-
![]()
Latitude Financial Services Faces Class Action Lawsuit Over Massive Data Breach
Latitude Financial Services is facing the possibility of a class action lawsuit following the revelation that personal information of 14 million customers has been exposed in a data breach. The breach, which took place over several years, included customer names, addresses, phone numbers, and dates of birth, along with 7.9 million Australian and New Zealand…
-
![]()
Law Firm Fined $200K for Data Breach Caused by Cybersecurity Lapses
The Heidell, Pittoni, Murphy & Bach law firm has agreed to pay $200,000 to the state of New York over data security lapses that led to a data breach in 2021. The breach exposed the private data of nearly 115,000 hospital patients, including over 61,000 New Yorkers, due to the firm’s failure to comply with…
-
![]()
Sun Pharma Reports Security Incident, Ransomware Group Claims Massive Data Breach
Sun Pharmaceutical, one of India’s largest drug makers, reported an information security incident on March 2nd, 2023, which impacted some of its IT assets. The company has taken appropriate containment and remediation actions to address the incident and stated that it did not impact its core systems and operations. However, the threat actor group ALPHV…
-
![]()
Dole Food Company Confirms Employee Data Breach Following Ransomware Attack
Dole Food Company, a leading global supplier of fresh fruits and vegetables, has acknowledged that the ransomware attack it suffered in February 2023 led to unauthorized access to employee information. The company employs around 38,000 people worldwide and serves customers in over 75 countries. In its annual report submitted to the U.S. Securities and Exchange…
-
![]()
Student Loan Servicers Expose Data of Over 2.5 Million Borrowers
EdFinancial and the Oklahoma Student Loan Authority announced that personal information for more than 2.5 million student loan borrowers was exposed in a breach at their servicing provider, Nelnet. According to notices mailed to affected customers, the breach targeted Nelnet Servicing and impacted its servicing system and web portal. Nelnet revealed the incident on July…
-
![]()
Oakland, California Falls Victim to Ransomware Attack by LockBit 3.0
The city of Oakland, California is the latest victim of a ransomware attack, with LockBit 3.0 claiming responsibility. The cybercriminals have threatened to release sensitive data if the ransom is not paid by April 10, 2023. This development has put the residents of Oakland at risk, with the possibility of their personal information being leaked…
-
![]()
Cyber Gang Medusa Claims to Have Stolen Extensive Records from Minneapolis Public Schools
A cyber gang called Medusa claims to have stolen sensitive records from the Minneapolis Public Schools and published them on the dark web after the district failed to pay a $1 million extortion demand. However, attempts to download the files have been unsuccessful, with the gang redirecting users to an encrypted instant-messaging protocol. The files…
-
![]()
Latitude Financial Services Reports Cyberattack Affecting 300,000 Customers
Latitude Financial Services, a major Australian consumer credit provider and subsidiary of Deutsche Bank and KKE, has announced that around 300,000 of its customers may have had their personal data compromised in a cyberattack. The attack led to the suspension of services and the theft of customer data. Latitude believes that the attackers gained access…
-
![]()
Rubrik confirms attack exploiting GoAnywhere zero-day vulnerability
Rubrik, a cloud data management and security provider, has confirmed that it fell victim to an attack exploiting a GoAnywhere zero-day vulnerability. Rubrik was named on the leak website of the ransomware group Cl0p. In early February, Fortra, previously known as HelpSystems, had warned its GoAnywhere managed file transfer software users about a remote code…
-
![]()
Bitwarden Password Manager Vulnerability Allows for Credential Theft via Malicious iFrames
Security researchers at Flashpoint have identified a flaw in the autofill feature of Bitwarden, a popular open-source password management service. The vulnerability could allow malicious iframes embedded in trusted websites to steal users’ credentials and send them to an attacker. Bitwarden was first made aware of the problem in 2018 but chose to allow it…
