LastPass admits to customer data breach caused by previous breach – Naked Security

LastPass admits to customer data breach caused by previous breach – Naked Security

Back in August 2022, popular password manager company LastPass admitted to a data breach. The company, which is owned by software-as-a-service business GoTo, which used to be LogMeIn, published a very brief but nevertheless useful report about that incident about a month later: Briefly put, LastPass concluded that the attackers managed to implant malware on … Read more

Hackers Release Millions of Twitter IDs and User Info for Free

Hackers Release Millions of Twitter IDs and User Info for Free

Twitter’s security flaw that allowed hackers to steal millions of user records had been patched in August this year, but that hasn’t stopped hackers from releasing that data for free online.Photo: Sergey Elagin (Shutterstock) Twitter’s API once held such an easily exploitable flaw that hackers managed to grab 5.4 million user details. Now, according to … Read more

The FBI Is Investigating a Cyberattack on Continental Tire

The FBI Is Investigating a Cyberattack on Continental Tire

Continental AG’s headquarters in Hannover, Germany Photo: Julian Stratenschulte/picture alliance (Getty Images) Earlier this month, tire manufacturer Continental revealed that it was the target of a cyberattack in August. The German company also announced that it was investigating the data breach. However, Continental has refused to comment on reports that the data is being sold … Read more

Sobeys data breach serves as wake up call for industry: expert

Sobeys data breach serves as wake up call for industry: expert

A recent data breach on Sobeys has revealed a larger issue in Canada’s agri-food sector, an expert said. Sylvain Charlebois, a food researcher and professor at Dalhousie University in Halifax, said the industry has been particularly vulnerable to cyberattacks in recent weeks. He said this most recent incident, which Sobeys has said is now resolved, … Read more

New Unpatched Microsoft Exchange Zero-Day Under Active Exploitation

New Unpatched Microsoft Exchange Zero-Day Under Active Exploitation

Security researchers are warning of previously undisclosed flaws in fully patched Microsoft Exchange servers being exploited by malicious actors in real-world attacks to achieve remote code execution on affected systems. That’s according to Vietnamese cybersecurity company GTSC, which discovered the shortcomings as part of its security monitoring and incident response efforts in August 2022. The … Read more

London Police Arrested 17-Year-Old Hacker Suspected of Uber and GTA 6 Breaches

London Police Arrested 17-Year-Old Hacker Suspected of Uber and GTA 6 Breaches

The City of London Police on Friday revealed that he has arrested a 17-year-old teenager from Oxfordshire on suspicion of hacking. “On the evening of Thursday 22 September 2022, the City of London Police arrested a 17-year-old in Oxfordshire on suspicion of hacking,” the agency saidadding “he remains in police custody.” The department said the … Read more

Uber Says It Was Likely Hacked by Teenage Hacker Gang LAPSUS$

Uber Says It Was Likely Hacked by Teenage Hacker Gang LAPSUS$

Photo: Matthew Horwood (Getty Images) Uber has published additional information about how it was hackedclaiming that it was targeted by LAPSUS$, a cybercriminal gang with a hefty track record that is thought to be composed largely of teenagers. Last week, someone broke into Uber’s network and used the access to cause all sorts of chaos. … Read more

Samsung admits to second data breach incident this year: Details

Samsung admits to second data breach incident this year: Details

Samsung has admitted to the second data breach this year. In a blog post, the South Korean company said that it has discovered a cybersecurity incident that affected some of customers’ information in the United States. Samsung said that its systems were compromised in July 2022. Assuring its customers, it said that it has detected … Read more

Microsoft Links Raspberry Robin USB Worm to Russian Evil Corp Hackers

Microsoft Links Raspberry Robin USB Worm to Russian Evil Corp Hackers

Microsoft on Friday disclosed a potential connection between the Raspberry Robin USB-based worm and an infamous Russian cybercrime group tracked as Evil Corp. The tech giant said it observed the FakeUpdates (aka SocGholish) malware being delivered via existing Raspberry Robin infections on July 26, 2022. Raspberry Robin, also called QNAP Worm, is known to spread … Read more

Researchers Warn of Raspberry Robin’s Worm Targeting Windows Users

Researchers Warn of Raspberry Robin’s Worm Targeting Windows Users

Cybersecurity researchers are drawing attention to an ongoing wave of attacks linked to a threat cluster tracked as Raspberry Robin that’s behind a Windows malware with worm-like capabilities. Describing it as a “persistent” and “spreading” threat, Cybereason said it observed a number of victims in Europe. The infections involve a worm that propagates over removable … Read more