Lawrence Abrams reports: Cryptocurrency rewards platform Celsius Network has disclosed a security breach exposing customer information that led to a phishing attack. Today, Celsius CEO Alex Mashinsky stated that Celsius’ third-party marketing server was compromised, and threat actors gained access to a partial Celsius customer list. Read more on BleepingComputer.
Category: Phishing
Most imitated brands in phishing emails in first quarter of 2021: report
I don’t know about you, but we’re seeing a ton of new fraud attempts via messages. Keep yourself and your relatives safe (especially relatives who may not be particularly scam savvy), by telling them what to expect. Audrey Conklin reports: Microsoft and delivery service DHL led a list of the 10 most-imitated brands in global phishing attempts in…
Class action lawsuit filed against Roper St. Francis Healthcare over multiple data breaches
Regular readers may recall that September, 2020 was not a good month for St. Roper Francis, and DataBreaches.net had to explain that the healthcare system was dealing with notifications from two unrelated breaches. One involved 6,000 patients impacted by a hack of an employee’s email account. The other involved more than 90,000 patients impacted by…
Robinhood Warns Customers of Tax-Season Phishing Scams
Elizabeth Montalbano reports: Attackers are impersonating the stock-trading broker using fake websites to steal credentials as well as sending emails with malicious tax files. Attackers have targeted customers of stock-trading broker Robinhood with a phishing campaign aimed to steal their credentials and spread malware using fake tax documents, the company has warned. Read more on…
Iranian cyberspies target professionals at medical research organizations in the US, Israel
Catalin Cimpanu reports: Hackers linked to Iran have targeted 25 senior professionals at various medical research organizations located in the US and Israel as part of a weeks-long phishing campaign, email security firm Proofpoint revealed today. The attacks are part of a long series of attacks that have repeatedly and increasingly targeted medical and pharmaceutical…
Overseas Service Corporation notification of a breach
Another report we may not see on HHS’s public breach tool but that involves health information. This reads like it is a notification to employees based on the types of data involved, but it doesn’t actually say who the breach impacted. Overseas Service Corporation (“OSC”) announced today a phishing email incident that involved a small…