Lmst

I'm now a victim of a data breach at The Internet Archive, hope you are not.

#DataBreach #Cybersecurity #Privacy #InternetArchive #InfoSec #DataSecurity #DigitalSafety #CyberAttack #OnlinePrivacy #BreachAlert

🚨#BreachAlert🚨
On July 30th 2024, Ferrari reportedly thwarted a sophisticated cyber-scam involving impersonation of its CEO, Benedetto Vigna, using artificial intelligence (AI). An executive received a series of text messages and a phone call from an unknown number, which convincingly appeared to be from Mr. Vigna. The messages and call, delivered in a southern Italian accent matching the CEO's, referenced a confidential acquisition and...
https://breach-hq.com/breaches/ferrari/2024-jul

🚨#BreachAlert🚨
KnowBe4 experienced a cybersecurity incident involving a recently hired Principal Software Engineer who was later discovered to be a North Korean state actor. This employee attempted to install information-stealing malware on their assigned Mac workstation. The organization's EDR product detected these actions on July 15, 2024, preventing any data breaches.

After extensive background checks and multiple video interviews,...
https://breach-hq.com/breaches/knowbe4/2024-jul

🚨#BreachAlert🚨
In June 2023, Leidos Holdings, a major IT services provider to governments, discovered that internal documents had been leaked by hackers. These documents originated from a breach of the Diligent system, a platform Leidos used for internal investigations. The breach in question actually occurred in 2022 and affected Diligent's subsidiary, Steele Compliance Solutions.

Leidos asserts that this incident did not impact its n...
https://breach-hq.com/breaches/leidos-holdings/2023-june

🚨#BreachAlert🚨
On May 23 and May 29, Michigan Medicine, the academic medical center of the University of Michigan, experienced a data breach resulting from unauthorized access to employee email accounts by threat actors.

After discovering the breach, Michigan Medicine promptly disabled the compromised accounts. Although no direct evidence was found to suggest that the attackers specifically targeted patient health information, the poss...
https://breach-hq.com/breaches/michigan-medicine/2024-jul

🚨#BreachAlert🚨
On July 23, 2024, the decentralized finance (DeFi) crypto exchange dYdX disclosed that its v3 trading platform's website had been compromised through a DNS hijacking attack. Users were advised to avoid visiting the compromised dydx.exchange site and to refrain from making any transactions until the issue was resolved.

Attackers had hijacked the domain to deploy a phishing website, which prompted users to approve transactions that enabled the theft of their valuable tokens. The incident was attributed to a wave of DNS hijacking attacks targeting DeFi platforms, specifically those domains recently transferred to Squarespace from Google Domains, during which Multi-Factor Authentication (MFA) had been disabled.

Despite the DNS compromise, dYdX confirmed that the smart contracts on v3 remained secure and that no user funds were affected. The compromised domain issue has been resolved, but due to caching, some users might still encounter issues. Users are advised to restart their browsers and clear their cache before accessing the site to ensure the most recent, secure DNS resolution.

https://breach-hq.com/breaches/dydx/2024-jul

🚨#BreachAlert🚨
On [date of the incident], French publisher Red Art Games experienced a cyberattack, leading to the exposure of sensitive customer information. The compromised data included first and last names, birthdates, email addresses, shipping addresses, order details, and phone numbers. The company temporarily shut down its website to protect customers during this period.

While no financial details were leaked, Red Art Games recommended that customers ch...
https://breach-hq.com/breaches/red-art-games/2024-jul

🚨#BreachAlert🚨
Arup, a British engineering group, experienced a significant financial fraud incident when cybercriminals used AI-generated deepfakes to impersonate the company's CFO and other employees. On May 17, 2024, it was reported that scammers contacted a staff member, posing as the CFO and requesting a series of confidential transactions. Following a video call with the deepfaked identities, the employee executed multiple transfers totaling approximately...
https://breach-hq.com/breaches/arup/2024-may

🚨#BreachAlert🚨
The Superior Court of Los Angeles County experienced a ransomware attack early Friday. Upon discovering the breach, the court's officials promptly disabled the computer network systems to prevent further damage. These systems are expected to remain offline through the weekend as part of a containment and recovery strategy.

A preliminary investigation indicates that there is no evidence of user data compromise associated with this attack. Additio...
https://breach-hq.com/breaches/superior-court-of-los-angeles-county/2024-jul

🚨 #BreachAlert 🚨 10/10 Severity Score

On July 18, 2024, Indian cryptocurrency exchange WazirX experienced a significant security breach involving its Safe Multisig wallet on the Ethereum blockchain. The incident was first detected by Web3 security firm Cyvers Alerts, which identified multiple suspicious transactions and reported that approximately $234.9 million worth of funds had been moved to a new address. These transactions were funded through...

https://buff.ly/4cMO65F