WEST PALM BEACH, FL - A significant data breach has compromised over 184 million login credentials, affecting users of major platforms including Google, Apple, Meta (Facebook, Instagram), Microsoft, Snapchat, and others. The exposed information includes email addresses, usernames, plaintext passwords, and login URLs, posing a substantial risk of identity theft and unauthorized account access. Cybersecurity researcher Jeremiah Fowler discovered the unprotected database, … [Read more...]
FBI Seizes Internet Domains Associated with Major Cybercrime Ring; 17M Victims
WASHINGTON, D.C. – A multi-jurisdictional operation involving the Federal Bureau of Investigation (FBI) and several other law enforcement agencies has resulted in several well-known internet domains being seized that were a part of a major cybercrime ring responsible for hacking and stealing credentials from digital marketplaces. As of Wednesday, the Cracked.io and Nulled.to internet forums – long known as havens for threat actors who engaged in password theft, software … [Read more...]
50 Million Potentially Compromised In PowerSchool Data Breach
SACRAMENTO, CA - On December 28, 2024, PowerSchool, a prominent provider of educational technology services to over 60 million K-12 students worldwide, identified a cybersecurity incident involving unauthorized access to its Student Information System (SIS) through the PowerSource customer support portal. The breach, which occurred between December 19 and December 24, 2024, allowed threat actors to exfiltrate sensitive data, including names, addresses, dates of birth, … [Read more...]
Amazon Seizes Domains Used by Russian Hackers Targeting Windows Users
SEATTLE, WA - Online shopping retail giant Amazon this week seized multiple internet domains that have been utilized by Russian hackers to launch phishing attacks that targeted users of Microsoft’s Windows operating system. Chief Information Security Officer at Amazon, CJ Moses, announced in a blog post that Midnight Blizzard, otherwise known as APT29 – a threat actor directly sponsored by the Russian government – had been targeting government agencies, empires, … [Read more...]
Data Leak Impacts Snowflake Customers, Including Advanced Auto Parts, LendingTree
BOZEMAN, MT - In a significant data breach, several major companies have been impacted due to vulnerabilities in their Snowflake cloud storage accounts. The breach, which came to light in early June 2024, has affected companies like Advanced Auto Parts and LendingTree, among others. Details of the Breach: The breach involved unauthorized access to Snowflake's cloud storage, leading to the theft of vast amounts of data. The hacker, known by the alias "Sp1d3r," has … [Read more...]
Thousands of Domain Names Owned by Legitimate Brands Hijacked to Send Spam
TEL AVIV - As part of a sophisticated scheme involving spam proliferation and click monetization, over 8,000 domains and 13,000 sub-domains once owned by major, legitimate brands and institutions have been hijacked to allow millions of spam emails to bypass standard security blocks for nefarious gain. This coordinated malicious activity – dubbed “SubdoMailing” – has been going on since at least September 2022, according to Guardio Labs, the Israeli security … [Read more...]
PII Of Up To 4.6 Million Neiman Marcus Customers Potentially Exposed In Breach
PALM BEACH, FL - On Thursday, September 30, 2021, luxury department store Neiman Marcus announced that about 4.6 million of its customers may have had their personally identifiable information or PII compromised in a data breach that occurred in May 2020. The personal information stolen in the breach varied and may have included names and contact information, payment card numbers and expiration dates including virtual gift card numbers. Worse, the cyber-thieves may have … [Read more...]
It’s Only A Matter of Time Until You Need to Be Licensed to Operate A Web Server
PALM BEACH, FL – I have been thinking about this off and on for a few years now, but I have never really posted or written about it. That is because it is an awful prediction that I hate the idea of, but I think it is going to eventually happen. Here it goes…. I predict that to operate a web server sometime in the near future, you will be required to have a license, or have passed a basic course in IT security or Cybersecurity intrusion mitigation. Not at the single site … [Read more...]
This AMEX Email Phishing Scam Wants You Homeless & Poor, With A Zero FICO Score
PALM BEACH, FL - Nothing could better destroy your holiday spirit than a compromise of your most secure personal information in the form of a phishing expedition. Here is one of the latest email scams circulating what is probably hundreds of thousands of inboxes, just in time for Christmas. Here is how it all plays out: You receive an email which appears to be from American Express, but it isn't, it's from some scrupulous hacker hiding somewhere behind a computer who is … [Read more...]
FTC Warns Consumers of Fake Equifax Data Breach Websites for Settlement Claims
PALM BEACH, FL – The Federal Trade Commission is warning Internet users, all 147 million people who were affected by the Equifax Data Breach in 2017, to beware of fake Equifax settlement websites which have been setup by thieves trying to steal consumers information when they attempt to file a claim online. Typically, users are sent an email that a class action lawsuit has resulted in a settlement making them eligible for credit monitoring services and/or a cash claim … [Read more...]
Weak Attempt at Phishing Network Solutions Account Holders
LONG ISLAND, NY - Network Solutions is a popular provider of domain names and web hosting accounts in addition to other tools used for Internet services. They're a common target due to the ability to hijack web sites and steal domain names when and if someone gains access to the account. Damages can be horrific as it is possible to permanently shut down and steal your asset or online business. Below is a weak attempt at gaining access to my Network Solutions account through … [Read more...]
No More Procrastinating on Two Factor Authenticating Protect Your Domains
There is one thing that can come between you and your business regardless of whom you are and how safe you feel your security procedures might be and that’s theft – especially in the domain business. There is a lot that can go wrong in the Internet business as it is, but likely nothing would be as bad as someone stealing your entire Internet address. Poof, all the sudden your entire business is gone. In a brick-and-motor business, it’s not likely that someone will come along … [Read more...]