-
![]()
SafeMoon Suffers Major Loss in Security Exploit
In a major setback for the popular DeFi protocol, SafeMoon, the platform has suffered an exploit that resulted in the loss of approximately 8.9 million tokens from its liquidity pool. The attack, which took place on March 28th, 2023, was carried out by exploiting the token burn mechanism, causing the funds to be lost. According…
-
![]()
The APT43 Threat: An Essay on the Dangers Posed by a North Korean-Backed Cyber Group
APT43 is a highly active cyber group that operates on behalf of North Korea. It boasts moderate technical proficiency and uses aggressive social engineering methods, primarily targeting government organizations, academic institutions, and think tanks in South Korea and the United States that focus on Korean peninsula geopolitical issues. To sustain its main objective of gathering…
-
![]()
OpenAI’s ChatGPT suffers security breach through open-source library bug
OpenAI, the organization behind the popular chatbot ChatGPT, has confirmed a data breach that exposed users’ personal information. The breach was caused by a bug in an open-source library called Redis-py, introduced by OpenAI on March 20. As a consequence, users were able to access chat data that did not belong to them, and sensitive…
-
![]()
Latitude Financial Services Faces Class Action Lawsuit Over Massive Data Breach
Latitude Financial Services is facing the possibility of a class action lawsuit following the revelation that personal information of 14 million customers has been exposed in a data breach. The breach, which took place over several years, included customer names, addresses, phone numbers, and dates of birth, along with 7.9 million Australian and New Zealand…
-
![]()
Law Firm Fined $200K for Data Breach Caused by Cybersecurity Lapses
The Heidell, Pittoni, Murphy & Bach law firm has agreed to pay $200,000 to the state of New York over data security lapses that led to a data breach in 2021. The breach exposed the private data of nearly 115,000 hospital patients, including over 61,000 New Yorkers, due to the firm’s failure to comply with…
-
![]()
Sun Pharma Reports Security Incident, Ransomware Group Claims Massive Data Breach
Sun Pharmaceutical, one of India’s largest drug makers, reported an information security incident on March 2nd, 2023, which impacted some of its IT assets. The company has taken appropriate containment and remediation actions to address the incident and stated that it did not impact its core systems and operations. However, the threat actor group ALPHV…
-
![]()
New Malicious Chrome Extension Exploits ChatGPT to Access Facebook Accounts
A second damaging ChatGPT extension for Google Chrome has been uncovered, permitting cybercriminals to infiltrate users’ Facebook accounts by acquiring cookies. The extension was found by Guardio Labs and was downloaded over 9,000 times before being removed from the Chrome store. It was advertised through Google-sponsored search results targeting individuals interested in OpenAI’s Chat GPT4…
-
![]()
Dole Food Company Confirms Employee Data Breach Following Ransomware Attack
Dole Food Company, a leading global supplier of fresh fruits and vegetables, has acknowledged that the ransomware attack it suffered in February 2023 led to unauthorized access to employee information. The company employs around 38,000 people worldwide and serves customers in over 75 countries. In its annual report submitted to the U.S. Securities and Exchange…
-
![]()
Student Loan Servicers Expose Data of Over 2.5 Million Borrowers
EdFinancial and the Oklahoma Student Loan Authority announced that personal information for more than 2.5 million student loan borrowers was exposed in a breach at their servicing provider, Nelnet. According to notices mailed to affected customers, the breach targeted Nelnet Servicing and impacted its servicing system and web portal. Nelnet revealed the incident on July…
-
![]()
Admin Shuts Down Hacking Forum but Promises “Better” Next Steps for Users
In a surprise announcement on March 21, 2023, the administrator of BreachForums said the hacking forum has officially been taken offline but promised “what is to come will be better for us all.”Baphomet, who currently oversees BreachForums, noted in a message on the forum’s Telegram channel: “You are allowed to hate me and disagree with…
