Dark Reading reports: Toyota Motor Corp. today announced its discovery of yet another data breach — this time, two misconfigured cloud services were found leaking 260,000 car owners’ personal information over a seven-year period. This discovery comes after the car manufacturer conducted an investigation of its cloud features in the wake of announcing earlier in…
Category: Business Sector
Barracuda zero-day abused since 2022 to drop new malware, steal data
Sergiu Gatlan reports: Network and email security firm Barracuda today revealed that a recently patched zero-day vulnerability had been exploited for at least seven months to backdoor customers’ Email Security Gateway (ESG) appliances with custom malware and steal data. The company says an ongoing investigation found that the bug (tracked as CVE-2023-2868) was first exploited…
Russia’s ‘Silicon Valley’ hit by cyberattack; Ukrainian group claims deep access
The Record reports: Ukrainian hackers have breached the systems of Skolkovo Foundation, the agency which oversees the high-tech business area located on the outskirts of Moscow. The Foundation was founded and charged by Russian former President Dmitry Medvedev to rival Silicon Valley in the U.S. According to Skolkovo’s statement, the hackers managed to gain limited access…
Developing: RaidForums users db leaked
In what is likely making some people a bit nervous, the users database for RaidForums has been leaked on a forum. The database appears to date to September 2020. It contains entries for the site owner, Omnipotent, as well as moderators, and well-known users. DataBreaches spot-checked the database and found individuals with their known…
Cuba ransomware claims cyberattack on Philadelphia Inquirer
Bill Toulas reports: The Cuba ransomware gang has claimed responsibility for this month’s cyberattack on The Philadelphia Inquirer, which temporarily disrupted the newspaper’s distribution and disrupted some business operations. The Philadelphia Inquirer is Philadelphia’s largest (by circulation) newspaper. It is the third-longest continuously operating daily newspaper in the U.S., founded in 1829, and it has…
IT employee impersonates ransomware gang to extort employer
Bill Toulas reports: A 28-year-old United Kingdom man from Fleetwood, Hertfordshire, has been convicted of unauthorized computer access with criminal intent and blackmailing his employer. A press release published yesterday by the South East Regional Organised Crime Unit (SEROCU) explains that in February 2018, the convicted man, Ashley Liles, worked as an IT Security Analyst…