Explore

Trendline Trendline
Booking.com Reports Data Breach Affecting User Information

Booking.com Reports Data Breach Affecting User Information

Booking.com Reports Data Breach Affecting User Information
Trendline Trendline
Booking.com Data Breach Exposes Customer Information, Highlights Travel Sector Vulnerability

Booking.com Data Breach Exposes Customer Information, Highlights Travel Sector Vulnerability

Booking.com Data Breach Exposes Customer Information, Highlights Travel Sector Vulnerability
Trendline Trendline
Booking.com Alerts Customers to Data Breach Affecting Reservation Information

Booking.com Alerts Customers to Data Breach Affecting Reservation Information

Booking.com Alerts Customers to Data Breach Affecting Reservation Information
Trendline Trendline
LinkedIn Accused of Privacy Intrusion Amid BrowserGate Allegations

LinkedIn Accused of Privacy Intrusion Amid BrowserGate Allegations

LinkedIn Accused of Privacy Intrusion Amid BrowserGate Allegations
Rapid Read Rapid Read
FBI Dismantles Global Phishing Operation Targeting Thousands

FBI Dismantles Global Phishing Operation Targeting Thousands

The FBI has announced the dismantling of a global phishing operation known as W3LL, which targeted over 17,000 victims worldwide. The operation involved a phishing kit that allowed cybercriminals to create fake login pages of legitimate services to steal passwords and multi-factor authentication codes. The FBI, in collaboration with Indonesian police, seized key domains and detained the alleged developer, identified as G.L. The operation facilitated the sale of more than 25,000 compromised accounts and enabled attempts at over $20 million in fraud.
Trendline Trendline
OpenAI Affected by North Korea-Linked Axios Supply Chain Hack, Potential Security Risks Highlighted

OpenAI Affected by North Korea-Linked Axios Supply Chain Hack, Potential Security Risks Highlighted

OpenAI Affected by North Korea-Linked Axios Supply Chain Hack, Potential Security Risks Highlighted
Trendline Trendline
OpenAI Acquires Hiro Finance to Expand AI-Driven Financial Planning Tools

OpenAI Acquires Hiro Finance to Expand AI-Driven Financial Planning Tools

OpenAI Acquires Hiro Finance to Expand AI-Driven Financial Planning Tools
Trendline Trendline
WordPress Plug-ins Compromised by Backdoor, Affecting Thousands of Websites

WordPress Plug-ins Compromised by Backdoor, Affecting Thousands of Websites

WordPress Plug-ins Compromised by Backdoor, Affecting Thousands of Websites
Rapid Read Rapid Read
Fake Claude Website Distributes PlugX RAT, Posing Cybersecurity Threat

Fake Claude Website Distributes PlugX RAT, Posing Cybersecurity Threat

A fake website posing as a legitimate Anthropic Claude domain has been distributing the PlugX remote access trojan (RAT) to unsuspecting users. The site offers a download link for a ZIP archive, which contains an MSI installer mimicking the legitimate Claude application. Upon installation, a VBScript dropper runs the real app while installing malware in the background. The PlugX RAT, known for its use in espionage campaigns, establishes a connection to its command-and-control infrastructure, allowing attackers to gain unauthorized access to infected systems.
Rapid Read Rapid Read
RCI Hospitality Discloses Data Breach Affecting Independent Contractors

RCI Hospitality Discloses Data Breach Affecting Independent Contractors

RCI Hospitality Holdings, a major operator of adult nightclubs in the United States, has reported a cybersecurity incident that exposed sensitive personal information. The breach was discovered on March 23 by RCI Internet Services, a subsidiary of the company, due to an insecure direct object reference (IDOR) vulnerability in an IIS web server. This vulnerability allowed unauthorized access to personal data, including names, dates of birth, contact information, Social Security numbers, and driver's license numbers of numerous independent contractors. The company has stated that no customer information or financial systems were accessed, and business operations were not affected. The breach began on March 19, and the company has not identified any public dissemination of the data.
Rapid Read Rapid Read
OpenAI Identifies Security Issue with Third-Party Tool, Ensures User Data Safety

OpenAI Identifies Security Issue with Third-Party Tool, Ensures User Data Safety

OpenAI has reported a security issue involving a third-party developer tool named Axios. The company is taking measures to protect the certification process of its macOS applications, ensuring they remain legitimate OpenAI apps. Despite the security breach, OpenAI confirmed that no user data was accessed, and its systems, intellectual property, and software integrity remain uncompromised. The incident was part of a broader software supply chain attack, allegedly linked to North Korean actors, which compromised Axios on March 31. OpenAI's GitHub Actions workflow inadvertently downloaded and executed a malicious version of Axios, which had access to critical signing certificates for macOS applications. OpenAI has since updated its security certifications and requires macOS users to update their apps to prevent potential risks. Older versions of OpenAI's macOS apps will cease receiving updates or support from May 8.
Trendline Trendline
Rockstar Games Confirms Data Breach with No Impact on Players

Rockstar Games Confirms Data Breach with No Impact on Players

Rockstar Games Confirms Data Breach with No Impact on Players