DataBreaches.net has received the following statement from Charlotte LaGrone, Executive Director of Communications for Weatherford ISD, concerning the breach DataBreaches.net reported yesterday: Weatherford ISD Statement on Data Breach The confidentiality, privacy, and security of information in our care is one of our highest priorities. Despite multiple layers of processes and procedures to prevent a data…
Category: Other
Hackers breach MailChimp’s internal tools to target crypto customers
Lawrence Abrams reports: Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks. Sunday morning, Twitter was abuzz with reports from owners of Trezor hardware cryptocurrency wallets who received phishing notifications claiming that the company suffered…
Germany closes Russian darknet market Hydra
DW reports: Federal police say they have shut down the German servers for the darknet hub, which saw its sales skyrocket during the pandemic. Investigators said on Tuesday that they had shut down the German servers for Hydra, a Russian darknet marketplace that was used to sell drugs, forged documents, intercepted data, and other illegal digital services….
Apple and Meta Gave User Data to Hackers Who Used Forged Legal Requests
More about the successful use of forged emergency data requests that Brian Krebs reported about yesterday. Now William Turton reports: Apple Inc. and Meta Platforms Inc., the parent company of Facebook, provided customer data to hackers who masqueraded as law enforcement officials, according to three people with knowledge of the matter. Apple and Meta provided…
Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests”
Brian Krebs reports: There is a terrifying and highly effective “method” that criminal hackers are now using to harvest sensitive customer data from Internet service providers, phone companies and social media firms. It involves compromising email accounts and websites tied to police departments and government agencies, and then sending unauthorized demands for subscriber data while…
Morgan Stanley client accounts breached in social engineering attacks
Sergiu Gatlan reports: Morgan Stanley Wealth Management, the wealth and asset management division of Morgan Stanley, says some of its customers had their accounts compromised in social engineering attacks. The account breaches were the result of vishing (aka voice phishing), a social engineering attack where scammers impersonate a trusted entity (in this case Morgan Stanley) during a…