Hacktivism efforts have proliferated rapidly in the Middle East following the official announcement of a war between Palestine and Israel. The escalation was spurred by a deadly attack on a music festival by Hamas, along with abductions and killings across scores of Israeli towns after a surprise incursion from the Gaza border in the morning of October 7. READ MORE...
Genetic profiling service 23andMe has commenced an investigation after private user data was scraped off its website. Friday's confirmation comes five days after an unknown entity took to an online crime forum to advertise the sale of private information for millions of 23andMe users. The forum posts claimed that the stolen data included origin estimation, phenotype, health information, photos, and identification data. READ MORE...
Volex, the British integrated maker of critical power and data transmission cables, confirmed this morning that intruders accessed data after breaking into its tech infrastructure. The AIM-listed business said that it "enacted security protocols and took immediate steps to stop the unathorised access to its systems and data" as soon as the attack was noticed. READ MORE...
Flagstar Bank is warning that over 800,000 US customers had their personal information stolen by cybercriminals due to a breach at a third-party service provider. Flagstar, now owned by the New York Community Bank, is a Michigan-based financial services provider that, before its acquisition last year, was one of the largest banks in the United States, having total assets of over $31 billion. READ MORE...
A hacking group breached Washington, D.C.'s local election authority, accessing 600,000 lines of voter data, the District of Columbia Board of Elections confirmed in a statement to CyberScoop on Friday. A user calling itself "pwncoder" claimed in a Tuesday post in an online forum where stolen data is bought and sold that they had breached the DC Board of Elections and offered to sell the data, which included the last four digits of voters' social security numbers, driver's license numbers and more. READ MORE...
The maintainers of the cURL data transfer project are working on patching two vulnerabilities in the software, including a high-severity bug impacting both libcurl and curl. cURL provides both a library (libcurl) and command-line tool (curl) for transferring data with URL syntax, supporting various network protocols, including SSL, TLS, HTTP, FTP, SMTP, and more. READ MORE...
Tens of thousands of Android devices have been shipped to end-users with backdoored firmware, according to a warning from cybersecurity vendor Human Security. As part of the global cybercriminal operation called BadBox (PDF), Human Security found a threat actor relied on supply chain compromise to infect the firmware of more than 70,000 Android smartphones, CTV boxes, and tablet devices with the Triada malware. READ MORE...