A cyberattack on the Des Moines Public Schools (DMPS) in Iowa has left parents and students scrambling to stay updated on the latest news. The DMPS canceled classes and activities for two days due to a security breach in their network as technicians scrambled to protect data and restore the computer system. The school announced…
Hackers are baiting their victims with stolen financial data in a clever phishing scheme. Over 400,000 data points, including identity numbers, names, phone numbers, and payment records, are used to persuade consumers to click on a malicious link. This link downloads a potent virus called BitRAT that can steal passwords, spy on users, and install…
This past October, during a ransomware assault on a healthcare facility in southwest Louisiana, hackers collected and exposed the personal information of approximately 270,000 patients and workers. A ransomware organization known as the Hive has claimed responsibility for the incident. Hive and other ransomware groups are increasingly targeting organizations, stealing data before locking down systems…
Business email compromise (BEC) attacks are becoming widespread and present a significant risk to businesses of all sizes. These attacks involve hackers posing as trusted individuals or organizations via email to request sensitive information or financial transfers. BEC attacks often target high-level employees, such as executives or financial managers, and can be highly sophisticated. Attackers…
In late November 2022, sports betting firm DraftKings announced that it had suffered a data breach affecting approximately 68,000 customers. The company stated that the breach resulted from a credential stuffing attack, in which attackers obtained credentials from a third-party source and attempted to use them to access DraftKings accounts. According to DraftKings, the attackers…
What do you do when your most personal information has been compromised? This is likely the question that customers of Sequoia One asked themselves earlier this month as they were informed that the company had been hacked. Sequoia One specializes in the management of human resources, benefits, and payroll. For the past 21 years, they’ve…
A somewhat concerning flaw has been fixed by SiriusXM that would allow unauthorized individuals to unlock doors remotely and start engines by only having the vehicle identification number (VIN). Sam Curry, a researcher at Yuga Labs, published a Twitter thread explaining the details of the discovered security flaw. The security bug affected vehicles using SiriusXM’s…
The FBI warns about scammers pretending to be refund payment gateways from financial institutions to steal sensitive information from unsuspecting victims. The federal law enforcement agency stated that scammers deceive victims into granting them access to their computers via email or phone calls by posing as representatives of technical or computer repair companies. According to…
Earlier this year, Twitter confirmed that an API vulnerability had caused a massive data leak containing non-public information for over 5.4 million Twitter users. Twitter denied claims that hackers had leaked the private information priorly. However, Pompompurin, the owner of the hacking forum Breached, stated they were responsible for exploiting the API bug and platforming…
Data allegedly stolen from Cincinnati State Technical and Community College has been leaked after Vice Society attacked the campus. Many of the stolen documents were posted on the hackers’ websites. These documents date from several years ago until November 24, 2022, suggesting that threat actors still have access to the compromised systems, but this has…