A threat actor compromised Salesloft's GitHub account earlier this year, which sparked last month's massive supply chain attack that compromised hundreds of Salesforce instances. The threat actor, tracked as UNC6395, used stolen OAuth tokens from Salesloft's Drift application, which is integrated with Salesforce, to accomplish the breach last month and steal sensitive data. Last week, several companies disclosed that their Salesforce instances had been among those compromised. READ MORE...
Georgia community hospital Wayne Memorial Hospital (WMH) is notifying over 160,000 individuals that their personal information was stolen in a May 2024 data breach. The incident, the hospital notes in the notification letter to the impacted individuals, a copy of which was submitted to the Attorney General's Offices in several states, was identified on June 3, 2024, and involved ransomware. READ MORE...
American furniture brand Lovesac is warning that it suffered a data breach impacting an undisclosed number of individuals, stating their personal data was exposed in a cybersecurity incident. Lovesac is a furniture designer, manufacturer, and retailer, operating 267 showrooms across the United States, and having annual net sales of $750 million. They are best known for their modular couch systems called 'sactionals,' as well as their bean bags called 'sacs.' READ MORE...
Security researchers have uncovered dozens of domains used by Chinese espionage crew Salt Typhoon to gain stealthy, long-term access to victim organizations going back as far as 2020. In a Monday report, threat intelligence firm Silent Push said it had found 45 domains, the majority of which were previously unreported, that it has linked to Salt Typhoon or UNC4841, a similar group. READ MORE...
Employees are putting sensitive data into public AI tools, and many organizations don't have the controls to stop it. A new report from Kiteworks finds that most companies are missing basic safeguards to manage this data. Only 17% of companies have technology in place to block or scan uploads to public AI tools. The other 83% depend on training sessions, email warnings, or guidelines. Some have no policies at all. READ MORE...
In November 2021, a zero-day vulnerability in a ubiquitous piece of open-source code stunned the technology industry and set off an urgent effort to help secure the largely volunteer open-source ecosystem. Nearly four years later, that effort has made important progress but has also been hobbled by multiple setbacks. The Log4Shell vulnerability in a popular Java logging tool prompted major tech companies to pledge tens of millions of dollars to security improvements. READ MORE...
AI-powered ransomware is here, although it is not the recently discovered PromptLock, which proves to be a prototype created by academics at the New York University Tandon School of Engineering. PromptLock samples were found in late August on VirusTotal, when ESET revealed that it was relying on OpenAI's GPT-OSS:20b, using hardcoded prompts to generate Lua scripts on the fly and to perform various actions on targeted systems. READ MORE...
At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved in maintaining the projects was phished. The attack appears to have been quickly contained and was narrowly focused on stealing cryptocurrency. But experts warn that a similar attack with a more nefarious payload could lead to a malware outbreak that is far more difficult to detect and restrain. READ MORE...
Media streaming platform Plex is warning customers to reset passwords after suffering a data breach in which a hacker was able to steal customer authentication data from one of its databases. In a data breach notification seen by BleepingComputer, Plex says the stolen data includes email addresses, usernames, securely hashed passwords, and authentication data. "An unauthorized third party accessed a limited subset of customer data," reads the Plex data breach notification. READ MORE...