Nearly 250,000 Impacted by Data Breach at Medical Associates of Brevard
Florida-based Medical Associates of Brevard has informed authorities that a data breach suffered earlier this year impacts nearly 250,000 individuals. Medical Associates of Brevard provides healthcare services in the Melbourne, Florida area. The organization discovered in mid-January 2025 that its systems had been breached and an investigation later determined that the attackers may have stolen personal and protected health information. READ MORE...
Bridgestone Americas restores facilities' network connections following cyberattack
Bridgestone Americas said it has restored connections between its facilities and its central computer network following a cyberattack earlier this month that disrupted its production operations. The company, a subsidiary of Japan-based Bridgestone Corp., said the attack interrupted production at several of its North American and Latin American manufacturing and retreading facilities. Bridgestone has begun to ramp up production as part of its return to pre-hack output levels. READ MORE...
Disrupted phishing service was after Microsoft 365 credentials
Microsoft and Cloudflare have disrupted a Phishing-as-a-Service operation, known as RaccoonO365. The primary goal of RaccoonO365 (or Storm-2246 as Microsoft calls it) was to rent out a phishing toolkit that specialized in stealing Microsoft 365 credentials. They were successful in at least 5,000 cases, spanning 94 countries since July 2024. The operation provided the cybercriminals' customers with stolen credentials, cookies, and data which they in turn could use to plunder MS 365 accounts. READ MORE...
Scattered Spider gang feigns retirement, breaks into bank instead
Spiders don't change their stripes. Despite gang members' recent retirement claims, Scattered Spider hasn't exited the cybercrime business and instead has shifted focus to the financial sector, with a recent digital intrusion at a US bank. In an update to an earlier threat intelligence report about ShinyHunters' string of Salesforce-related heists, along with that crime crew's collab with Scattered Spider, READ MORE...
PyPI invalidates tokens stolen in GhostAction supply chain attack
The Python Software Foundation team has invalidated all PyPI tokens stolen in the GhostAction supply chain attack in early September, confirming that the threat actors didn't abuse them to publish malware. These tokens are used to publish packages on the Python Package Index (PyPI), a software repository that acts as the default source for Python's package management tools and hosts hundreds of thousands of packages. READ MORE...
Raven Stealer Scavenges Chromium Data Via Telegram
A new lightweight infostealer called Raven is swooping into client environments via underground forums and cracked software to pick off data from Chromium browsers and other applications, with a unique exfiltration method through the Telegram chat app aimed at evading detection. The creators of the so-called Raven Stealer, written primarily in Delphi and C++, developed the malware "for stealth and efficiency," according to researchers who discovered the fledgling malware. READ MORE...
"Pompompurin" resentenced: BreachForums creator heads back behind bars
Conor Brian Fitzpatrick, the creator of the notorious BreachForums hacking forum, has been resentenced to three years in prison after a US appeals court overturned his prior sentence of time served and 20 years of supervised release. Fitzpatrick, 22, of Peekskill, New York, operated the BreachForums marketplace where criminals traded hacked and stolen data - including bank account details, social security numbers, hacking tools, breached databases, passwords, and more. READ MORE...
Attack on SonicWall's cloud portal exposes customers' firewall configurations
SonicWall said it confirmed an attack on its MySonicWall.com platform that exposed customers' firewall configuration files - the latest in a steady stream of security weaknesses impacting the besieged vendor and its customers. The company's security teams began investigating suspicious activity and validated the attack "in the past few days," Bret Fitzgerald, senior director of global communications at SonicWall, told CyberScoop. READ MORE...
- ...in 1793, George Washington lays the cornerstone to the United States Capitol building.
- ...in 1927, Columbia Broadcasting System (known today as CBS) first goes on the air.
- ...in 1945, Gen. Douglas MacArthur moves his command headquarters to Tokyo.
- ...in 1971, American cyclist Lance Armstrong is born in Plano, TX.
