The Breach News

Palo Alto Networks, Zscaler, and PagerDuty Affected by Salesforce Linked Data Breaches

Hackers leveraged vulnerabilities in the Salesloft Drift application to acquire OAuth tokens, resulting in unauthorized access to Salesforce data and exposing sensitive customer information at several major technology companies. A significant cyber intrusion has involved a group known as UNC6395, which has reportedly compromised sensitive customer data across various organizations,…

Read MorePalo Alto Networks, Zscaler, and PagerDuty Affected by Salesforce Linked Data Breaches

The Impact of SSL Misconfigurations on Your Attack Surface

In the process of evaluating an organization’s external attack surface, issues tied to encryption, specifically SSL misconfigurations, attract significant scrutiny. The reasons for this focus are manifold: their prevalence, intricate configuration processes, and the ease with which they can be exploited by attackers make these vulnerabilities a pressing concern for…

Read MoreThe Impact of SSL Misconfigurations on Your Attack Surface

Absolute Dental Reports Data Breach Impacting Over 1.2 Million People – The HIPAA Journal

Data Breach at Absolute Dental Affects Over 1.2 Million Individuals In a significant data breach, Absolute Dental has confirmed that the personal information of more than 1.2 million individuals has been compromised. This incident underscores the persistent vulnerabilities present in the healthcare sector, where patient data is a prime target…

Read MoreAbsolute Dental Reports Data Breach Impacting Over 1.2 Million People – The HIPAA Journal

New Hacking Group ‘Clasiopa’ Targets Materials Research Organizations Across Asia

Recent investigations by Symantec, a branch of Broadcom Software, have unveiled a distinct cyber threat targeting materials research organizations across Asia. This emerging actor, designated as Clasiopa, employs a unique toolkit, the origins of which remain largely unspecified but suggest possible affiliations with India. Evidence hinting at this connection includes…

Read MoreNew Hacking Group ‘Clasiopa’ Targets Materials Research Organizations Across Asia

🔍 Weekly Overview: Nation-State Cyber Attacks, Spyware Warnings, Deepfake Malware Threats, and Supply Chain Vulnerabilities

This week, cybersecurity experts reported a notable uptick in stealthy tactics employed by malicious actors, indicating that the real challenge may lie in identifying the threats that have already infiltrated systems rather than defending against external breaches. Attack methodologies increasingly leverage AI to manipulate public opinion, while malware masquerades within…

Read More🔍 Weekly Overview: Nation-State Cyber Attacks, Spyware Warnings, Deepfake Malware Threats, and Supply Chain Vulnerabilities

PlugX Trojan Masquerading as Genuine Windows Debugger Tool in Recent Attacks

Recently, the PlugX remote access Trojan has been identified disguising itself as the legitimate open-source Windows debugging tool x64dbg. This tactic aims to bypass cybersecurity defenses and enable unauthorized control over target systems. According to a report by Trend Micro researchers Buddy Tancio, Jed Valderama, and Catherine Loveria, x64dbg is…

Read MorePlugX Trojan Masquerading as Genuine Windows Debugger Tool in Recent Attacks