Catalin Cimpanu reports: US software company SolarWinds has released security updates on Saturday to patch a vulnerability in its Serv-U file transferring technology that is being actively exploited in the wild. The attacks and the vulnerability were discovered by Microsoft, SolarWinds said in a security advisory published over the weekend. Read more on The Record.
Category: Business Sector
Spreadshop hacked. T-shirt lovers warned of “considerably vicious” data breach
Graham Cluley reports: Clients of Spreadshirt, Spreadshop, and TeamShirts have been warned of a data breach which has seen the details of customers, partners, and employees fall into the lap of cybercriminals. News of the breach first emerged on Thursday when customers were warned by email of a “security incident” involving an “unauthorised third party.” At the…
Millennia Group notifying people of 2019 email breach
Ohio-headquartered The Millennia Companies are involved in housing management. On some date that this site does not yet know, they learned that there had been unauthorized access to some employee email accounts between October 21, 2019 and December 18, 2019. “The Millennia Companies immediately launched an investigation in consultation with outside cybersecurity professionals who regularly investigate…
Follow-up: Forensic audit didn’t reveal any unauthorized access to customer data: Mobikwik
Mint reports: Payments firm One Mobikwik Systems Ltd on Monday, in its draft IPO prospectus, said that a forensic audit conducted by an independent expert did not reveal any unauthorized access to its customer database in March. The alleged data breach came to light in March after unknown actors claimed they were selling Mobikwik’s data on the…
Dotty’s Reveals Details about Data Breach Incident
Jerome Garcia reports: Dotty’s, a company that runs some 120 gaming venues in Nevada, has reportedly suffered a data breach. Owned by Craig Estey and his Nevada Restaurant Services (NRS) company, it seems that Dotty’s was the victim of a cyberattack related to malware earlier this year. Dotty’s data breach was first unveiled last week by Vital Vegas, a website run by Scott…
More than four months after DarkSide attack, Guess notifies individuals of breach
In April, DataBreaches.net reported a chat with DarkSide threat actors. As part of that report, this site noted that Guess, the well-known clothing and accessories retailer, had been attacked in February and listed on the DarkSide threat actor’s dedicated leak site. DataBreaches.net had looked at the proof of claim that DarkSide had posted and described…