SC Magazine
BreachForums seized by FBI for 2nd time
The infamous data leak site’s domain and Telegram account were seized Wednesday morning.
The Hacker News
The 2024 Browser Security Report Uncovers How Every Web Session Could be a Security Minefield
Are your browser extensions safe? 33% in most orgs aren't! Learn to protect your data with insights from the 2024 Browser Security Report.
SC Magazine
AT&T confirms theft of 73M records, 7.6M current customers affected
The company reset passcodes and acknowledged the years-old leak for the first time Saturday.
.webp)
Cyber Security News
Pokémon Resets Users Password Following Hacking Attempts
The Pokémon Company has taken decisive action to safeguard its users by resetting passwords after detecting unauthorized hacking attempts.
CyberNews
Stark French regulator warning may spell trouble to 23andMe
French data protection agency CNIL is now reminding citizens that it’s illegal to purchase genetic tests for “recreational” uses.
HACKRead
American Express Cardholders Impacted by Third-Party Vendor Data Breach
American Express notified card members of a data breach impacting customer information, emphasizing that its systems were not compromised.
HACKRead
Data Breach Affects 66,000 in SIM-Swapping Attacks on US Insurance Giants
The breaches, originating from SIM-swapping attacks, occurred in Nov 2023 and have since sparked widespread concerns about data security.
DataBreaches
23andMe’s data hack went unnoticed for months
23andMe may try to blame the victims for their massive data breach, but how are they going to blame anyone for it taking them five months to detect the...
CyberNews
23andMe confirms attackers stole raw genotype data
23andMe credential stuffing attack exposed users' raw genotype data.
SC Magazine
23andMe: Raw genetic data stolen in months-long cyberattack
New 23andMe data breach notices say the attack affecting 6.9 million customers started in April.
Bleeping Computer
23andMe data breach: Hackers stole raw genotype data, health reports
Genetic testing provider 23andMe confirmed that hackers stole health reports and raw genotype data of customers affected by a credential stuffing attack that went unnoticed for five months, from April 29 to September 27.
HACKRead
Jason's Deli Data Breach Exposes 344,000 Users in Credential Stuffing Attack
The data breach occurred a few days before Christmas on December 21, 2023, but the details have only been revealed now.
SecurityWeek
In Other News: WhatsApp Privacy Issue, Spying via Ambient Light Sensor, Bigpanzi Botnet
WhatsApp privacy issue remains unpatched, spying via tablet ambient light sensors, and the Bigpanzi botnet.
SecurityWeek
In Other News: WEF's Unsurprising Cybersecurity Findings, KyberSlash Cryptography Flaw
WEF releases a cybersecurity report with unsurprising findings, and KyberSlash cryptography vulnerabilities.
DarkReading
23andMe: "Negligent" Users at Fault for Breach of 6.9M Records
When it comes to bad passwords, how much responsibility should a service provider share with its customers?
DataBreaches
23andMe Says Breach Victims Are to Blame, Legal Action is Futile
As incident response and public relations go, blaming victims for your breach is generally not an impressive strategy. Michael Edgar reports that 23andMe...
SecurityWeek
In Other News: US Ransomware Attacks, 23andMe Blames Victims, Nuclear Waste Hacking Attempt
Report on US ransomware attacks, 23andMe blames victims for hack, UK nuclear waste company targeted by hackers.
Infosecurity News
23andMe Blames User “Negligence” for Data Breach
A 23andMe letter sent to a legal firm representing victims of the data breach claims that users were at fault for recycling passwords
The Cyber Express
DNA Analysis Firm, 23andMe, Blames Customers For Data Breach
In a startling turn of events following the 23andMe data leak update released today, the popular DNA analysis is grappling
HACKRead
23andMe blames its users for the massive data breach
In a lawsuit stemming from a data breach, DNA service provider 23andMe has drawn sharp criticism for its response letter, in which it attempts to pin the blame on the affected customers.
PCMag
23andMe to Hacking Victims: It's Not Our Fault You're Too Lazy to Change Passwords
23andMe lawyers say the company is not at fault for last year's breach because customers 'negligently recycled and failed to update their passwords.'
Bleeping Computer
The biggest cybersecurity and cyberattack stories of 2023
2023 was a big year for cybersecurity, with significant cyberattacks, data breaches, new threat groups emerging, and, of course, zero-day vulnerabilities.
CyberNews
Top ten biggest security incidents of 2023
External actors are responsible for the vast majority (83%) of breaches.
The Cyber Express
Top 20 Cyberattacks in Recent Past: Key Lessons for Companies in 2024
As the year nears its end, the cybersecurity sector offers profound lessons through incidents like data breaches, leaks, and cyberattacks,
The Record
NIST report identifies significant privacy gaps in genomic data handling
A new National Institute of Standards and Technology (NIST) report on the cybersecurity of genomic data found major privacy gaps in how the data is generated, stored and shared.
Bleeping Computer
The password attacks of 2023: Lessons learned and next steps
The password attacks of 2023 involved numerous high-profile brands, leading to the exposure of millions of users' data. Learn more from Specops Software on how to respond to these types of attacks.
The Cyber Express
Cyber Chaos 2023: Decoding the Year’s Most Daring Hacks
The year 2023 stands as a pivotal moment in the ongoing evolution of cyber threats. Witnessing the emergence of new
The Hacker News
Unveiling the Cyber Threats to Healthcare: Beyond the Myths
Hacking incidents in the healthcare sector have surged by more than threefold from 2018 to 2022. It's time for proactive cybersecurity measures.
The Cyber Express
Master the Defenses: 8 Cybersecurity Best Practices for 2024
The ever-accelerating pace of technological advancement shapes our world, forging a double-edged digital landscape. On one hand, it fuels innovation
PCMag
23andMe Moves to Thwart Class-Action Lawsuits by Quietly Updating Terms
23andMe updates its terms of service in a way that changes how the company resolves disputes with users. But customers only have 30 days to opt out via email.
Bleeping Computer
23andMe updates user agreement to prevent data breach lawsuits
As Genetic testing provider 23andMe faces multiple lawsuits for an October credential stuffing attack that led to the theft of customer data, the company has modified its Terms of Use to make it harder to sue the company.
The Cyber Wire
23andMe's data incident.
23andMe's data incident is found to have a greater scope than initially expected.
SecurityWeek
23andMe Says Hackers Saw Data From Millions of Users
Personal genetics firm 23andMe said hackers accessed the personal information about 6.9 million of its members.
PCMag
23andMe: Hacker Accessed Data for 6.9 Million Accounts
23andMe says the hacker only broke into 14,000 accounts by using their passwords, but those 14,000 accounts are connected to millions of other profiles.
DataBreaches
23andMe data breach: Hackers accessed data of 6.9 million users
Catherine Stoddard reports: 23andMe, a company that does genetic testing and traces ancestry through shared DNA, confirmed to FOX TV Stations on Monday...
SC Magazine
23andMe confirms nearly 7 million customers affected in data leak
The company told SC Media about 14,000 accounts were accessed, with millions more DNA Relatives caught in the crossfire.
CyberNews
23andMe hack explained: 0.1% of accounts unlocked the data of millions
23andMe’s investigation revealed that hackers accessed only “a very small percentage” of accounts to scrape user data.
Security Affairs
Security Affairs newsletter Round 447 by Pierluigi Paganini
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
PCMag
23andMe Hackers Accessed Over 14,000 Customer Accounts
The hack, which provided unauthorized access to 'files containing profile information about other users’ ancestry,' impacted 0.1% of 23andMe's users worldwide.
The Cyber Express
NoEscape Ransomware Group Strikes Again, Claims Science History Institute Data Breach
NoEscape ransomware group has listed Science History Institute on its dark web portal. Science History Institute shares stories of significant
Bleeping Computer
Sumo Logic discloses security breach, advises API key resets
Security and data analytics company Sumo Logic disclosed a security breach after discovering that its AWS (Amazon Web Services) account was compromised last week.
The Record
Connecticut AG demands answers from 23andMe after data breach
Connecticut's Attorney General William Tong sent a letter to 23andMe demanding answers about its recent data breach and whether it violated data privacy laws.
The Record
Republican senator continues blocking military picks, including cyber leaders
Sen. Tommy Tuberville refused to give up his "hold" on about 400 military promotions — including key cybersecurity personnel — to protest a policy that covers the costs for personnel to travel to seek an abortion.
The Record
Arabic-speaking WhatsApp users targeted with spyware
Otherwise harmless mods of the WhatsApp messenger have been infected with spyware aimed at users in Saudi Arabia, Yemen and elsewhere, according to researchers at Kaspersky.
DataBreaches
Hacker leaks millions of new 23andMe genetic data profiles
Lawrence Abrams reports: A hacker has leaked an additional 4.1 million stolen 23andMe genetic data profiles for people in Great Britain and Germany on a...
Bleeping Computer
Hacker leaks millions of new 23andMe genetic data profiles
A hacker has leaked an additional 4.1 million stolen 23andMe genetic data profiles for people in Great Britain and Germany on a hacking forum.
Bleeping Computer
23andMe hit with lawsuits after hacker leaks stolen genetics data
Genetic testing provider 23andMe faces multiple class action lawsuits in the U.S. following a large-scale data breach that is believed to have impacted millions of its customers.
Infosecurity News
DNA Tester 23andMe Hit By Credential Stuffing Campaign
Threat actor offers to sell DNA profiles of ‘millions’
Ars Technica
Private 23andMe user data is up for sale after online scraping spree
Records reportedly belong to millions of users who opted in to a relative-search feature.
DataBreaches
23andMe Cyberbreach Exposes DNA Data, Potential Family Ties
DarkReading reports: 23andMe, the popular DNA testing company, has launched an investigation after client information was listed for sale on a cybercrime forum...
Bleeping Computer
Genetics firm 23andMe says user data stolen in credential stuffing attack
23andMe has confirmed to BleepingComputer that it is aware of user data from its platform circulating on hacker forums and attributes the leak to a credential-stuffing attack.
The Record
23andMe scraping incident leaked data on 1.3 million users of Ashkenazi and Chinese descent
The information of nearly 7 million 23andMe users was offered for sale on a cybercriminal forum this week — including a database with information on users of Ashkenazi and Chinese descent.