The Breach News

Massive Data Breach Exposes 644,869 Records of American Citizens, Including Names, Addresses, Emails, Employment Information, Social Media Profiles, Phone Numbers, and Criminal Histories: Report

A recent discovery by a security researcher has unveiled a substantial unprotected database online, containing nearly 645,000 files that hold highly sensitive information about American citizens. Jeremiah Fowler, known for his expertise in cybersecurity, identified this non-password-protected database hosted on a cloud platform. The records in question belong to SL…

Read MoreMassive Data Breach Exposes 644,869 Records of American Citizens, Including Names, Addresses, Emails, Employment Information, Social Media Profiles, Phone Numbers, and Criminal Histories: Report

Zello Advises Users to Change Passwords After Possible Data Breach

Zello, a push-to-talk communications platform that allows real-time voice messaging akin to a walkie-talkie, has issued a critical security notice urging its users to change their passwords without specifying the underlying reason for the alert. This announcement, which particularly targets accounts created prior to November 2, 2024, suggests the potential…

Read MoreZello Advises Users to Change Passwords After Possible Data Breach

The CISO’s Blueprint for Building a Robust Security Culture: A Webinar

CISO’s Challenge: Navigating the Complex Cybersecurity Landscape In today’s dynamic cybersecurity landscape, Chief Information Security Officers (CISOs) confront an array of challenges, from the rapid evolution of technology trends to increasing regulatory demands. These complexities leave security leaders questioning how to effectively safeguard their organizations while also establishing credibility with…

Read MoreThe CISO’s Blueprint for Building a Robust Security Culture: A Webinar

Russia Detains Cybercriminal Wazawaka Linked to Ransomware Gangs – DataBreaches.net

In a significant development in the fight against cybercrime, Russian authorities have apprehended a notorious figure known as Wazawaka, believed to have deep connections with ransomware syndicates. This operation underscores ongoing efforts by law enforcement to dismantle the infrastructures supporting cybercriminal activities. The arrest illustrates a proactive approach taken by…

Read MoreRussia Detains Cybercriminal Wazawaka Linked to Ransomware Gangs – DataBreaches.net

Linux Faces Its First-Ever UEFI Bootkit Attack

Endpoint Security Bootkitty: Researchers Identify Linux’s First Bootkit, Primarily Conceptual Rather Than Malicious Prajeet Nair (@prajeetspeaks) • November 28, 2024 Bootkitty discovered in the wild is recognized as the first bootkit targeting Linux. (Image: Shutterstock) Cybersecurity experts have unearthed the first bootkit specifically engineered to compromise Linux systems by manipulating…

Read MoreLinux Faces Its First-Ever UEFI Bootkit Attack

Polish Medical Company Fined €330,000 Following Hacking Incident – DataBreaches.net

In a recent cybersecurity breach, a Polish medical company has faced a significant administrative penalty of €330,000 following a hacking incident. This incident highlights the growing vulnerabilities within the healthcare sector, which has increasingly become a target for cybercriminals seeking to exploit sensitive data and disrupt operations, particularly in light…

Read MorePolish Medical Company Fined €330,000 Following Hacking Incident – DataBreaches.net

Online Code Exploits LogoFAIL to Install Bootkitty Linux Backdoor

A recent vulnerability has been identified that targets Secure Boot protocols in certain Linux machines using UEFI firmware developed by Insyde. This exploit, known as LogoFAIL, allows attackers to bypass Secure Boot—an essential security feature designed to ensure that only trusted firmware and software are executed during the boot process.…

Read MoreOnline Code Exploits LogoFAIL to Install Bootkitty Linux Backdoor

EU Nations Failing to Meet NIS2 Deadline Given Warning

Critical Infrastructure Security, Government, Industry Specific European Commission Initiates Legal Proceedings Against 23 EU Nations Akshaya Asokan ( asokan_akshaya) • November 29, 2024 Image: Shutterstock The European Commission has launched infringement procedures against over 20 member states due to their failure to enact two pivotal cyber regulations aimed at enhancing…

Read MoreEU Nations Failing to Meet NIS2 Deadline Given Warning