Czechia and Germany have disclosed that they fell victim to an extensive cyber espionage campaign orchestrated by the Russian-affiliated state-sponsored group known as APT28, which has drawn sharp rebukes from several Western entities, including the European Union (E.U.), NATO, the United Kingdom, and the United States. According to a statement…
Three prominent American banks have recently reported serious data breaches, compromising sensitive personal and account information for hundreds of customers. Citizens Bank, Truist Bank, and First National Bank have confirmed that they have fallen victim to these security incidents and have communicated the details to affected clients and appropriate regulatory…
Data Breach at Star Health Sparks Regulatory and Legal Concerns On October 11, The Exchange sought clarification from Star Health and Allied Insurance Company Limited regarding a troubling news item detailing an alleged data breach. Reports indicate that a senior executive at the company improperly sold the personal data of…
Star Health Faces Major Cybersecurity Challenge Following Data Breach In a significant cybersecurity incident, Star Health, a leading health insurance provider in India valued at approximately $4 billion, has fallen victim to a severe data breach that has resulted in a ransom demand of ₹57 lakh (approximately $68,000). The breach…
Fidelity Investments has reported a significant data breach affecting the personal information of over 77,000 customers. The breach involved unauthorized access to sensitive data, including Social Security numbers and driver’s licenses, although no Fidelity accounts were compromised. The incident is concerning, given that Fidelity is one of the world’s largest…
The cybersecurity landscape is facing significant concern as a recently disclosed zero-day vulnerability in the Apache OFBiz open-source enterprise resource planning (ERP) system poses severe risks to its users. This vulnerability, categorized as CVE-2024-38856, has been assigned a critical CVSS score of 9.8 out of a possible 10. It predominantly…
Google has recently mitigated a significant security vulnerability within the Android kernel, a flaw that is reportedly being actively exploited. The vulnerability, designated as CVE-2024-36971, has serious implications, allowing for remote code execution within the kernel. In its August 2024 Android security bulletin, Google indicated that this vulnerability might be…
Cybersecurity Flaws Discovered in Roundcube Webmail Could Lead to Data Theft Recent analysis by cybersecurity experts has unveiled critical vulnerabilities within the Roundcube webmail software, which could be manipulated by attackers to run malicious JavaScript in a user’s web browser, potentially exposing sensitive information stored in their email accounts. The…
Fidelity Investments Experiences Data Breach Affecting 77,000 Customers In a noteworthy cybersecurity incident, Fidelity Investments has reported a substantial data breach that compromises the personal information of approximately 77,000 customers. The breach occurred on August 17, 2024, and was detected just two days later, on August 19. The investment firm…
