Content Paint
Search
Sign in

data breaches

ransomware  | Jun 25, 2024
Chip firm Marvell in "third-party" data breach as LockBit resurfaces
Chip firm Marvell in "third-party" data breach as LockBit resurfaces

Criminals offer no proof of Federal Reserve breach claim

Snowflake  | Jun 10, 2024
Mandiant confirms 165 Snowflake breach victims – sees custom .NET and Java reconnaissance tool
Mandiant confirms 165 Snowflake breach victims – sees custom .NET and Java reconnaissance tool

“At least 79.7% of the accounts leveraged by the threat actor in this campaign had prior credential exposure

Snowflake  | Jun 03, 2024
Snowflake: CrowdStrike and Mandiant say we're clean
Snowflake: CrowdStrike and Mandiant say we're clean

"This appears to be a targeted campaign directed at users with single-factor authentication"

Snowflake  | Jun 01, 2024
Snowflake warns over “rapeflake” data breaches
snowflake breach update

"The user must be left in the disabled state for 6 hours to fully invalidate any possible unauthorized access via this ID token feature."

Zscaler  | May 09, 2024
Zscaler breach: Says single test server exposed, downplays risk
Zscaler breach: Says single test server exposed, downplays risk

"No impact or compromise to our customer, production and corporate environments" -- but were credentials stolen?

 |  Cybersecurity  | Apr 21, 2024
MITRE attack strikes a NERVE after Ivanti to VMware pivot
MITRE attack strikes a NERVE after Ivanti to VMware pivot

"We did not detect… lateral movement into our VMware infrastructure. At the time we believed we took all the necessary actions to mitigate the vulnerability, but these actions were clearly insufficient.”

Cybersecurity  | Apr 12, 2024
Sisense breach: CISO posts guidance amid frantic community action
Sisense breach: CISO posts guidance amid frantic community action

"They have direct access to JDBC connections, to SSH, and to SaaS platforms... This is a worst case scenario"

 |  Cloud  | Mar 21, 2024
Scoop: Fujitsu spilled private client data, passwords into the open unnoticed for a year
Scoop: Fujitsu spilled private client data, passwords into the open unnoticed for a year

It takes a special kind of stupid to export a LastPass vault and dump it into a public bucket along with a bunch of AWS keys. How do these people win critical government contracts again, please?

SolarWinds  | Oct 31, 2023
SolarWinds sued by SEC over 2019 monster hack, CISO also charged with fraud, control failures
SolarWinds sued by SEC, SolarWinds CISO also charged with fraud

SolarWinds’ poor controls... false and misleading statements and omissions, and the other misconduct... would have violated the federal securities laws even if SolarWinds had not experienced a major, targeted cybersecurity attack"

Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.