Serena Barker-Singh reports: Up to 3,700 Afghans brought to the UK between January and March 2024 have potentially been impacted as names, passport details and information from the Afghan Relocations and Assistance Policy has been compromised again, this time by a breach on a third party supplier used by the Ministry of Defence (MoD). This was not…
Category: Subcontractor
Kokomo24/7, provider of telehealth services for LAUSD students, reports data breach
Mallika Sheshadri reports: Kokomo Solutions, a technology vendor that provides Los Angeles Unified School District students with telehealth services and a tip line to report suspicious activity, has fallen prey to a data breach. The company noticed “unusual activity on our computer network” on Dec. 11, 2024 — but did not file a data breach notice with the…
Scattered Spider has a new Telegram channel to list its attacks
Commenters on reading the new Telegram channel call it “schizo,” “complete chaos,” and “insane.” DataBreaches would just call it “overwhelming.” A new Telegram channel appeared on Friday afternoon with a name conflating three groups: Shiny Hunters, Scattered Spider, and Lapsus$. How long it will last before it gets banned remains to be seen, but in…
Hackers Allegedly Breach Nokia’s Internal Network
Divya reports: A cybercriminal group has allegedly infiltrated Nokia’s internal network through a vulnerable third-party contractor, potentially exposing sensitive information belonging to more than 94,500 employees in what security experts are calling one of the most extensive corporate data breaches affecting the telecommunications giant in recent years. The threat actor, identifying as Tsar0Byte, made claims about the…
Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
Zack Whittaker reports: U.S. insurance giant Allianz Life has confirmed to TechCrunch that hackers stole the personal information of the “majority” of its customers, financial professionals, and employees during a mid-July data breach. The company disclosed the data breach on Saturday in a legally required filing with Maine’s attorney general, but did not immediately provide a number…
Clorox Files $380M Suit Alleging Cognizant Gave Hackers Passwords in Catastrophic 2023 Cyberattack
Rochdi Rais reports: The Clorox Company and its subsidiary, Clorox Services Co., today filed a $380 million lawsuit in California state court against Cognizant Worldwide Ltd. and its New Jersey affiliate, Cognizant Technology Solutions US Corp. The complaint alleges that Cognizant enabled a “catastrophic” cyberattack on Clorox’s corporate network in August 2023 by handing over sensitive…