BlackBasta claims Synlab attack, leaks some stolen documents

The BlackBasta ransomware / cyber extortion gang is behind the recent cyber attack that resulted in the temporary shutdown of operations at Synlab Italia. The group claimed the attack on their leak site on Saturday and says they have exfiltrated approx… Continue reading BlackBasta claims Synlab attack, leaks some stolen documents

Understanding next-level cyber threats

In this Help Net Security video, Trevor Hilligoss, VP of SpyCloud Labs, discusses the 2024 SpyCloud Identity Exposure Report, an annual report examining the latest trends in cybercrime and its impact. Researchers recaptured nearly 1.38 billion password… Continue reading Understanding next-level cyber threats

Omni Hotels & Resorts attack claimed by Daixin Team; 3.5 million guests’ data stolen (2)

As many people suspected, Omni Hotels & Resorts was the target of a ransomware attack in March. Omni first described the incident as a chain-wide “outage” due to IT issues. By April 1, guests were losing patience with the “outage…. Continue reading Omni Hotels & Resorts attack claimed by Daixin Team; 3.5 million guests’ data stolen (2)

Acuity Responds to US Government Data Theft Claims, Says Hackers Obtained Old Info

Acuity, the tech firm from which hackers claimed to have stolen State Department and other government data, confirms hack, but says stolen info is old.
The post Acuity Responds to US Government Data Theft Claims, Says Hackers Obtained Old Info appeared… Continue reading Acuity Responds to US Government Data Theft Claims, Says Hackers Obtained Old Info

NHS Scotland confirms ransomware attackers leaked patients’ data

NHS Dumfries and Galloway (part of NHS Scotland) has confirmed that a “recognised ransomware group” was able to “access a significant amount of data including patient and staff-identifiable information,” and has published &#8220… Continue reading NHS Scotland confirms ransomware attackers leaked patients’ data

90% of exposed secrets on GitHub remain active for at least five days

12.8 million new secrets occurrences were leaked publicly on GitHub in 2023, +28% compared to 2022, according to GitGuardian. Remarkably, the incidence of publicly exposed secrets has quadrupled since the company started reporting in 2021. Companies ne… Continue reading 90% of exposed secrets on GitHub remain active for at least five days

GitHub push protection now on by default for public repositories

GitHub push protection – a security feature aimed at preventing secrets such as API keys or tokens getting accidentally leaked online – is being switched on by default for all public repositories. “This means that when a supported sec… Continue reading GitHub push protection now on by default for public repositories

Cybercriminals harness AI for new era of malware development

The alliance between ransomware groups and initial access brokers (IABs) is still the powerful engine for cybercriminal industry, as evidenced by the 74% year-on-year increase in the number of companies that had their data uploaded on dedicated leak si… Continue reading Cybercriminals harness AI for new era of malware development