It seems like litigation from one T-Mobile data breach is barely settled when we are reading about yet another T-Mobile breach. AP reports the carrier disclosed that an unidentified threat actor breached its network in late November and stole data on 37 million customers. The data stolen included addresses, phone numbers, and dates of birth….
Category: Hack
34,942 PayPal users notified of data security incident in December
PayPal has sent breach notifications to 34,942 users this week. Their notification reads, in part: On December 20, 2022, we confirmed that unauthorized parties were able to access your PayPal customer account using your login credentials. We have no information suggesting that any of your personal information was misused as a result of this incident,…
Mailchimp says it was hacked — again
Zack Whittaker reports: Email marketing and newsletter giant Mailchimp says it was hacked and that dozens of customers’ data was exposed. It’s the second time the company was hacked in the past six months. Worse, this breach appears to be almost identical to a previous incident. The Intuit-owned company said in an unattributed blog post that its security team detected an intruder…
Russia-linked drug marketplace Solaris hacked by its rival
Over in the no-honor-among-thieves department, Daryna Antoniuk reports: Solaris, one of the leading darknet drug marketplaces, has been taken over by its rival, according to research released this week. Users who tried to access Solaris after January 13 were redirected to the recently-launched Russian language drug marketplace known as Kraken, which claimed to have successfully taken over…
WA: Therapist notifies clients after tricked by a hacker
Some breaches may be more embarrassing to admit to than others. Kudos to this therapist for forthrightly informing the Washington state attorney general what happened: I am writing to advise you of a computer data breach, which occurred from December 2 to December 4, 2022. I was contacted by a person representing himself as an…
North Korean Hacking Group Tied to $100M Harmony Hack Moves 41,000 Ether Over Weekend
Shaurya Malwa reports: Pseudonymous blockchain sleuth ZachXBT said on Monday that part of the funds tied to last year’s $100 million attack on the Harmony network were moved over the weekend. “North Korea’s Lazarus Group had a very busy weekend, moving $63.5 million (~41,000 ETH) from the Harmony bridge hack through Railgun before consolidating funds…