Articles tagged "Data Breach"

Found 550 articles

The hacking group ShinyHunters claims to have breached the cybersecurity firm Resecurity, alleging that they stole internal data. However, Resecurity has countered these claims, stating that the attackers only accessed a honeypot—a decoy system designed to lure in hackers and monitor their activities. This situation raises questions about the effectiveness of security measures and the tactics used by both attackers and defenders. If true, this incident illustrates the ongoing cat-and-mouse game in cybersecurity, where firms must stay vigilant against potential breaches while also employing strategies to detect and analyze threats. The outcome of this dispute could have implications for how companies approach cybersecurity defenses and incident reporting.

Read Original

The hacking group known as ShinyHunters has claimed responsibility for breaching the cybersecurity firm Resecurity and stealing internal data. However, Resecurity disputes this claim, stating that the attackers only managed to access a honeypot—a decoy system intentionally set up to contain fake information. This honeypot was designed to track and analyze the activities of potential attackers. The incident raises questions about the effectiveness of cybersecurity measures and the tactics used by hackers. While Resecurity maintains that no real data was compromised, the event serves as a reminder of the ongoing challenges in cybersecurity and the importance of vigilance against potential threats.

Read Original
Resecurity Says ShinyHunters Fell for Honeypot After Breach Claim

Hackread – Cybersecurity News, Data Breaches, AI, and More

Resecurity has responded to claims from the hacking group ShinyHunters, asserting that the attackers did not breach any real systems or access customer data. Instead, Resecurity says the hackers interacted with a honeypot designed to capture malicious activity, which contained only fake information. This incident underscores the ongoing challenges in cybersecurity, as groups like ShinyHunters may attempt to exploit vulnerabilities or claim breaches that aren't genuine. For companies, this serves as a reminder to monitor their security measures and ensure they are prepared for potential threats, even if they turn out to be misdirected. The situation illustrates the importance of having robust security practices in place to counteract both real and perceived threats.

Read Original
ShinyHunters Claim Breach of US Cybersecurity Firm Resecurity (Updated)

Hackread – Cybersecurity News, Data Breaches, AI, and More

The hacking group known as ShinyHunters claims to have breached Resecurity, a US cybersecurity firm. They reportedly accessed sensitive data, although specific details about the type of information compromised have not been disclosed yet. Resecurity has acknowledged the incident and provided an update, although it remains unclear how many users or entities may be affected by this breach. This incident raises concerns about the security measures in place at cybersecurity firms themselves, as they are expected to be leaders in protecting sensitive data. The implications of such a breach could significantly undermine trust in the industry.

Read Original

Covenant Health has announced that nearly 478,000 patients' data was compromised in a breach first identified in May. The healthcare organization confirmed that personal information, including names, addresses, and some medical details, may have been accessed by unauthorized individuals. This incident raises concerns about patient privacy and the security of sensitive health information. Covenant Health is working to notify affected individuals and is taking steps to enhance its cybersecurity measures to prevent future breaches. The scale of this incident highlights the ongoing vulnerabilities faced by healthcare organizations in protecting patient data.

Read Original
Tokyo FM Data Breach: Hacker Claims Over 3 Million Records Stolen

Hackread – Cybersecurity News, Data Breaches, AI, and More

Tokyo FM is currently looking into a significant data breach that reportedly involves the theft of over 3 million records. According to claims made by a hacker, sensitive information may have been compromised, although the specific types of data have not been detailed. This incident could potentially affect a large number of users, raising concerns about identity theft and data misuse. As the investigation unfolds, individuals associated with Tokyo FM are advised to monitor their accounts and consider changing their passwords. The situation serves as a reminder of the vulnerabilities that organizations face and the importance of data protection measures.

Read Original
Actively Exploited

Investigations by TRM Labs have linked ongoing cryptocurrency thefts to a breach of LastPass that occurred in 2022. Attackers managed to access encrypted vaults and have been draining cryptocurrency wallets years after the initial breach. They are laundering the stolen funds through exchanges based in Russia. This incident raises significant concerns about the long-term risks associated with data breaches, as compromised information continues to be exploited long after it is stolen. Users of LastPass and others in the cryptocurrency space should be particularly vigilant about securing their assets and monitoring for any unauthorized transactions.

Read Original

Covenant Health, a healthcare organization based in Andover, Massachusetts, experienced a significant ransomware attack in May 2025, attributed to the Qilin group. This incident compromised the personal data of over 478,000 individuals, raising serious concerns about patient privacy and data security. Affected individuals may have had their sensitive health information exposed, which could lead to identity theft and other security risks. The breach emphasizes the ongoing vulnerabilities within the healthcare sector, where attackers increasingly target patient data for ransom. As healthcare providers continue to digitize their services, the need for robust cybersecurity measures becomes more pressing.

Read Original
Actively Exploited

Covenant Health, a healthcare organization, suffered a significant data breach when the Qilin ransomware group hacked into its systems in May 2025. The incident has affected approximately 478,000 individuals, compromising sensitive personal information. While the exact nature of the stolen data has not been detailed, breaches of this scale often involve medical records and financial information, which can have serious implications for the affected individuals. This attack raises concerns about the security measures in place at healthcare facilities and the ongoing risks posed by ransomware groups. The incident serves as a reminder for organizations to strengthen their cybersecurity protocols to protect sensitive data from similar attacks.

Read Original
Actively Exploited

The European Space Agency (ESA) has confirmed a data breach after a hacker, known as '888', attempted to sell stolen data online. The breach involved external science servers, raising concerns about the security of sensitive information related to ESA's projects. This incident highlights the risks that organizations face from cybercriminals looking to exploit vulnerabilities for financial gain. The ESA's acknowledgment of the breach indicates that they are taking steps to address the situation, but the full scope of the data compromised remains unclear. As this breach could potentially affect ongoing scientific research and collaborations, it underscores the need for robust cybersecurity measures in institutions handling critical data.

Read Original
Critical
30,000 Korean Air Employee Records Stolen as Cl0p Leaks Data Online

Hackread – Cybersecurity News, Data Breaches, AI, and More

Actively Exploited

Korean Air has confirmed a significant data breach affecting the personal information of around 30,000 employees. The breach occurred after the Cl0p ransomware group targeted a catering partner that handles sensitive employee data. The leaked information includes names, social security numbers, and other personal details, raising concerns about identity theft and privacy violations. In response to the incident, Korean Air is taking steps to enhance their data security measures and protect their staff's information. This incident serves as a reminder of the vulnerabilities that companies face when working with third-party vendors.

Read Original

The European Space Agency (ESA) has confirmed a security breach that affected its external science servers. The incident came to light after a hacker attempted to sell stolen data from these servers. While the ESA is currently investigating the breach, details about the extent of the data compromised have not been fully disclosed. This incident raises concerns about the security of sensitive scientific data and the potential implications for ongoing research and collaboration within the space sector. The breach highlights the increasing vulnerability of even highly specialized organizations to cyberattacks, underscoring the need for robust cybersecurity measures.

Read Original
MongoBleed (CVE-2025-14847): the US, China, and the EU are among the top exploited GEOs

Security Affairs

Actively Exploited

A serious vulnerability known as MongoBleed (CVE-2025-14847) was disclosed shortly after Christmas 2023, allowing attackers to remotely access and leak memory from unpatched MongoDB servers using zlib compression, without requiring any authentication. This flaw primarily affects deployments of MongoDB Server that utilize zlib network compression, a common feature in many setups. The vulnerability is significant because it exposes sensitive data stored in these databases, potentially impacting organizations across the U.S., China, and the EU. Cybersecurity experts are urging companies that use MongoDB to assess their systems for this vulnerability and apply necessary updates or patches to protect against exploitation. The situation highlights ongoing security challenges in the management of popular open-source database systems.

Read Original

The European Space Agency (ESA) has reported a breach involving external servers that contained unclassified information related to collaborative engineering efforts. While the data accessed was not classified, the incident raises concerns about the security of sensitive information even when labeled as unclassified. The breach emphasizes the importance of securing all types of data, as attackers can exploit vulnerabilities in external systems. ESA has not specified the exact nature of the attack or the extent of the data accessed, but it is a reminder for organizations to review their cybersecurity measures, especially regarding external servers. This incident could potentially affect partnerships and collaborative projects within the space sector, highlighting the need for robust security protocols.

Read Original

Sax, a major US accounting firm, has revealed a data breach that has affected around 220,000 individuals. The breach was detected over a year ago, but the firm took considerable time to investigate the incident thoroughly. While specific details about how the breach occurred have not been disclosed, it raises significant concerns about the security of sensitive financial information. Affected individuals may need to monitor their accounts closely for any signs of unauthorized activity. This incident highlights the ongoing vulnerability of even well-established firms in protecting client data against cyber threats.

Read Original
PreviousPage 30 of 37Next