data breaches - The Stack (Page 2)

SolarWinds sued by SEC, SolarWinds CISO also charged with fraud

SolarWinds’ poor controls... false and misleading statements and omissions, and the other misconduct... would have violated the federal securities laws even if SolarWinds had not experienced a major, targeted cybersecurity attack"

Edward Targett October 31, 2023

Okta breach looks worse as BeyondTrust, Cloudflare, Password1 report impact, flag concerns

Okta breach looks worse as BeyondTrust, Cloudflare, 1Password report impact, flag concerns

Concern at IAM vendor Okta's response mounts as BeyondTrust details concerns, Cloudflare calls for customers to press harder on "further information regarding potential impact to your organization"

Edward Targett October 25, 2023

Okta

Cybersecurity

News

Fresh Okta breach exposes files: HAR, but no laughing matter

The attackers used a "stolen credential to access Okta's support case management system"

Edward Targett October 23, 2023

Cybersecurity

News

Security contractor hit through "rogue" Windows 7 PC amid fears for sensitive NatSec sites

Details of security perimeters for highly sensitive national security sites published for anyone to read

Edward Targett September 04, 2023

BBC, BA suffer data breaches in wake of MOVEit attacks

cybersecurity

News

MOVEit

BBC, BA suffer data breaches in wake of MOVEit attacks

The Stack is seeing exposed instances associated with scores of high profile blue chips

Edward Targett June 05, 2023

New LastPass breach post-mortem raises questions

New LastPass breach post-mortem raises questions

Attackers targeted DevOps engineers' home devices...

The Stack February 28, 2023

CircleCI hackers grabbed customer tokens and keys, CTO admits, amid warning on SaaS secrets

Cybersecurity

Featured

CircleCI

CircleCI hackers grabbed customer tokens and keys, CTO admits, amid warning on SaaS secrets

Infiltrators dodged antivirus, stole encryption keys from a running process

Edward Targett January 16, 2023

CircleCI warns users to "immediately rotate all secrets" amid credential abuse evidence

Cybersecurity

Read This

CircleCI

CircleCI warns users to "immediately rotate all secrets" amid credential abuse evidence

Updated January 6, 11:00 BST: CircleCI has updated its advisory which deserves revisiting. CircleCI is calling on customers to “immediately rotate any and all secrets” after a security incident. The breach appears to have occurred around December 21 and to have gone unnoticed over the Christmas period. Credentials stolen...

The Stack January 05, 2023

SolarWinds sued by SEC over 2019 monster hack, CISO also charged with fraud, control failures

Okta breach looks worse as BeyondTrust, Cloudflare, 1Password report impact, flag concerns

Fresh Okta breach exposes files: HAR, but no laughing matter

Security contractor hit through "rogue" Windows 7 PC amid fears for sensitive NatSec sites

BBC, BA suffer data breaches in wake of MOVEit attacks

New LastPass breach post-mortem raises questions

CircleCI hackers grabbed customer tokens and keys, CTO admits, amid warning on SaaS secrets

CircleCI warns users to "immediately rotate all secrets" amid credential abuse evidence