Tag #Data Breach

Showing 361 to 372 of 409 results

forbes.com

🌐 85% Global Worthiness

Jan 15, 16:10

Codefinger Ransomware Targets Amazon Cloud, Exploiting SSE-C

A new ransomware campaign, Codefinger, targets Amazon Web Services S3 buckets, encrypting data using server-side encryption with customer-provided keys (SSE-C) and demanding payment for decryption; compromised AWS credentials are the attack vector.

Codefinger Ransomware Targets Amazon Cloud, Exploiting SSE-C

A new ransomware campaign, Codefinger, targets Amazon Web Services S3 buckets, encrypting data using server-side encryption with customer-provided keys (SSE-C) and demanding payment for decryption; compromised AWS credentials are the attack vector.

Progress

56% Bias Score

ShareSaveArticle

Industry, Innovation, and Infrastructure

12345678

Previous 1 of 8 Next

How does the Codefinger attack's exploitation of SSE-C differ from traditional ransomware attacks, and what are the broader implications for cloud security?

Codefinger's use of SSE-C for encryption represents a novel approach in ransomware attacks, integrating directly with AWS's secure infrastructure. This method makes data recovery extremely difficult without paying the ransom, underscoring the importance of robust security practices like strong passwords and multi-factor authentication. The attack's success relies on compromised credentials, not AWS vulnerabilities.

foxnews.com

🌐 90% Global Worthiness

Jan 13, 04:06

PowerSchool Data Breach Exposes Millions of Student and Teacher Records

A data breach at PowerSchool, affecting over 60 million K-12 students and teachers, occurred on December 28, 2024, and was disclosed on January 7, 2025; hackers accessed the PowerSource support portal using stolen credentials to export sensitive data including names, addresses, and in some cases, So...

PowerSchool Data Breach Exposes Millions of Student and Teacher Records

A data breach at PowerSchool, affecting over 60 million K-12 students and teachers, occurred on December 28, 2024, and was disclosed on January 7, 2025; hackers accessed the PowerSource support portal using stolen credentials to export sensitive data including names, addresses, and in some cases, So...

Progress

48% Bias Score

ShareSaveArticle

Quality Education

12345678

Previous 1 of 8 Next

What immediate actions should schools and affected individuals take to mitigate the risks associated with the PowerSchool data breach?

PowerSchool, a leading education technology company, experienced a data breach on December 28, 2024, resulting in the theft of student and teacher data from its PowerSchool SIS platform. The breach, discovered and disclosed on January 7, 2025, involved unauthorized access via stolen credentials to the PowerSource support portal, enabling the export of sensitive information.

nos.nl

🌐 75% Global Worthiness

Jan 12, 19:06

TU/e Hit by Cyberattack, Network Shutdown Disrupts Exams

A cyberattack targeting Eindhoven University of Technology (TU/e) on October 26, 2023, forced the university to shut down its internal network, disrupting classes and access to online services until at least October 27, impacting students preparing for exams; authorities are investigating.

TU/e Hit by Cyberattack, Network Shutdown Disrupts Exams

A cyberattack targeting Eindhoven University of Technology (TU/e) on October 26, 2023, forced the university to shut down its internal network, disrupting classes and access to online services until at least October 27, impacting students preparing for exams; authorities are investigating.

Progress

36% Bias Score

ShareSaveArticle

Quality Education

12345678

Previous 1 of 8 Next

What is the immediate impact of the cyberattack on Eindhoven University of Technology students and staff?

The Eindhoven University of Technology (TU/e) experienced a cyberattack on October 26, 2023, forcing the university to shut down its internal network, halting classes and access to email until at least October 27. This disruption significantly impacts students preparing for upcoming exams.

wyborcza.pl

🌐 85% Global Worthiness

Jan 10, 10:08

Massive Data Breach: 148,000 Norwegians Affected by Russian Hackers

Russian hackers stole location data from 148,000 Norwegians via the US-based firm Gravy Analytics, raising serious concerns about the potential for manipulation and misuse of personal information; the Norwegian Data Protection Authority called the scale "potentially massive".

Massive Data Breach: 148,000 Norwegians Affected by Russian Hackers

Russian hackers stole location data from 148,000 Norwegians via the US-based firm Gravy Analytics, raising serious concerns about the potential for manipulation and misuse of personal information; the Norwegian Data Protection Authority called the scale "potentially massive".

Progress

48% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How did the data breach occur, and what role did Gravy Analytics' past legal issues play in the incident?

This data breach highlights the vulnerability of personal information collected by data analytics firms. Gravy Analytics, despite facing previous legal action and a settlement with the Biden administration, had its users' data compromised, potentially enabling malicious influence and manipulation. The incident underscores the need for stricter data protection regulations.

taz.de

🌐 85% Global Worthiness

Jan 9, 19:11

Berlin Police Data Leak Sparks Investigation

A Berlin police officer leaked a list of suspects' first names from internal police systems to the right-wing online portal Nius, sparking a data protection investigation and raising concerns about potential biases within law enforcement.

Berlin Police Data Leak Sparks Investigation

A Berlin police officer leaked a list of suspects' first names from internal police systems to the right-wing online portal Nius, sparking a data protection investigation and raising concerns about potential biases within law enforcement.

Progress

48% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How did the release of suspect names contribute to biased interpretations of the New Year's Eve events in Berlin?

The data leak fueled a discriminatory narrative attempting to link names to migration background, despite the police not recording this information. This misuse of data not only violates privacy but also promotes biased explanations of criminal behavior. The incident will be discussed in the Interior Committee.

forbes.com

🌐 85% Global Worthiness

Jan 2, 16:13

U.S. Soldier Indicted for Selling Trump, Harris Call Logs

A U.S. Army communications specialist, Cameron John Wagenius, was arrested on December 20, 2024, near Fort Hood, Texas, and indicted for illegally selling confidential phone records, allegedly including those of President-elect Trump and Vice President Harris, following a November 2024 data breach o...

U.S. Soldier Indicted for Selling Trump, Harris Call Logs

A U.S. Army communications specialist, Cameron John Wagenius, was arrested on December 20, 2024, near Fort Hood, Texas, and indicted for illegally selling confidential phone records, allegedly including those of President-elect Trump and Vice President Harris, following a November 2024 data breach o...

Progress

36% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How did investigators connect the arrested soldier to the online persona "Kiberphant0m" and the broader Snowflake data breach?

Wagenius's actions are linked to a November 2024 hack targeting Snowflake accounts with single-factor authentication. The indictment connects him to the online persona "Kiberphant0m," who boasted about obtaining and selling the call logs. This highlights the vulnerability of single-factor authentication and the potential for insider threats within the military.

foxnews.com

🌐 85% Global Worthiness

Jan 15, 19:10

BanShee Malware Uses Stolen Apple Encryption to Target Macs

A new variant of the BanShee info-stealer malware, using stolen Apple encryption and fake GitHub repositories, targets Macs to steal browser credentials, cryptocurrency data, and other personal information, affecting potentially millions of users.

BanShee Malware Uses Stolen Apple Encryption to Target Macs

A new variant of the BanShee info-stealer malware, using stolen Apple encryption and fake GitHub repositories, targets Macs to steal browser credentials, cryptocurrency data, and other personal information, affecting potentially millions of users.

Progress

36% Bias Score

ShareSaveArticle

Reduced Inequality

12345678

Previous 1 of 8 Next

What are the immediate consequences of the BanShee malware for Mac users, and what specific data is at risk?

A new variant of the BanShee info-stealer malware is targeting Macs, stealing browser credentials, cryptocurrency wallet data, and other personal information. This malware, previously spread through browser extensions, now uses phishing websites and fake GitHub repositories to infect systems. The malware's developers have cleverly integrated a stolen encryption algorithm from Apple's XProtect, evading detection by antivirus software.

forbes.com

🌐 85% Global Worthiness

Jan 12, 16:07

Banshee Stealer Malware Variant Targets 100 Million macOS Users

A new variant of the macOS Banshee Stealer malware, costing "$3,000" on the dark web, steals sensitive data from 100 million users by evading antivirus software using an encryption algorithm stolen from Apple's XProtect; security experts warn of the need for stronger security measures.

Banshee Stealer Malware Variant Targets 100 Million macOS Users

A new variant of the macOS Banshee Stealer malware, costing "$3,000" on the dark web, steals sensitive data from 100 million users by evading antivirus software using an encryption algorithm stolen from Apple's XProtect; security experts warn of the need for stronger security measures.

Progress

48% Bias Score

ShareSaveArticle

Industry, Innovation, and Infrastructure

12345678

Previous 1 of 8 Next

What are the immediate consequences of the newly discovered Banshee Stealer malware variant for macOS users and businesses?

A new variant of the macOS Banshee Stealer malware, costing "$3,000" on the dark web, steals browser credentials, cryptocurrency wallets, and other sensitive data, impacting 100 million users. Security experts warn of its improved antivirus evasion, achieved by using an encryption algorithm stolen from Apple's XProtect.

forbes.com

🌐 85% Global Worthiness

Jan 11, 16:09

North Korea-Linked Play Ransomware Attacks Over 300 Organizations

Since 2022, the Play ransomware, linked to North Korea's Reconnaissance General Bureau, has compromised over 300 organizations globally, exploiting vulnerabilities in Microsoft Exchange and Fortinet FortiOS to gain access, escalate privileges, steal data, and encrypt files for extortion.

North Korea-Linked Play Ransomware Attacks Over 300 Organizations

Since 2022, the Play ransomware, linked to North Korea's Reconnaissance General Bureau, has compromised over 300 organizations globally, exploiting vulnerabilities in Microsoft Exchange and Fortinet FortiOS to gain access, escalate privileges, steal data, and encrypt files for extortion.

Progress

16% Bias Score

ShareSaveArticle

Reduced Inequality

12345678

Previous 1 of 8 Next

How do Play ransomware attacks evade detection, and what vulnerabilities are exploited to gain initial access?

Play ransomware leverages known vulnerabilities and legitimate tools to gain access, escalate privileges, and steal data. This sophisticated approach highlights the persistent threat of state-sponsored cyberattacks and the need for robust security measures. The use of legitimate tools for malicious purposes complicates detection and prevention efforts.

forbes.com

🌐 85% Global Worthiness

Jan 10, 16:11

Banshee Stealer Malware Targets 100 Million macOS Users

A new variant of the macOS Banshee Stealer malware, costing \$3,000 on the dark web, is actively targeting 100 million users, stealing sensitive data by evading detection through stolen Apple XProtect code and employing convincing phishing techniques.

Banshee Stealer Malware Targets 100 Million macOS Users

A new variant of the macOS Banshee Stealer malware, costing \$3,000 on the dark web, is actively targeting 100 million users, stealing sensitive data by evading detection through stolen Apple XProtect code and employing convincing phishing techniques.

Progress

48% Bias Score

ShareSaveArticle

No Poverty

12345678

Previous 1 of 8 Next

What is the immediate impact of the Banshee Stealer malware variant on macOS users?

A new variant of the macOS Banshee Stealer malware, costing \$3,000 on the dark web, steals browser credentials, cryptocurrency wallets, and other sensitive data from approximately 100 million macOS users. Its sophisticated design, including stolen code from Apple's XProtect, allowed it to evade detection until its source code leaked, leading to new variants.

forbes.com

🌐 90% Global Worthiness

Jan 2, 16:13

Massive Google Chrome Extension Hack Bypasses 2FA

A cyberattack in late December 2024 compromised at least 35 Google Chrome extensions, potentially impacting 2.6 million users; attackers used phishing emails and fake Chrome Web Store domains to distribute malware bypassing two-factor authentication, specifically targeting Facebook accounts.

Massive Google Chrome Extension Hack Bypasses 2FA

A cyberattack in late December 2024 compromised at least 35 Google Chrome extensions, potentially impacting 2.6 million users; attackers used phishing emails and fake Chrome Web Store domains to distribute malware bypassing two-factor authentication, specifically targeting Facebook accounts.

Progress

32% Bias Score

ShareSaveArticle

No Poverty

12345678

Previous 1 of 8 Next

What security vulnerabilities were exposed by this attack, and what steps can be taken to prevent similar incidents?

This incident reveals vulnerabilities in the Chrome Web Store's security and the susceptibility of users to phishing attacks. The extensive planning, including testing since March 2024, highlights the sophistication of the attack. Future preventative measures should focus on enhancing developer access controls, improving phishing detection, and strengthening user education.

dailymail.co.uk

🌐 95% Global Worthiness

Dec 31, 04:07

Chinese Hackers Breach U.S. Treasury Systems

Chinese state-sponsored hackers breached the U.S. Treasury Department's systems via third-party provider BeyondTrust in December 2023, stealing unclassified documents; the incident is under investigation by the FBI and CISA.

Chinese Hackers Breach U.S. Treasury Systems

Chinese state-sponsored hackers breached the U.S. Treasury Department's systems via third-party provider BeyondTrust in December 2023, stealing unclassified documents; the incident is under investigation by the FBI and CISA.

Progress

44% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

What is the immediate impact of the Chinese state-sponsored hacking incident on the U.S. Treasury Department and national security?

Chinese state-sponsored hackers breached the U.S. Treasury Department's systems this month, stealing unclassified documents. This "major incident," as Treasury called it, involved compromising the third-party cybersecurity provider BeyondTrust to gain access to a key enabling remote access to Treasury workstations and documents.

Showing 361 to 372 of 409 results