Data Breach
-
Samsung Germany has suffered a serious data breach, with threat actors leaking 270,000 customer support tickets on hacking forums. The breach, traced back to compromised employee credentials from 2021, exposes customer names, email addresses, home addresses, order details, payment information, and tracking data—putting affected users at high risk of scams and fraud.
-
A dangerous China-linked hacking group, Earth Alux, has been conducting cyber espionage attacks on major industries across Asia-Pacific and Latin America. Using advanced malware called VARGEIT, these hackers infiltrate organizations to steal sensitive data and disrupt operations.
-
Indian tech giant Tata Technologies, a key player in automotive and aerospace engineering, has allegedly fallen victim to a massive ransomware attack. The Hunters International ransomware group claims to have stolen 1.4 TB of sensitive data, potentially impacting major clients like Ford, McLaren, Honda, and Airbus.
-
Angel One, a leading financial services platform, has confirmed a data breach impacting 8 million users after hackers gained unauthorized access to its Amazon Web Services (AWS) resources. The breach was discovered when dark web monitoring alerts signaled potential data leakage. While the company acted quickly to secure its systems, concerns remain about how the breach occurred and its long-term implications.
-
Raymond Limited, a well-known textile and clothing company, has confirmed a cyber attack on its IT systems. The breach impacted some internal infrastructure, but the company's retail stores, supply chain, and digital services continue to operate normally. The attack was detected during routine security monitoring, and immediate action was taken to isolate affected systems.
-
A major security flaw in the Indian Post Office portal exposed thousands of KYC records, including Aadhaar numbers, PAN details, and personal data. The vulnerability, known as an IDOR attack, allowed unauthorized users to access sensitive data simply by altering numbers in the website’s URL. This incident highlights the urgent need for stronger cybersecurity in government platforms.
-
The BASHE ransomware group claims to have hacked ICICI Bank, threatening to release sensitive customer data if their demands are not met. This incident raises serious concerns for the banking industry and its cybersecurity measures.
-
Wolf Haldenstein Adler Freeman & Herz LLP has confirmed a data breach that affected nearly 3.5 million individuals. The breach occurred on December 13, 2023, but the investigation and notifications have been delayed. Sensitive personal data like Social Security numbers and medical information have been exposed, increasing the risk of scams and fraud.
-
OneBlood, a major blood-donation organization in the U.S., experienced a ransomware attack in July 2024. The breach exposed sensitive data, including names and Social Security numbers, affecting donors.
-
BayMark Health Services, a leading provider of addiction treatment in North America, faced a data breach where attackers stole personal and health information of patients. The breach, attributed to the RansomHub ransomware gang, affected systems between September 24 and October 14, 2024.