Key Points :
A massive data breach has exposed 4 billion unique login credentials. The breach includes sensitive information from 2022 to late 2024.…Date Reported: 2024-11-13 Country: USA Victim: Youth Eastside Services | Youth Eastside Services Website: youtheastsideservices.org Additional Information :
The non-profit organization Youth Eastside Services experienced a cyberattack in November 2024. An unauthorized third party accessed their computer system and viewed sensitive consumer information. Compromised data included names, birth dates, addresses, demographic information, medical information, and insurance details.…Date Reported: 2024-12-22 Country: JPN | Japan Victim: Nikki-Universal | Nikki-Universal Website: n-u.co.jp Additional Information :
Nikki-Universal, a chemical manufacturer, suffered a sophisticated ransomware attack. Hackers stole 761.8 GB of data during the breach. The ransomware group Hunters International claimed responsibility for the attack. Hunters International is known for its aggressive tactics in cybercrime.…Threat Actor: Unknown | FireScam Victim: Android Users | Telegram
Key Point :
FireScam is distributed via a phishing site that mimics the RuStore app store, delivering a dropper APK that installs the main malware payload.…Threat Actor: Flax Typhoon (Chinese state-sponsored) | Flax Typhoon Victim: Cyberhaven | Cyberhaven
Key Point :
Dozens of Google Chrome extensions were found stealing sensitive data from 2.6 million devices.…Threat Actor: _lain | _lain Victim: Developers using npm packages | developers using npm packages
Key Point :
Malicious npm packages impersonating legitimate tools have been found, with one package attracting over 1,000 downloads.…Threat Actor: Cyber Criminals | cyber criminals Victim: Windows 10 Users | Windows 10 users
Key Point :
ESET emphasizes the urgency for users to upgrade to Windows 11 or switch to Linux to mitigate security risks.…Key Points :
Trustee Plus offers cryptocurrency top-up capabilities with NFC-enabled virtual credit cards. The service allows users to withdraw cash from ATMs, raising security concerns.…Key Points :
Allegations of Neo Bank accounts being sold on underground platforms. Prices for these accounts start as low as $55, raising concerns about financial fraud.…Key Points :
Virtual credit cards (VCC) are being sold starting at $25, raising concerns about misuse. Unauthorized sales undermine the security benefits of VCCs, potentially leading to fraud.…Key Points :
Alleged breach exposing sensitive documents related to FlashFiber. Incident potentially linked to the politically motivated OpIsrael cyber campaign. Risks posed to organizational privacy and cybersecurity frameworks.…Key Points :
Sale of both fresh and aged Instagram accounts on unauthorized platforms. Aged accounts are more valuable due to established histories and followers.…Key Points :
The breach exposes sensitive user information, raising privacy concerns. Potential risks include identity theft and phishing attacks. Highlights the need for improved cybersecurity measures in educational platforms.…Key Points :
20 million records compromised in the data breach. Leaked data includes sensitive customer information. Risks include identity theft and phishing attempts. Highlights the need for strong cybersecurity protocols.…Key Points :
15 million user credentials exposed, raising security concerns. Compromised data includes login details for various URL-based accounts. Emphasizes the need for strong passwords and two-factor authentication.…Key Points :
43 million records exposed, marking one of the largest data leaks in Argentina’s history. Compromised data includes names, identification numbers, and contact details. Risks include identity theft, financial fraud, and misuse of personal data.…Key Points :
Compromised Outlook and Hotmail accounts are being sold on underground forums. Potential misuse includes unauthorized access, phishing schemes, and identity theft.…