Cyber incidents
Google Drive blocked: the challenges of Piracy Shield and the implications of accidental lockdownHow a simple technical error blocked Google Drive in Italy, highlighting the critical issues in a fight against piracy involving tech giants and national institutionsGoogle Drive was blocked by mistake by Piracy Shield, causing problems for users. The incident raises questions about the effectiveness of the protection system and the selection of safe domains. Discussions are now underway on how to improve these mechanisms to avoid future disruptions.
An unprecedented offensive: Cloudflare and the record-breaking DDoSLearn how Cloudflare thwarted the most powerful DDoS attack ever recorded and protect your networks from advanced cyber threatsCloudflare blocked a record 3.8 Tbps DDoS attack. The malicious traffic came from compromised ASUS routers. The attack exploited vulnerabilities in network layers 3 and 4, but Cloudflare's automated defenses minimized the impact to users.
IntelBroker alleged breach of Deloitte systemsServer exposed: how Deloitte's security may have been compromised by a cyber attackA cybercriminal group, IntelBroker, claimed to have breached Deloitte data through an unprotected server. They allegedly published internal company communications. Deloitte has not yet confirmed the incident. The breach highlights the importance of security measures.
Hacker attack in Lebanon: Hezbollah under fireTechnological shock and injuries: cyber warfare hits Hezbollah in LebanonA cyber attack caused explosions in Hezbollah members' pagers in Lebanon, injuring hundreds. Hezbollah ordered the use of the pagers to cease, suspecting Israeli infiltration. Cyber warfare requires updated security measures.
Data breach: Fortinet faces new hack, 440GB of stolen informationFortinet under attack: hackers breach security and make information public. discover the details and the consequences for the privacy of involved usersFortinet suffered a 440GB data breach by hacker Fortibitch, who published the files to Amazon S3. The company downplays the impact, but warns affected customers. It has improved internal security to prevent future attacks and reassures that its services have not been compromised.
Hackers compromise McDonald's instagram account, steal $700,000 in cryptoHuge cryptocurrency scam discovered via McDonald's Instagram account: here's how hackers fooled thousands of users and stole a fortuneMcDonald's Instagram account was hacked to promote a fraudulent cryptocurrency, GRIMACE, stealing $700,000. McDonald's has regained control, apologized, and improved security measures to prevent future attacks.
Digital chaos: global connection issues hit Azure and Microsoft 365Microsoft's cloud services in haywire: here's what's happening and how the company is respondingA major network outage is affecting Azure and Microsoft 365 services in several regions around the world, causing access difficulties and slowdowns. Engineers are working to fix the problem. Users on social media are actively discussing the impact of the outage.
Cyber catastrophe: CrowdStrike bug brings global companies to their kneesGlobal financial and operational impact. Companies lose billions, with Delta Air Lines among the hardest hit. Find out what happened and how they are recoveringThe CrowdStrike bug caused outages on 8.5 million Windows devices, with losses estimated at $15 billion. Fortune 500 companies have been particularly hard hit. CrowdStrike and Microsoft are working to resolve the issue, with 97% of devices already restored.
CrowdStrike: how a security update crippled the tech worldGlobal impact of a security update on banking, transportation and cloud services: what happened and how the crisis is being addressedAn update to CrowdStrike's cybersecurity software has caused global IT outages, affecting banks, media, transportation and Microsoft Azure services. This has led to blue screens on many Windows devices. CrowdStrike and Microsoft are working to resolve the issue.
AT&T: data breach discovered that exposes communications of millions of usersDigital security compromised: learn how a recent AT&T data breach affected millions of usersAT&T suffered a data breach involving call and text logs of millions of users, both customers and non-customers. The incident is under investigation by the FCC in conjunction with law enforcement. The violation is serious due to the risks associated with locating people.
Cybersecurity in crisis: consequences of the mega data theft in a Chinese travel agencyMassive travel data theft uncovered: How hackers breached the defenses of a popular Chinese travel agency, possible legal repercussions, and future defense strategiesA cyber attack hit a Chinese travel agency, exposing the data of 7.5 million tourists. The attackers used advanced techniques such as phishing and malware. The event highlights the urgency of improving safety measures and staff training.
The hidden truth: the cyber attack on OpenAI and its consequencesThe cyberattack that OpenAI kept hidden discovered: implications, criticisms and the future of AI securityOpenAI suffered a cyber attack in 2023 without informing the public. Although sensitive data was compromised, critical systems remained intact. The company has since improved security, but criticism of the incident and the spread of modified versions of ChatGPT raise concerns.
Ethereum mail list breach: large-scale phishingLearn how cybercriminals targeted Ethereum users with a sophisticated phishing campaign, and what security measures have been implemented to prevent future threatsOn June 23, the Ethereum mailing list provider was hacked, exposing 35,794 emails to a phishing attack. Hackers sent fake investment offers to steal cryptocurrencies. Ethereum responded by tightening security and notifying users.
Hacker attack compromises Ticketmaster: the value of the theft exceeds 22 billion dollarsSensitive data and millionaire tickets in the hands of the ShinyHunters groupA devastating hacker attack by the ShinyHunters group hit Live Nation and Ticketmaster, stealing data on 193 million tickets, including 440,000 for Taylor Swift, with a total estimated value of $22.7 billion.
Cyber attack in Indonesia: the new Brain Cipher ransomware brings services to their kneesNew ransomware hits Indonesia: learn how Brain Cipher crippled essential services and the techniques used by hackersBrain Cipher is a new ransomware group that hit a data center in Indonesia, encrypting government servers and disrupting vital services. They demanded a ransom of $8 million in Monero. Ransomware encrypts both data and file names, making recovery difficult.
Patelco Credit Union: security incident halts customer services in CaliforniaService disruption and customer frustration: Patelco Credit Union works to resolve security incidentOver the weekend, a security incident hit Patelco Credit Union in California, blocking access to funds for nearly half a million customers. The company has had to shut down several banking systems and is working with experts to resolve the issue.
Cyber attack on TeamViewer: immediate response and investigations underwayStrengthened security measures and international collaborations to counter the cyber threatTeamViewer suffered a cyber attack but reassured that customer data is safe. The company works with security experts to investigate and strengthen system protection. The incident highlights the importance of cybersecurity for all businesses.
Polyfill JS supply chain attack: what happenedA detailed analysis of the cyber attack that compromised a library essential for JavaScript compatibility in browsersSupply chain attacks on open source projects have increased in recent times. Polyfill JS, used to improve browser compatibility, was compromised by a malicious domain. Developers should remove references to this domain to protect themselves.
Security alert: supposed LockBit intrusion into the Federal Reserve systemPossible consequences and responses of the authorities to the alleged cyber breach of the Federal ReserveLockBit claims to have hacked the US Federal Reserve, stealing 33 TB of sensitive data. However, concrete evidence is lacking. The FBI recovered decryption keys to help victims. Experts remain skeptical, considering this claim a possible visibility maneuver.
Cyber attack interrupts Euro 2024 live broadcastInterruption of the live streaming of a Euro 2024 match: TVP under DDoS attackA DDoS attack hit broadcaster TVP during a 2024 European Football Championship match between Poland and Austria, interrupting the broadcast. TVP acted quickly to restore service. The attack is suspected to have come from Russia. Preventive measures are in place for future events.
Serious digital security incident in Indonesia puts sensitive national data at riskRecent vulnerabilities and the national response to cyberattacksA data center in Indonesia has been hacked, with cybercriminals stealing sensitive data and demanding a ransom. The attack highlights gaps in national cybersecurity and the need to improve protections and collaborations to prevent future threats.
Hacker attack on ASST Rhodense: sensitive data compromisedSerious consequences for the IT security of Lombardy healthcare facilitiesASST Rhodense has suffered a major cyber attack from ransomware group Cicada3301, which stole 1TB of sensitive data. Authorities are working to contain the damage and prevent future attacks. The Lombardy Region provides support and security experts are at work.
Cyber threat to the Italian Ministry of Defense: critical access for sale on underground forumsRisks and implications of selling compromised access in cybercrimeAn Initial Access Broker has offered RCE access for sale to the Italian Ministry of Defense's "Difesa IT" website. IABs sell access to cybercriminals, who use them for attacks such as ransomware. Cyber threat intelligence is essential to prevent these threats.
Breach of cloud services: large-scale attack against Snowflake customersInvestigations detect large-scale cyber attacks leveraging compromised credentials and advanced intrusion toolsA security breach on Snowflake affected over 165 companies, including Ticketmaster and Santander, with sensitive data stolen. Hackers exploited stolen credentials via malware. The lack of multi-factor authentication contributed to the compromise.
Investigation into Facebook data breach and Akira ransomwareCybersecurity challenges: from the latest Facebook breach to the Akira ransomware threatThe article discusses a recent data breach at Facebook that compromised millions of profiles, the FBI's warning of an increase in Akira ransomware cases, and the importance of multi-layered strategies for companies and international collaboration to counter cyber threats .
NotPetya: the cyber attack that changed the face of cyber securityThe global devastation of the NotPetya cyberattack: Analysis of a borderless cyber conflictIn 2017, the NotPetya cyber attack, originating from Russia and targeting Ukraine, infected MeDoc software, affecting vital sectors and causing global damage. It turned out to be destructive and not for the purpose of redemption. Russian GRU unit 74455 was held responsible.
Data breach: 560 million users involvedHow to protect yourself from the consequences of a major data breachShinyHunters hacked Ticketmaster-Live Nation, stealing 1.3 terabytes of data from 560 million users, now for sale on the Darkweb. The stolen data includes personal and payment information. Users risk spam and phishing attacks. We recommend using 2FA and monitoring your data.
Ransomware attack on Synnovis: London health services in crisisSevere disruption to pathology and diagnostic services in LondonA ransomware attack has hit Synnovis, a diagnostic services provider in London, disrupting clinical services at major NHS hospitals. The incident primarily impacted blood transfusions and caused postponements of scheduled appointments.
Google cloud error wipes out $135 billion in accountsImplications and countermeasures of a Google cloud configuration errorRecently Google Cloud accidentally deleted the account of the UniSuper pension fund, which manages $135 billion, due to human error. UniSuper had to restore the data with external backups. Google has improved security systems to prevent future incidents.
DDoS attacks and legal challenges test the Internet ArchiveThe technical and legal challenges faced by the Internet Archive: between cybersecurity and copyright battlesThe Internet Archive is under DDoS attack, causing disruptions to services such as the Wayback Machine. Despite the disruptions, the data is safe. The attacks come at a critical time for the organization, which is already embroiled in legal disputes over alleged copyright violations.
Microsoft services crisis: causes, impacts and recovery strategiesRecent technical issues trigger a reliability and continuity crisis for essential Microsoft servicesRecent technical issues have affected Microsoft services like Bing and ChatGPT, causing significant outages. The cause may be a network or configuration error. Microsoft is working to resolve and improve the resilience of services, also involving third parties such as DuckDuckGo.
Google vs. Microsoft: cybersecurity battle intensifiesCompetition between giants: Google denounces Microsoft's vulnerabilities and proposes Workspace as a more secure solutionGoogle criticized Microsoft's security after a hack, promoting its own Workspace as an alternative. It also launched aggressive offers to attract customers. Microsoft responded with the "Secure Future" initiative to improve security and regain trust.
LockBit: infiltration into the systems of the University of SienaAn overview of the cyber attack on the University of Siena and the implications for academic securityLockBit attacked the University of Siena, compromising sensitive data and threatening to disclose it if their demands are not met. This highlights the need to improve cybersecurity, especially in academic institutions that handle valuable data.
Severe cyber attack on WebTPA exposes sensitive data of millions of usersThe incident puts the privacy and security of millions of people, including customers and business partners, at riskA data breach hit WebTPA, exposing the personal information of 2.4 million people. The company is working to resolve the issue and offers credit monitoring services. Victims should check their finances and update passwords for safety.
Black Basta hits Synlab: analysis of the attack and cybersecurity lessons for the healthcare sectorCyber defense strategies: how to protect healthcare infrastructures from ransomwareA hacker group called Black Basta stole and published health data from Synlab, a large medical company in Italy. Using ransomware and phishing, they have caused serious risks to patients. Synlab has decided not to pay ransoms and is notifying affected patients.
Leak of sensitive data from Europol according to hacker claimsArtificial intelligence and preventive measures at the center of the cybersecurity debateA hacker hacked Europol data and put it up for sale on an online forum. Confidential data was exposed, including employee personal details and internal documents.
Large-scale data leak for Dell: impacts and responsesData of 49 million users exposed: IT security and privacy concernsDell suffered a cyber attack that exposed the data of 49 million customers, including names and addresses. The information was sold online. Dell advises customers to be vigilant for suspicious activity.
BogusBazaar: millions stolen through fraudulent e-commerceDeciphered the system of large-scale scams, with the use of advanced technologies for theft of financial dataThe article describes the case of "BogusBazaar", a network of 75,000 fake online shops that defrauded via sites that stole credit card data, with ongoing investigations and advice to avoid similar frauds.
Make it critical in Dropbox's e-signature serviceViolation of the electronic signature system exposes sensitive dataDropbox suffered a security breach that exposed sensitive user data of its Dropbox Sign service, including emails, phone numbers and passwords. Measures have been taken to mitigate the problem.
Massive data theft in Argentina: millions of driving licenses compromisedLarge-scale data breach shakes Argentina: privacy and national security at riskA hacker breached Argentina's driving license database, exposing data on 5.7 million citizens, including senior officials. He demands a ransom to return the data, highlighting serious flaws in the country's cybersecurity.
The complexity of the fight against digital piracy in ItalyTechnical and legal challenges in blocking online piracy using IP and CDN filtering systems in ItalyThe article discusses the technical and legal issues of the Piracy Shield anti-piracy tool, highlighting how blocking CDN IPs can limit access to legitimate content. It offers more precise filtering methodologies.
Hacker attack impacts Microsoft and US federal agenciesNational security implications and strategic responses to credential theftHackers linked to Russia stole Microsoft credentials, risking the security of US agencies. CISA called for immediate action. The attack is linked to the Midnight Blizzard group. Analysis underway to mitigate damage.
Preventing phishing attacks: crucial insight from the LastPass teamAn attentive employee averts an advanced phishing attempt through vigilance and alertnessLastPass employee foiled a phishing attack that used an audio deepfake of the CEO. Caution and critical thinking are essential against cyber fraud and the use of deepfakes.
iPhone security alert: new spyware foundApple tightens security measures for iPhone usersApple has warned iPhone users in 92 countries about spyware attacks that try to compromise devices remotely. They recommend keeping iOS up to date, using Lockdown Mode, and offer support through Amnesty International.
Security alert for gamers: cyberattacks on Activision platformsActivision players in the crosshairs: the alert is growing for infiltration and data theft through third-party softwareRecently, Activision gamers have been victims of hackers through malware spread via third-party software, such as game cheats. Breaches include credential theft and cryptocurrency. Activision supports the victims and says its servers are safe.
Piracy Shields code revealed: amidst criticism and vulnerabilityPiracy Shields cybersecurity under attack reveals critical issues and sparks debate about web censorshipPiracy Shields, Agcom's anti-piracy tool, has been hacked and its source code published on GitHub. This raises controversy about censorship and security. Radical measures required to protect users.
Significant transaction on Tornado Cash after cyber attackMarket dynamics and security: current evolution in cryptocurrencies and online gamblingThe article discusses a major Ethereum transfer to Tornado Cash after a hack, raising security questions. He also talks about the success of the innovative Scorpion Casino in the world of online gambling and calls for greater security and transparency in the cryptocurrency industry.
Security alert: hacker attack on Discord botsAn in-depth analysis of vulnerabilities and countermeasures in the context of cyber attackRecently, a popular Discord bot portal suffered a hacker attack that put users' security at risk by injecting malicious code into the bots. The platform reacted quickly to protect users and improve security.
Firebase: 19 million credentials exposed due to a simple errorA large-scale misconfiguration puts the personal information of millions of users at riskA breach in Firebase exposed 19 million passwords and 125 million sensitive data. Analyzing over 5 million domains, 916 vulnerable platforms were found with 223 million records at risk. Only 1% of the companies contacted responded. The urgency of improving security measures is highlighted.
Cybersecurity challenges and strategies: the CISA case and vulnerability managementVulnerabilities, updates and training: key components in the fight against cyber attacksThe article discusses the importance of proactive cybersecurity management, highlighted by an attack on CISA due to outdated Ivanti systems. It highlights the need for timely updates, staff training and constant monitoring.