Over the last decade, the English-speaking cybercriminal landscape, known as “The COM,” has grown from a niche group dedicated to trading rare social media usernames into a complex, service-driven underground economy orchestrating a wide array of global cyberattacks. Foundational communities like Dark0de and RaidForums have played a critical role in…
Hyundai AutoEver America, LLC (HAEA), a key IT services provider for the Hyundai Motor Group, has confirmed a data breach that occurred in early 2025, potentially affecting personal information related to approximately 2.7 million vehicles and their owners. In response, the company is offering two years of complimentary credit monitoring…
Recent developments in the realm of artificial intelligence have brought to light a serious vulnerability affecting encrypted communications. Dubbed ‘Whisper Leak,’ this sophisticated side-channel attack, disclosed by Microsoft researchers, has the potential to glean sensitive information from encrypted traffic directed at large language models (LLMs). As outlined in a recent…
Uber Technologies Inc. has recently acknowledged a security breach affecting its internal computer systems, first reported late Thursday. The company stated that there is currently “no evidence” suggesting that sensitive user data, such as trip history, has been accessed during the incident. In a public statement, Uber clarified, “We have…
A significant data leak has come to light, compromising over 183 million email passwords, including tens of millions connected to Gmail accounts. Cybersecurity experts are characterizing this incident as one of the most substantial credential dumps ever discovered. This vast dataset, amounting to 3.5 terabytes of sensitive information, emerged online…
GoTo, Formerly LogMeIn, Reports Data Breach Affecting User Data GoTo, the parent company of LastPass and formerly known as LogMeIn, disclosed on Tuesday a significant data breach involving the theft of encrypted backups of customer information. This incident, which occurred in November 2022, involved unauthorized actors accessing data from a…
Coinbase, a prominent cryptocurrency exchange based in the United States, recently disclosed a cybersecurity incident that compromised the personal information of some of its employees. On February 5, 2023, the company reported that its robust cyber controls successfully thwarted the attacker from gaining direct access to its systems, effectively preventing…
Recent analyses indicate a troubling rise in cyber intrusions, fueled by the proliferation of criminal tools and insufficient defenses. A recent episode of The Indicator from Planet Money delves into how data breaches are accelerating, the decreasing costs of entry for attackers, and the implications this holds for patients, consumers,…
A substantial dataset comprising over 183 million stolen usernames and passwords has been integrated into the online resource Have I Been Pwned (HIBP). Dubbed the “Synthient Stealer Log Threat Data,” this significant compilation is not merely a leak from a single entity; rather, it constitutes a vast array of information…
