Data Breach at Fidelity Investments Affects Over 77,000 Customers Fidelity Investments has reported that a data breach occurring in August has compromised the personal information of approximately 77,099 individuals. While specific details regarding the type of data accessed by the attackers remain undisclosed, the firm has reassured customers that their…
OpenVPN Vulnerabilities Disclosed by Microsoft: A Potential Attack Vector Microsoft recently announced the discovery of four medium-severity security vulnerabilities within the open-source OpenVPN software, which could be exploited in conjunction to enable remote code execution (RCE) and local privilege escalation (LPE). The implications of these flaws are significant, as they…
North Korean Threat Actor Deploys New Golang-Based Backdoor Targeting South Korean Sectors Recent reports indicate that the North Korea-affiliated threat actor known as Andariel has introduced a new backdoor, identified as Dora RAT, into their cyberattack arsenal. This malware has been employed in attacks that primarily target educational institutions, manufacturing…
Internet Archive Faces Major Cyberattack, Exposing 31 Million User Records In a significant cybersecurity incident, the Internet Archive has fallen victim to a large-scale cyberattack resulting in a data breach that has compromised the personal details of approximately 31 million users. This incident not only threatens the security of user…
Marriott Agrees to $51 Million Settlement Following Data Breaches Marriott International, in conjunction with Starwood Hotels, has agreed to a significant settlement of $51 million as a consequence of their inadequate protection of user data during a series of substantial data breaches. The financial penalty is set to benefit approximately…
Marriott International has taken significant steps to enhance its information security protocols in light of a series of data breaches that collectively impacted approximately 344 million individuals globally between 2014 and 2020. The Federal Trade Commission (FTC) announced the proposed settlement on Wednesday, which includes commitments from Marriott to improve…
Microsoft Reports Unpatched Zero-Day Vulnerability in Office Suite Microsoft has recently revealed a serious unpatched vulnerability in its Office suite, identified as CVE-2024-38200. This zero-day flaw presents the risk of unauthorized exposure of sensitive information to malicious entities if successfully exploited. The vulnerability, which has a CVSS score of 7.5,…
Cloud computing and analytics company Snowflake has reported that a select group of its clients is under targeted attack. In a recent joint statement, Snowflake, alongside cybersecurity firms CrowdStrike and Mandiant, clarified that there is no evidence linking this activity to a vulnerability, misconfiguration, or breach within their platform. Additionally,…
On October 5, 2024, Casio, the renowned Japanese electronics manufacturer, suffered a significant cyberattack that caused widespread system disruptions and has raised alarms regarding a possible data breach. The company is currently collaborating with cybersecurity experts to investigate the situation. The October 5 incident marks yet another troubling moment for…
