#data-leak

[ follow ]
#ransomware #cybersecurity #afghanistan #uk-government #security #dark-web #government-accountability
fromThe Hacker News
2 days ago

Years of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keys

Cybersecurity company watchTowr Labs said it captured a dataset of over 80,000 files on these sites, uncovering thousands of usernames, passwords, repository authentication keys, Active Directory credentials, database credentials, FTP credentials, cloud environment keys, LDAP configuration information, helpdesk API keys, meeting room API keys, SSH session recordings, and all kinds of personal information. This includes five years of historical JSONFormatter content and one year of historical CodeBeautify content, totalling over 5GB worth of enriched, annotated JSON data.
Information security
Information security
fromTheregister
1 week ago

3.5B WhatsApp users' info scooped through enumeration flaw

A WhatsApp enumeration flaw exposed personal data of over 3.5 billion accounts, enabling mass harvesting of names, numbers, profile images, and profile text.
Privacy professionals
fromBusiness Insider
3 weeks ago

Klarna feared it nearly exposed 288,000 customer logins in a data leak, internal messages show

A Klarna login glitch involving recycled phone numbers briefly exposed other customers' account details but affected far fewer accounts and has been fixed.
US politics
fromLGBTQ Nation
3 weeks ago

"Family values" MAGA Republican linked to adult website for extramarital affairs - LGBTQ Nation

Michigan State Rep. Bryan Posthumus was allegedly linked to Ashley Madison, Fling.com, and AdultFriendFinder accounts while married.
#ransomware
fromTechzine Global
6 months ago
Cryptocurrency

Leaked LockBit chats reveal how professional ransomware group operates

LockBit utilizes a structured, businesslike approach in ransom negotiations, emphasizing customer service and strategic pricing.
The ransomware group operates primarily through the Ransomware-as-a-Service model, empowering partners in their attacks.
fromIT Pro
6 months ago
Cryptocurrency

LockBit ransomware group falls victim to hackers itself

LockBit ransomware group has been defaced, marking its unusual transformation from perpetrator to victim in the cybercrime landscape.
Cryptocurrency
fromTechzine Global
6 months ago

Leaked LockBit chats reveal how professional ransomware group operates

LockBit utilizes a structured, businesslike approach in ransom negotiations, emphasizing customer service and strategic pricing.
The ransomware group operates primarily through the Ransomware-as-a-Service model, empowering partners in their attacks.
Cryptocurrency
fromIT Pro
6 months ago

LockBit ransomware group falls victim to hackers itself

LockBit ransomware group has been defaced, marking its unusual transformation from perpetrator to victim in the cybercrime landscape.
more#ransomware
fromDataBreaches.Net
1 month ago

Watsonville Community Hospital had a data breach - or two. It would be helpful to know which. - DataBreaches.Net

On December 8, 2024, DataBreaches reported that Watsonville Community Hospital in California was continuing to respond to what they referred to as a cyberattack on November 29. No gang had claimed responsibility at that point, patients hadn't been notified yet, and the hospital wasn't stating whether the attack involved encryption of any files. Weeks later, and in a substitute notice posted on December 31, 2024, they noted that patients' name, date of birth, Social Security number, passport number, and diagnosis information may have been present in files that had been accessed in a "recent data security event" that was still under investigation. The hospital did not confirm or deny whether this was a ransomware attack.
UK politics
fromwww.theguardian.com
1 month ago

Boris Johnson breached rules designed to stop abuse of contacts made in public office, watchdog finds

Boris Johnson breached rules preventing former ministers from exploiting official contacts and access for private gain, according to the government ethics watchdog.
Information security
fromDataBreaches.Net
1 month ago

When it rains, it pours? Kido had a second incident to address - DataBreaches.Net

Separate Kido cloud exposure exposed over 600 resumes/CVs of employees and applicants, including many for Amelio school, potentially accessible via a publicly listed bucket.
Information security
fromThe Hacker News
2 months ago

Two Critical Flaws Uncovered in Wondershare RepairIt Exposing User Data and AI Models

Two critical authentication-bypass vulnerabilities in Wondershare RepairIt exposed unencrypted user data and cloud resources, enabling AI model tampering, supply-chain attacks, and remote code execution.
Privacy professionals
fromWIRED
2 months ago

A DHS Data Hub Exposed Sensitive Intel to Thousands of Unauthorized Users

A DHS intelligence-sharing platform was misconfigured in 2023, exposing sensitive but unclassified intelligence to thousands of unauthorized users, including foreign nationals and contractors.
fromDataBreaches.Net
2 months ago

China's Great Firewall suffers its biggest leak ever as 500GB of source code and docs spill online - censorship tool has been sold to three different countries - DataBreaches.Net

Chinese censorship sprang a major leak on September 11, when researchers confirmed that more than 500GB of internal documents, source code, work logs, and internal communications from the so-called Great Firewall were dumped online, including packaging repos and operational runbooks used to build and maintain China's national traffic filtering system. The files appear to originate from Geedge Networks, a company that has long been linked to Fang Binxing - widely described as the "father" of the Great Firewall -
Information security
fromTechCrunch
3 months ago

A new security flaw in TheTruthSpy phone spyware is putting victims at risk | TechCrunch

Independent security researcher Swarang Wade found the vulnerability, which allows anyone to reset the password of any user of the stalkerware app TheTruthSpy and its many companion Android spyware apps, leading to the hijacking of any account on the platform. Given the nature of TheTruthSpy, it's likely that many of its customers are operating it without the consent of their targets, who are unaware that their phone data is being siphoned off to somebody else.
Information security
Artificial intelligence
fromFuturism
3 months ago

A Huge Number of Grok AI Chats Just Leaked, and Their Contents Are So Disturbing That We're Sweating Profusely

Over 370,000 Grok chatbot conversations were exposed online, revealing dangerous instructions and extremist outputs, violating xAI policies.
UK news
fromwww.independent.co.uk
3 months ago

Ministers spent 2.4m fighting to keep huge Afghan data breach a secret

Ministers spent £2.4m fighting to keep a Ministry of Defence data leak secret that endangered thousands of Afghans.
Privacy professionals
fromHackernoon
11 months ago

WALocker Ransomware: Myanmar's Civil Service Board Hacked and the data of 200,000 Officials Exposed | HackerNoon

WALocker ransomware group leaked sensitive data of 200,000 government officials, impacting Myanmar's political landscape.
UK news
fromwww.theguardian.com
4 months ago

Spies and SAS personnel among 100-plus Britons included in Afghan data leak

A significant data leak occurred involving personal details of spies, soldiers, and Afghan applicants for relocation due to a departmental error.
#afghanistan
more#afghanistan
UK politics
fromwww.theguardian.com
4 months ago

John Healey and MPs bask in nauseating non-mea culpas over secret Afghan relocation scheme | John Crace

Government negligence endangered thousands of Afghans and culminated in a significant data leak amid a cover-up.
Mobile UX
fromArs Technica
4 months ago

Provider of covert surveillance app spills passwords for 62,000 users

A significant security breach exposed sensitive data of 62,000 users due to vulnerabilities in the Catwatchful app.
#cybersecurity
Information security
fromTheregister
5 months ago

Ransomware scum leak patient data after disrupting services

Kettering Health's personal data potentially leaked due to a ransomware attack, affecting numerous patients and complicating their care.
more#cybersecurity
Privacy professionals
fromIT Pro
5 months ago

'I take pleasure in thinking I can rid society of at least some of them': A cyber vigilante is dumping information on notorious ransomware criminals - and security experts say police will be keeping close tabs

Anonymous leaker GangExposed reveals identities of key ransomware figures, aiming to disrupt their criminal operations.
Privacy professionals
fromIT Pro
5 months ago

A flaw in OneDrive's File Picker feature could give access to hundreds of apps

A security flaw in OneDrive's File Picker exposes user content to third-party apps, risking data leakage.
fromEngadget
7 months ago

Nintendo is going after the person behind last year's massive Pokemon leak

Nintendo has filed a court request to compel Discord to reveal the identity of a leaker who shared confidential Pokémon materials in a notorious data breach.
Privacy professionals
US news
fromDatabreaches
7 months ago

Hacking group Anonymous targets Russia, releases Trump files

Anonymous claimed responsibility for a cyberattack on Russian networks, releasing 10 terabytes of sensitive data.
[ Load more ]