Fidelity Investments has reported a significant data breach affecting the personal information of over 77,000 customers. The breach involved unauthorized access to sensitive data, including Social Security numbers and driver’s licenses, although no Fidelity accounts were compromised. The incident is concerning, given that Fidelity is one of the world’s largest…
The cybersecurity landscape is facing significant concern as a recently disclosed zero-day vulnerability in the Apache OFBiz open-source enterprise resource planning (ERP) system poses severe risks to its users. This vulnerability, categorized as CVE-2024-38856, has been assigned a critical CVSS score of 9.8 out of a possible 10. It predominantly…
Three U.S. Banks Alert Customers to Data Breaches of Sensitive Information Recent advisories from three major U.S. banks have revealed that sensitive personally identifiable information (PII) of customers has been compromised. Citizens Bank, Truist Bank, and First National Bank have all reported incidents that underscore the ongoing threat posed by…
Google has recently mitigated a significant security vulnerability within the Android kernel, a flaw that is reportedly being actively exploited. The vulnerability, designated as CVE-2024-36971, has serious implications, allowing for remote code execution within the kernel. In its August 2024 Android security bulletin, Google indicated that this vulnerability might be…
Microsoft Addresses 61 Security Vulnerabilities in May Patch Update In its latest Patch Tuesday update for May 2024, Microsoft has resolved 61 newly identified security vulnerabilities across its software products, amongst them two zero-day flaws that have been actively exploited in the wild. These updates follow a proactive security strategy…
Marriott’s $52 Million Data Breach Settlement Highlights Growing Concerns in Cybersecurity In a significant development in the realm of cybersecurity, Marriott International has agreed to a $52 million settlement stemming from a data breach that exposed sensitive information of millions of customers. This settlement underscores a troubling trend as organizations…
Cybersecurity Flaws Discovered in Roundcube Webmail Could Lead to Data Theft Recent analysis by cybersecurity experts has unveiled critical vulnerabilities within the Roundcube webmail software, which could be manipulated by attackers to run malicious JavaScript in a user’s web browser, potentially exposing sensitive information stored in their email accounts. The…
FBI Seizes BreachForums in International Cybercrime Crackdown In a significant move against cybercriminal activities, law enforcement agencies have successfully regained control of the infamous BreachForums platform, known for facilitating the sales of stolen data, marking the second such operation within a year. The domain "breachforums[.]st" has been replaced by a…
Marriott Faces $52 Million Penalty Over Major Data Breaches In a significant development for data security, Marriott International, Incorporated has agreed to a $52 million penalty stemming from a series of security breaches that compromised over 344 million customer accounts globally. This decision marks a crucial response from the Federal…
