Data Breach - Securezoo

Okta investigating reports of data breach by Lapsus$ ransomware cybercriminal group (updated)

Authentication, Data Breach, Data Privacy, Identity & Access Management / By Frank Crast / March 22, 2022 March 23, 2022

Identity and authentication services firm Okta is investigating reports that the firm has been breached by the Lapsus$ ransomware cybercriminal group.

Panasonic confirms breach of file server

Cybersecurity Attacks, Data Breach, Data Privacy / By Frank Crast / December 1, 2021 December 1, 2021

Panasonic confirms breach of a file server by an unauthorized third party.

Morgan Stanley confirms breach of customer SSNs via an exploit of vendor’s Accellion FTA vulnerability

Cybersecurity Attacks, Data Breach, Vulnerabilities & Exploits / By Frank Crast / July 10, 2021 July 10, 2021

Morgan Stanley has confirmed a data breach of some customer SSNs and other personal data via one if its vendor’s vulnerable Accellion FTA systems.

Threat actors breach South Korean atomic research institute via VPN vulnerability

Cybersecurity Attacks, Data Breach, Network Security, Vulnerabilities & Exploits / By Frank Crast / June 22, 2021 June 22, 2021

Threat actors from suspected North Korea APT group Kimsuky breached a South Korean atomic research institute via a VPN vulnerability.

Alibaba leaks billions of data points via Chinese web crawler

Cybersecurity Attacks, Data Breach, Data Privacy / By Frank Crast / June 17, 2021 June 17, 2021

Alibaba’s Chinese online shopping platform Taobao has suffered a data breach of over a billion data points that include usernames and mobile phone numbers.

Personal data on 533 million Facebook users posted online

Cybersecurity Attacks, Data Breach, Data Privacy / By Frank Crast / April 5, 2021 April 5, 2021

A hacker has leaked personal data on an estimated 533 million Facebook users, to include phone numbers and Facebook account details. The data was leaked on a publicly accessible hacking forum.

Energy giant Shell latest victim in Accellion FTA cyberattacks

Cybersecurity Attacks, Data Breach, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / March 24, 2021 March 24, 2021

Energy giant Shell was the latest victim in a series of cyberattacks on customers of Accellion’s legacy File Transfer Appliance (FTA) product used to transfer large files.

Microsoft open sources CodeQL queries to scan for Solarwinds-like Solorigate activity

Application Security, Cybersecurity Attacks, Data Breach / By Frank Crast / February 26, 2021 February 26, 2021

Microsoft has open sourced CodeQL queries used to scan for Solorigate malware activity that matches the SolarWinds supply-chain attack.

T-Mobile security incident exposed customer phone numbers and call records

Data Breach, Data Privacy / By Frank Crast / January 2, 2021 January 2, 2021

T-Mobile has disclosed a security incident that customer phone numbers and certain account information were breached.

DHS issues new emergency guidance on SolarWinds Orion Code compromise

Cybersecurity Articles, Cybersecurity Attacks, Data Breach, Security Updates & Patches, Third-Party Security / By Frank Crast / December 30, 2020 December 30, 2020

The Department of Homeland Security (DHS) has issued new emergency guidance on the SolarWinds Orion Code compromise and supply chain vulnerability.