Data Breaches

ServiceNow recently disclosed three critical vulnerabilities (CVE-2024-4879, CVE-2024-5217, and CVE-2024-5178) affecting multiple Now Platform versions, allowing unauthenticated remote code execution and unauthorized file access.  The vulnerabilities, with CVSS scores ranging from 6.9 to 9.3, pose...

A massive data breach involving ClickBalance, one of Mexico's largest Enterprise Resource Planning (ERP) technology providers, has been uncovered by cybersecurity researcher Jeremiah Fowler. The breach exposed a staggering 769,333,246 records, totaling 395 GB...

Hackers often target internal communications tools to obtain confidential information like employee records, business plans, and proprietary technologies. With these characteristics of trust and openness, internal communications provide valuable but less secure means for cyber-attacks...

BMW Hong Kong has reportedly suffered a data breach affecting approximately 14,000 customers. The leak, which came to light on July 16, 2024, has exposed sensitive personal information, raising concerns about customer privacy and...

Russian-linked FIN7 (aka Sangria Tempest, ATK32, Carbon Spider, Coreid, ELBRUS, G0008, G0046, and GOLD NIAGARA) is a financial cybercrime group that has been around since 2013 and it specifically targets the US industries. To achieve...

Evolve Bank & Trust, a prominent financial services institution, has confirmed a data breach that has compromised the personal information of over 7.6 million individuals. The breach, which occurred on February 9, 2024, was...

Researchers discovered a flaw in the DoNex ransomware's encryption scheme, allowing them to create a decryptor for DoNex and its predecessors (Muse, fake LockBit 3.0, DarkRace).  The decryptor has been secretly provided to victims since...

The notorious STORMOUS ransomware group has publicly claimed responsibility for a breach of HITC Telecom, a major player in the telecommunications industry. The announcement was made via a post on the social media platform...

Hackers frequently target schools and bank servers to obtain important personal information, including financial data, that can be used for identity theft and financial fraud. These data are also being sold on the dark...

The renowned French fashion brand Zadig & Voltaire has suffered a data breach, exposing 587,000 unique email addresses. The popular data breach notification service Have I Been Pwned confirmed the breach via a tweet...