The Breach News

Gemini AI Vulnerability: 0-Click Flaw Exposes User Data – Hackread – Cybersecurity News & Insights on Data Breaches, Tech, AI, Crypto, and More

Recently, cybersecurity firm Noma Security unveiled a critical security vulnerability, termed “GeminiJack,” located within Google’s Gemini Enterprise platform and the Vertex AI Search tool. This flaw could potentially facilitate unauthorized access to sensitive corporate data without any interaction from the targeted employee, leaving minimal traces for detection. The investigation by…

Read MoreGemini AI Vulnerability: 0-Click Flaw Exposes User Data – Hackread – Cybersecurity News & Insights on Data Breaches, Tech, AI, Crypto, and More

Urgent: Ivanti Reveals Two New Zero-Day Vulnerabilities, One Currently Exploited

Ivanti has issued a warning regarding two significant vulnerabilities impacting its Connect Secure and Policy Secure products. One of these vulnerabilities has reportedly been subjected to targeted exploitation in the wild, elevating concerns among users and security professionals alike. Detailed information about these vulnerabilities can be found via Ivanti’s official…

Read MoreUrgent: Ivanti Reveals Two New Zero-Day Vulnerabilities, One Currently Exploited

Cybercriminals Target Firms Connected to COVID-19 Vaccine Distribution

A sophisticated global phishing operation has been underway since September 2020, targeting entities involved in the distribution of COVID-19 vaccines. According to IBM Security X-Force researchers, these attacks, believed to be orchestrated by a nation-state actor, focus on the vaccine cold chain—the critical supply line managing the storage and transport…

Read MoreCybercriminals Target Firms Connected to COVID-19 Vaccine Distribution

Town of Salem Data Breach Reveals 7.6 Million Gamer Accounts Exposed

Data Breach Exposes 7.6 Million Accounts in ‘Town of Salem’ Incident A significant data breach has struck the popular online role-playing game ‘Town of Salem,’ affecting more than 7.6 million player accounts. This alarming revelation was confirmed by the game’s developer, BlankMediaGames (BMG), on their official forum. The incident underscores…

Read MoreTown of Salem Data Breach Reveals 7.6 Million Gamer Accounts Exposed

Vitas Hospice Data Breach Affects Over 300,000 Individuals – SecurityWeek

Data Breach at Vitas Hospice Affects Over 300,000 Individuals In a significant cybersecurity incident, Vitas Hospice has reported a data breach impacting more than 300,000 individuals. This breach highlights the vulnerabilities inherent in healthcare organizations and the critical need for robust cybersecurity measures. The breach, which was made public through…

Read MoreVitas Hospice Data Breach Affects Over 300,000 Individuals – SecurityWeek

CISA Alerts on Ongoing Exploitation of Apple iOS and macOS Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has announced the identification of a significant security flaw targeting the iOS, iPadOS, macOS, tvOS, and watchOS platforms. This vulnerability has been added to CISA’s Known Exploited Vulnerabilities (KEV) catalog, suggesting ongoing exploitation in the wild. Labeled as CVE-2022-48618 with a high…

Read MoreCISA Alerts on Ongoing Exploitation of Apple iOS and macOS Vulnerability

Mount Locker Ransomware Introduces Double Extortion Scheme for Fellow Hackers

MountLocker Ransomware Expands Its Reach and Tactics A newly evolved ransomware strain, known as MountLocker, has emerged as a potent threat to corporate networks, demonstrating an alarming ability to evade security software while enabling its affiliates to execute double extortion schemes. First identified in July 2020, MountLocker has rapidly gained…

Read MoreMount Locker Ransomware Introduces Double Extortion Scheme for Fellow Hackers