A misconfigured, non-password-protected database belonging to TicketToCash has exposed sensitive information from over 520,000 customers, including personally identifiable information (PII) and partial financial data. Recently, cybersecurity researcher Jeremiah Fowler discovered a misconfigured database totaling 200GB that was publicly accessible, revealing…
Verizon has reported a troubling increase in retail cyberattacks, highlighting significant vulnerabilities in the sector. The tech giant’s findings suggest that malicious actors are increasingly targeting retail organizations, exploiting weaknesses in their cyber defenses. With the retail sector being a…
France has accused the Russian hacking group APT28, known as Fancy Bear, of executing a cyber espionage campaign targeting French government entities. This report highlights the group’s ties to Russia’s military intelligence agency, the GRU, and outlines their techniques and…
The realm of cybersecurity has traditionally rested on the foundations of cryptography, which safeguards sensitive information across various platforms—from banking applications to encrypted communications in healthcare and military settings. Current cryptographic measures are deemed effective due to the immense time…
Endpoint Security, Events, Government Panel Examines AI Innovations, Geopolitical Challenges, and Cybersecurity Leadership Anna Delaney (annamadeline) • April 30, 2025 ISMG editors Tom Field, Michael Novinson, Anna Delaney, Rahul Neel Mani, and Mathew Schwartz At the RSAC Conference 2025 in…
SK Telecom Under Scrutiny Amid Billions in Data Breach Costs by U.S. Telecoms Recent revelations indicate that SK Telecom is facing significant scrutiny following a wave of high-profile data breaches that have resulted in U.S. telecom companies incurring billions in…
Remote Desktop Protocol Vulnerability Exposes Persistent Access Risks Recent findings highlight a significant vulnerability within Windows Remote Desktop Protocol (RDP) that allows users to log in even with revoked passwords. This issue becomes particularly concerning when a Windows machine uses…
Recently, Marks & Spencer (M&S), the prominent UK retailer, fell victim to a significant cyber assault that has left its operations severely compromised. The attack is believed to be orchestrated by the organized crime syndicate known as DragonForce, which utilized…
Fraud Management & Cybercrime, Ransomware HIPAA Protected Health Information Compromised in November 2023 Cyberattack Marianne Kolbasuk McGee (HealthInfoSec) • April 30, 2025 Image: City of Long Beach, California The City of Long Beach, California, is in the process of notifying…
BreachForums Resurfaces Amid Uncertainty Following DDoS Attack In a surprising turn of events, the notorious hacking forum BreachForums has reemerged after a brief disappearance earlier this month. Security analysts suggest that this vanishing act may have been a result of…
