Yesterday morning, DataBreaches woke up to a message on Telegram: Even the NSA can’t stop or identify us anymore. The FBI and everyone else is irrelevant and incompetent as far as we’re concerned :). When DataBreaches asked ShinyHunters if anything in particular had inspired that statement, “Shiny1” responded: I heard the NSA is investigating and…
Air France and KLM alert customers to data breach on external platform
André Orban reports: KLM and Air France have reported a data breach involving unauthorised access to customer data on an external customer service platform. The incident did not affect the airlines’ internal systems, and no sensitive information (such as passwords, travel details, passport numbers, Flying Blue miles, or credit card data) was compromised. The breach…
Samourai CEO Keonne Rodriguez and Samourai CTO William Lonergan Hill Pled Guilty to Operating a Money Transmitting Business, Samourai Wallet, That Transmitted Over $200 Million in Criminal Proceeds
On July 30, Keonne Rodriguez and William Lonergan Hill, the co-founders of Samourai Wallet (“Samourai”), a cryptocurrency mixer that facilitated more than $200 million in illegal transactions, pleaded guilty before U.S. District Judge Denise L. Cote in New York. Rodriguez, the Chief Executive Officer of Samourai, and Hill, the Chief Technology Officer, pled guilty to…
6.4 million Bouygues Telecom just had their data exposed in a huge data breach – and it’s the second to hit French telecoms operators in a month
Emma Woollacott reports: Bouygues Telecom, France’s third-largest phone carrier, has confirmed a data breach which exposed personal data belonging to millions of customers across the country. The company, which provides mobile, broadband, and digital TV services, said it discovered the breach, affecting 6.4 million of its 27 million customers, earlier this week. It acted quickly…
AU: Privacy watchdog sues Optus over mass data breach in 2022
David Swan reports: Optus is facing a potential mammoth fine after Australia’s privacy watchdog launched civil Federal Court proceedings over a September 2022 cyberattack in which the personal information of nearly 10 million Australians was stolen. During the cyberattack, which was one of the worst in the nation’s history, hackers gained unauthorised access to the…
Google reveals it became one of the Salesforce attack victims in June
Lawrence Abrams reports: In June, Google warned that a threat actor they classify as ‘UNC6040′ is targeting companies’ employees in voice phishing (vishing) social engineering attacks to breach Salesforce instances and download customer data. This data is then used to extort companies into paying a ransom to prevent the data from being leaked. In a brief update…