Data Breaches – Page 7 – PossibleThreat Articles

Avast, NordVPN Breaches Tied to Phantom User Accounts

October 21, 2019 0 Comments avast breach, Data Breaches, filehippo, jaya baloo, kenneth white, nordvpn breach, open crypto audit project, secunia personal software inspector, supply chain attack, techcrunch, zack whittaker

Credit to Author: BrianKrebs| Date: Tue, 22 Oct 2019 00:32:57 +0000

Antivirus and security giant Avast and virtual private networking (VPN) software provider NordVPN each today disclosed months-long network intrusions that — while otherwise unrelated — shared a common cause: Forgotten or unknown user accounts that granted remote access to internal systems with little more than a password.

Independent Krebs Security

When Card Shops Play Dirty, Consumers Win

October 16, 2019 0 Comments briansclub, Data Breaches, mrgreen, Ne'er-Do-Well News

Credit to Author: BrianKrebs| Date: Thu, 17 Oct 2019 03:13:42 +0000

Cybercrime forums have been abuzz this week over news that BriansClub — one of the underground’s largest shops for stolen credit and debit cards — had been hacked, and its inventory of 26 million cards leaked to security contacts in the banking industry. Now it appears this brazen heist may have been the result of one of BriansClub’s longtime competitors trying to knock out a rival.

Independent Krebs Security

“BriansClub” Hack Rescues 26M Stolen Cards

October 15, 2019 0 Comments allison nixon, andrei barysevich, briansclub, briansclub hack, Data Breaches, flashpoint, gemini advisory, Ne'er-Do-Well News, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 15 Oct 2019 11:05:09 +0000

“BriansClub,” a popular underground store for buying stolen credit card data that uses Yours Truly’s likeness in its advertising, has itself been hacked. The data stolen from BriansClub encompasses more than 26 million credit and debit card records taken from hacked online and brick-and-mortar retailers over the past four years, including almost eight million records uploaded to the shop in 2019 alone.

Independent Krebs

Secret Service Investigates Breach at U.S. Govt IT Contractor

September 9, 2019 0 Comments Dana Deasy, Data Breaches, Hold Security, Julius Patterson, Miracle Systems LLC, National Institutes of Health, Perceptics, Sandesh Sharda, trickbot, U.S. Citizenship and Immigration Services, U.S. Department of Homeland Security, U.S. Department of Transportation, U.S. Secret Service

Credit to Author: BrianKrebs| Date: Mon, 09 Sep 2019 16:47:56 +0000

The U.S. Secret Service is investigating a breach at a Virginia-based government technology contractor that saw access to several of its systems put up for sale in the cybercrime underground, KrebsOnSecurity has learned. The contractor claims the access being auctioned off was to old test systems that do not have direct connections to its government partner networks. In mid-August, a member of a popular Russian-language cybercrime forum offered to sell access to the internal network of a U.S. government IT contractor that does business with more than 20 federal agencies, including several branches of the military. The seller bragged that he had access to email correspondence and credentials needed to view databases of the client agencies, and set the opening price at six bitcoins (~USD $60,000).

Independent Krebs

Ransomware Bites Dental Data Backup Firm

August 29, 2019 0 Comments Brenna Sadler, Data Breaches, DDS Safe, Digital Dental Record, PerCSoft, ProPublica, Wisconsin Dental Association

Credit to Author: BrianKrebs| Date: Thu, 29 Aug 2019 17:59:11 +0000

PerCSoft, a Wisconsin-based company that manages a remote data backup service relied upon by hundreds of dental offices across the country, is struggling to restore access to client systems after falling victim to a ransomware attack.

Independent Krebs

Cybersecurity Firm Imperva Discloses Breach

August 27, 2019 0 Comments Alissa Knight, Data Breaches, DisruptOPS, Heli Erickson, imperva, Incapsula, Rich Mogull, Web Application Firewall

Credit to Author: BrianKrebs| Date: Tue, 27 Aug 2019 16:52:58 +0000

Imperva, a leading provider of Internet firewall services that help Web sites block malicious cyberattacks, alerted customers on Tuesday that a recent data breach exposed email addresses, scrambled passwords, API keys and SSL certificates for a subset of its firewall users. Redwood Shores, Calif.-based Imperva sells firewall technology designed to detect and block various types of malicious Web traffic, from denial-of-service attacks to digital probes aimed at undermining the security of Web-based software applications.

Independent Krebs

Breach at Hy-Vee Supermarket Chain Tied to Sale of 5M+ Stolen Credit, Debit Cards

August 27, 2019 0 Comments Data Breaches, Hy-Vee breach, Joker's stash

Credit to Author: BrianKrebs| Date: Thu, 22 Aug 2019 21:38:47 +0000

On Tuesday of this week, one of the more popular underground stores peddling credit and debit card data stolen from hacked merchants announced a blockbuster new sale: More than 5.3 million new accounts belonging to cardholders from 35 U.S. states. Multiple sources now tell KrebsOnSecurity that the card data came from compromised gas pumps, coffee shops and restaurants operated by Hy-Vee, an Iowa-based company that operates a chain of more than 245 supermarkets throughout the Midwestern United States.

Independent Krebs

SEC Investigating Data Leak at First American Financial Corp.

August 27, 2019 0 Comments Ben Shoval, Data Breaches, First American Financial Corp., The Coming Storm, U.S. Securities and Exchange Commission

Credit to Author: BrianKrebs| Date: Mon, 12 Aug 2019 20:30:17 +0000

The U.S. Securities and Exchange Commission (SEC) is investigating a security failure on the Web site of real estate title insurance giant First American Financial Corp. that exposed more than 885 million personal and financial records tied to mortgage deals going back to 2003, KrebsOnSecurity has learned.