LG Uplus, one of the largest telecom operators in South Korea, has confirmed to TechCrunch that it has reported a suspected data breach to Korea’s national cybersecurity watchdog KISA, but did not say when the results of its investigation would be available. All three major South Korean telecom providers, SK Telecom, KT Telecom, and now […]
LG Uplus is latest South Korean telco to confirm cybersecurity incident Read More »
Security researchers at Google say hackers targeting corporate executives with extortion emails have stolen data from “dozens of organizations,” one of the first signs that the hacking campaign may be far-reaching. The tech giant said Thursday in a statement shared with TechCrunch that the Clop extortion gang exploited multiple security vulnerabilities in Oracle’s E-Business Suite
‘Dozens’ of organizations had data stolen in Oracle-linked hacks Read More »
A notorious predominantly English-speaking hacking group has launched a website to extort its victims, threatening to release about a billion records stolen from companies who store their customers’ data in cloud databases hosted by Salesforce. The loosely organized group, which has been known as Lapsus$, Scattered Spider and ShinyHunters, have published a dedicated data leak
Hacking group claims theft of 1 billion records from Salesforce customer databases Read More »
Canada’s second largest airline WestJet said the personal information of 1.2 million passengers was stolen in a cyberattack and data breach earlier this year. The airline disclosed the number of affected passengers in a filing with Maine’s attorney general, which confirmed 240 residents in the state were also affected. According to the notice, the stolen
Data breach at Canadian airline WestJet affects 1.2M passengers Read More »
Stellantis, the car-making giant behind Chrysler, Fiat, Jeep, Dodge, Ram, and other brands, has confirmed a data breach involving customers’ personal information. In a statement published Sunday, Stellantis said it experienced a breach of a “third-party service provider’s platform that supports our North American customer service operations.” The statement said “contact information” was taken, but
Automaker giant Stellantis says customers’ personal data stolen during breach Read More »
Streaming giant Plex is urging its customers to change their passwords after it disclosed a data breach of one of its user databases. The company said in a post on Monday that it was aware of a security incident involving the theft of Plex customer account information, including user names, email addresses, scrambled passwords, and
Plex urges users to change passwords after data breach Read More »
Salesloft said a breach of its GitHub account in March allowed hackers to steal authentication tokens that were later used in a mass-hack targeting several of its big tech customers. Citing an investigation by Google’s incident response unit Mandiant, Salesloft said on its data breach page that the as-yet-unnamed hackers accessed Salesloft’s GitHub account and
Salesloft says Drift customer data thefts linked to March GitHub account hack Read More »
Credit reporting giant TransUnion has disclosed a data breach affecting more than 4.4 million customers’ personal information. In a filing with Maine’s attorney general’s office on Thursday, TransUnion attributed the July 28 breach to unauthorized access of a third-party application storing customers’ personal data for its U.S. consumer support operations. TransUnion claimed “no credit information
TransUnion says hackers stole 4.4 million customers’ personal information Read More »
A top Social Security Administration official turned whistleblower says members of the Trump administration’s Department of Government Efficiency (DOGE) uploaded hundreds of millions of Social Security records to a vulnerable cloud server, putting the personal information of most Americans at risk of compromise. Charles Borges, the Social Security Administration’s chief data officer, said in a
A stalkerware maker with a history of multiple data leaks and breaches now has a critical security vulnerability that allows anyone to take over any user account and steal their victim’s sensitive personal data, TechCrunch has confirmed. Independent security researcher Swarang Wade found the vulnerability, which allows anyone to reset the password of any user of
A new security flaw in TheTruthSpy phone spyware is putting victims at risk Read More »
