Cleveland Municipal Court Suspends Operations Following Cybersecurity Breach
The Cleveland Municipal Court and Housing Court have temporarily shut down operations after experiencing a cyber incident that took their systems and website offline. Officials are investigating the situation while essential staff continue working to restore services securely.
Major Data Breach Exposes Black Basta Ransomware Group's Operations and Internal Conflicts
Over 200,000 private messages from the Black Basta ransomware syndicate have been leaked, revealing their sophisticated attack methods and internal discord. The unprecedented data breach provides cybersecurity experts with valuable insights into one of the world's most dangerous cybercriminal organizations.
Hidden Image Tag Malware: New Threat Targets E-commerce Payment Data
Cybercriminals are concealing credit card skimming malware within HTML image tags on e-commerce websites, particularly targeting Magento platforms. This sophisticated technique allows attackers to harvest payment data while evading detection through seemingly innocent code.
Vietnamese Hackers Target Supply Chain with Zero-Day Exploits in VeraCore Software
XE Group, a Vietnamese cybercrime organization, has evolved from credit card theft to sophisticated supply chain attacks by exploiting critical zero-day vulnerabilities in VeraCore. The group deployed advanced web shells to maintain persistent unauthorized access to manufacturing and distribution systems since 2020.
Chinese CDN Exploits AWS and Azure in Massive Cloud Infrastructure Abuse Scheme
Investigation reveals Funnull, a Chinese CDN, is misusing AWS and Azure cloud services to host scam websites through deceptive IP address cycling. The scheme involves over 1,400 rented IPs used for investment scams and fake gambling operations, highlighting growing challenges in cloud security.
US and Dutch Forces Take Down HeartSender: A Major Blow to Pakistani Cybercrime Network
Law enforcement agencies from the US and Netherlands have successfully dismantled HeartSender, a sophisticated Pakistani cybercrime operation that sold malicious cyber tools. The joint operation seized domains and servers, recovering millions of victim records and disrupting criminal activities worth over $3 million.
Major Insurance Data Breach Exposes Over 279,000 ANICO Customer and Employee Records
American National Insurance Company faces a significant security incident as researchers discover sensitive customer and employee data leaked on Breach Forums. The exposure, potentially linked to the MOVEit breach, includes personal identification data, policy information, and employee records affecting over 279,000 individuals.
HPE Data Breach: Hackers Claim Access to Source Code and Customer Information
A notorious hacker known as IntelBroker claims to have breached Hewlett Packard Enterprise systems, allegedly stealing source code and sensitive data over a two-day period. The incident adds to IntelBroker's track record of high-profile attacks in 2024, though HPE has not yet confirmed the breach.
Major Data Breach at Wolf Haldenstein Law Firm Exposes 3.5 Million Americans' Sensitive Data
A significant cybersecurity incident at Wolf Haldenstein law firm has compromised sensitive personal information of 3.5 million individuals, including Social Security numbers and medical data. The breach went undetected for months before discovery in April 2024, raising concerns about identity theft and fraud risks.
Chinese Hackers Breach Treasury Secretary's Computer in Major Security Breach
Chinese state-sponsored hackers infiltrated U.S. Treasury Secretary Janet Yellen's computer and those of two senior deputies, accessing thousands of unclassified files. The breach, discovered in December through a BeyondTrust software vulnerability, targeted information on sanctions and foreign investments.