Carly Page reports: Communications giant Twilio has confirmed hackers accessed customer data after successfully tricking employees into handing over their corporate login credentials. The San Francisco-based company, which allows users to build voice and SMS capabilities — such as two-factor authentication (2FA) — into applications, said in a blog post published Monday that it became aware that someone gained…
FBI raids Trump’s Mar-a-Lago
Rebecca Beitsch and Harper Neidig report: The FBI executed a search warrant on former President Trump’s home in Florida on Monday, the ex-president said, lashing out at law enforcement for what he called “political persecution.” “My beautiful home Mar A Lago in Palm Beach, Florida is currently under siege, raided and occupied by a large group of…
Three Defendants Sentenced In Fraud And Identity Theft Scam Targeting Customers Of Banks And Credit Unions
August 8 – U.S. District Judge Paul Maloney today sentenced Cedric Smith to a prison term of 70 months. His sentence is the last handed down in a West Michigan federal case charging three Miami, Florida residents with bank fraud and aggravated identity theft. In February 2021, a grand jury charged Cedric Smith, Daja Smith…
Update: Colosseum Dental Benelux pays ransom to threat actors
Updating the story concerning Colosseum Dental Benelux reported yesterday, Yannick Spinner reports (machine translated): The umbrella company, in its own words, had no choice but to pay the criminals: “Caring for our patients is our top priority and prompted Colosseum Dental to contact the cyber attackers and make agreements about the return and security of our…
Salinas Valley Memorial Healthcare System settles class action lawsuit for $340K
Salinas Valley Memorial Healthcare System has agreed to pay $340,000 to resolve claims lax cybersecurity resulted in a 2020 data breach. Five employee and contractor email addresses were reportedly compromised in April, May and June of 2020 through a phishing scheme. As Salinas claimed in their notification of July 1, 2020: On April 30, 2020,…
Snapchat, Amex sites abused in Microsoft 365 phishing attacks
Sergiu Gatlan reports: Attackers abused open redirects on the websites of Snapchat and American Express in a series of phishing attacks to steal Microsoft 365 credentials. Open redirects are web app weaknesses that allow threat actors to use the domains of trusted organizations and websites as temporary landing pages to simplify phishing attacks. Read more at…