached Taiwanese multimedia software company CyberLink and trojanized one of its installers to push a malware dubbed LambLoad, in a supply chain attack targeting potential victims worldwide.
Kinesis Film
October 17, 2023
•[ ransomware, malware, technology ]
The Knight ransomware gang claims responsibility for a cyber attack to Kinesis Film
