Owen Scott reports that Peter Green Chilled, a transport service to some of Britain’s supermarkets, has been the victim of a cyberattack with a ransom demand. Peter Green Chilled has said that it is issuing “regular updates” to clients while the attack continues. The company’s clients include major supermarkets such as Tesco, Aldi, and Sainsbury’s. Now,…
Category: Business Sector
How the Signal Knockoff App TeleMessage Got Hacked in 20 Minutes
By now, it is widely known that President Trump’s former national security advisor, Mike Waltz, was spotted using a Signal app clone during a cabinet meeting. Significantly, the TeleMessage clone archives messages. Micah Lee reports what happened next. Two days after the photo of Waltz was published, an anonymous source told me that they had…
Cocospy stalkerware apps go offline after data breach
Zack Whittaker reports: A trio of phone surveillance apps, which was caught spying on millions of people’s phones earlier this year, has gone offline. Cocospy, Spyic, and Spyzie were three near-identical but differently branded stalkerware apps that allowed the person planting one of the apps on a target’s phone access to their personal data — including their messages, photos,…
Ransomware Attack on ADP Partner Exposes Broadcom Employee Data
Tim Toole reports: A ransomware attack on Business Systems House (BSH), a Middle Eastern partner of payroll provider ADP, led to Broadcom employee data theft in September 2024. Data was leaked online in December, but Broadcom wasn’t informed until May 2025. The El Dorado ransomware group claimed responsibility for the breach, which occurred as Broadcom…
Dior faces scrutiny, fine in Korea for insufficient data breach reporting; data of wealthy clients in China, South Korea stolen
Korea Joong Ang Daily reports: Luxury brand Dior is facing criticism in Korea for its inadequate response to a recent data breach that exposed the personal information of customers in Korea. While the company notified the Personal Information Protection Commission (PIPC), it failed to report the hacking incident to the Korea Internet & Security Agency…
Twilio denies breach following leak of alleged Steam 2FA codes
Bill Toulas reports: Twilio has denied in a statement for BleepingComputer that it was breached after a threat actor claimed to be holding over 89 million Steam user records with one-time access codes. The threat actor, using the alias Machine1337 (also known as EnergyWeaponsUser), advertised a trove of data allegedly pulled from Steam, offering to sell it…