Japanese energy firm loses drive with data of 10.9 million clients
…The overall population of the Kyushu region is 12.6 million, and the company stated that the incident impacts up to 10.9 million accounts. The data present on the now missing…
Search
Charter confirms data breach after ShinyHunters extortion threat
…5 million people Instructure hacker claims data theft from 8,800 schools, universities Charter Communications Data Breach Extortion Salesforce ShinyHunters Lawrence Abrams Lawrence Abrams is the owner and Editor in Chief of…
Popular node-ipc npm package compromised to steal credentials
…The malware does not establish persistence or download any secondary payloads, so the operation appears focused on rapid credential theft and exfiltration. Potentially impacted developers should immediately remove the affected versions, rotate…
Kodak confirms data breach claimed by ShinyHunters extortion gang
…hackers gained access to some of the company's data. Founded in 1880 as the Eastman Kodak Company and headquartered in Rochester, New York, Kodak has 79,000 worldwide patents and provides…
Top stories
Hackers Are After the Gaps in Your Vulnerability Program: Here's Their Playbook
…or leveraged for data theft. Account takeover, IDOR, and data leak vulnerabilities are framed as assets that can be sold quickly. "Hercules" describes himself as a hacker rather than a fraudster, preferring…
7-Eleven data breach exposes personal information of 185,000 people
…ShinyHunters has been targeting Salesforce customers for the past year and breached hundreds of companies, claiming they've stolen billions of records in the Salesforce Aura data theft attacks and the Salesloft…
Instructure reaches 'agreement' with ShinyHunters to stop data leak
…Instructure hacker claims data theft from 8,800 schools, universities Instructure confirms data breach, ShinyHunters claims attack US govt seeks Instructure testimony on massive Canvas cyberattack Instructure confirms hackers used Canvas flaw…
Red Hat npm packages compromised to steal developer credentials
…OX Security says the malware retains the same credential-stealing functionality as Mini Shai-Hulud but adds additional obfuscation layers, multi-stage payload delivery mechanisms, and enhanced data theft and credential-harvesting…
Authorities dismantle 'AudiA6' ransomware crypto-laundering service
…accounts opened using stolen or purchased identities,” describes Europol says . “Analysis conducted by Europol linked the criminal service to more than 15 investigations worldwide involving ransomware attacks and large-scale cryptocurrency theft…
SHub macOS infostealer variant spoofs Apple security updates
…BleepingComputer noticed that download buttons for Windows and Android serve the same executable hosted in a Dropbox account. Before invoking the AppleScript, the malicious websites fingerprint the visitor's device to check…