Data Breaches – PossibleThreat Articles

Change Healthcare Breach Hits 100M Americans

October 30, 2024 0 Comments alphv, anthem inc., blackcat, Data Breaches, Equifax, experian, hipaa journal, idx, Latest Warnings, ransomhub, sen. mark warner, sen. ron wyden, The Coming Storm, transunion, u.s. department of health and human resources, united health group

Credit to Author: BrianKrebs| Date: Wed, 30 Oct 2024 13:34:08 +0000

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information.

Independent Krebs Security

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach

October 18, 2024 0 Comments A Little Sunshine, CrowdStrike, Data Breaches, equation corp, FBI, hackread, infragard, intel 471, national public data, Ne'er-Do-Well News, netsec, RaidForums, tecmundo, tv globo, usdod

Credit to Author: BrianKrebs| Date: Fri, 18 Oct 2024 12:33:51 +0000

Brazilian authorities reportedly have arrested a 33-year-old man on suspicion of being “USDoD,” a prolific cybercriminal who rose to infamy in 2022 after infiltrating the FBI’s InfraGard program and leaking contact information for 80,000 members. More recently, USDoD was behind a breach at the consumer data broker National Public Data that led to the leak of Social Security numbers and other personal information for a significant portion of the U.S. population.

Independent Krebs Security

National Public Data Published Its Own Passwords

August 19, 2024 0 Comments A Little Sunshine, atlas data privacy corp., Breadcrumbs, creationnext, Data Breaches, national public data breach, npd.pentester.com, npdbreach.com, salvatore verini, The Coming Storm, usinfosearch.com

Credit to Author: BrianKrebs| Date: Mon, 19 Aug 2024 16:23:31 +0000

New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans’ Social Security Numbers, addresses, and phone numbers online. KrebsOnSecurity has learned that another NPD data broker which shares access to the same consumer records inadvertently published the passwords to its back-end database in a file that was freely available for download from its homepage until today.

Independent Krebs Security

NationalPublicData.com Hack Exposes a Nation’s Data

August 15, 2024 0 Comments A Little Sunshine, atlas data privacy corp., Data Breaches, FBI, haveibeenpwned.com, infragard, instant checkmate, jerico pictures, national criminal data llc, national public data breach, peopleconnect, recordscheck.net, sal verini, salvatore verini, shadowglade llc, sxul, The Coming Storm, trinity entertainment, troy hunt, truthfinder, twisted history llc, usdod, vx-underground

Credit to Author: BrianKrebs| Date: Thu, 15 Aug 2024 22:38:36 +0000

A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a little-known but aptly-named consumer data broker called NationalPublicData.com. This post examines what we know about a breach that has exposed hundreds of millions of consumer records. We’ll also take a closer look at the data broker that got hacked — a background check company founded by an actor and retired sheriff’s deputy from Florida.

Independent Krebs Security

Low-Drama ‘Dark Angels’ Reap Record Ransoms

August 5, 2024 0 Comments A Little Sunshine, amerisourcebergen corporation, bleeping computer, brett stone-gross, cencora, dark angels, Data Breaches, dunghill leak, Ransomware, sabre, sophos, sysco, threatlabz, zscaler

Credit to Author: BrianKrebs| Date: Mon, 05 Aug 2024 19:52:35 +0000

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. Security experts say the Dark Angels have been around since 2021, but the group doesn’t get much press because they work alone and maintain a low profile, picking one target at a time and favoring mass data theft over disrupting the victim’s operations.

MalwareBytes Security

TracFone will pay $16 million to settle FCC data breach investigation

July 24, 2024 0 Comments Data Breaches, FCC, news, Privacy, tracfone

Prepay wireless provider TracFone has been slapped on the wrist to the tune of $16 million for insufficient customer data protection

Independent Krebs Security

Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks

July 15, 2024 0 Comments A Little Sunshine, Data Breaches, google domains, Latest Warnings, metamask, paradigm, squarespace, taylor monahan, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 15 Jul 2024 15:24:46 +0000

At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered, merely by supplying an email address tied to an existing domain.

Independent Krebs Security

Crooks Steal Phone, SMS Records for Nearly All AT&T Customers

July 12, 2024 0 Comments A Little Sunshine, advance auto parts, allstate, anheuser-busch, at&t breach, Data Breaches, FBI, Latest Warnings, los angeles unified, mitsubishi, neiman marcus, progressive, pure storage, santander bank, snowflake hack, state farm, techcrunch, Ticketmaster, U.S. Securities and Exchange Commission, wired

Credit to Author: BrianKrebs| Date: Fri, 12 Jul 2024 18:12:20 +0000

AT&T Corp. disclosed today that a new data breach has exposed phone call and text message records for roughly 110 million people — nearly all of its customers. AT&T said it delayed disclosing the incident in response to “national security and public safety concerns,” noting that some of the records included data that could be used to determine where a call was made or text message sent. AT&T also acknowledged the customer records were exposed in a cloud database that was protected only by a username and password (no multi-factor authentication needed).

Independent Krebs Security

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

June 15, 2024 0 Comments 0ktapus, caesars, Data Breaches, doordash, FBI, group-ib, king bob, lastpass, mailchimp, mgm, murcia today, Ne'er-Do-Well News, noah michael urban, okta, scattered spider, signal, SIM swapping, sosa, the com, tyler buchanan, vx-underground, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sat, 15 Jun 2024 23:40:20 +0000

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider, a cybercrime group suspected of hacking into Twilio, LastPass, DoorDash, Mailchimp, and nearly 130 other organizations over the past two years.

Independent Krebs Security

Who Stole 3.6M Tax Records from South Carolina?

April 16, 2024 0 Comments aleksandr ermakov, associated press, Breadcrumbs, Data Breaches, embargo, home depot breach, jeffrey collins, mark keel, mazafaka, mikhail shefel, Ne'er-Do-Well News, nikki haley, rescator, shtazi, target breach, tax refund fraud, tax return fraud, the post and courier, u.s. internal revenue service, verified

Credit to Author: BrianKrebs| Date: Tue, 16 Apr 2024 11:26:55 +0000

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 million people. The answer may no longer be a mystery: KrebsOnSecurity found compelling clues suggesting the intrusion was carried out by the same Russian hacking crew that stole of millions of payment card records from big box retailers like Home Depot and Target in the years that followed.

← Previous