SACRAMENTO, CA - On December 28, 2024, PowerSchool, a prominent provider of educational technology services to over 60 million K-12 students worldwide, identified a cybersecurity incident involving unauthorized access to its Student Information System (SIS) through the PowerSource customer support portal. The breach, which occurred between December 19 and December 24, 2024, allowed threat actors to exfiltrate sensitive data, including names, addresses, dates of birth, … [Read more...]
Hackers Utilizing Russian Domains for Rising Number of Complex Phishing Attacks
REDMOND, WA - Cybersecurity experts have noted a large increase in the number of phishing attacks recently as hackers have been altering their attack avenues in order to work their way around increasingly complex email security systems designed to circumvent their efforts. Both the volume and complexity of malicious emails have been on the rise and are proving to be increasingly able to bypass Secure Email Gateways (SEGs) such as Microsoft and Proofpoint, according … [Read more...]
Amazon Seizes Domains Used by Russian Hackers Targeting Windows Users
SEATTLE, WA - Online shopping retail giant Amazon this week seized multiple internet domains that have been utilized by Russian hackers to launch phishing attacks that targeted users of Microsoft’s Windows operating system. Chief Information Security Officer at Amazon, CJ Moses, announced in a blog post that Midnight Blizzard, otherwise known as APT29 – a threat actor directly sponsored by the Russian government – had been targeting government agencies, empires, … [Read more...]
Thousands of “Sitting Duck” Domain Names Highjacked by Russian Cybercriminals
PALM BEACH, FL - A critical vulnerability within the Domain Name System (DNS) has been unearthed and exploited by dozens of cybercriminals and hackers originating from Russia to take over thousands of domain names, according to cybersecurity researchers from Infoblox and Eclypsium. An estimated 30,000 legitimate domains have been hijacked by the digital thieves since 2019, experts say, utilizing a technique known as “Sitting Ducks” that exploits weak DNS services. The … [Read more...]
Experts: Hackers Registered Over 500,000 Domains for Massive Cyber-Attack
SANTA CLARA, CA - Hackers have been around since the debut of the Internet, and over the years they’ve learned a number of underhanded tricks to use on unsuspecting victims; one of the most prolific is registering new domains to use to disseminate malware and conduct fishing attacks – while posing as innocent and trustworthy websites – in order to get the unwary to share sensitive information or download malicious software. That being said, according to cybersecurity … [Read more...]
AT&T Discloses Major Data Breach Affecting Approximately 70+ Million Accounts
DALLAS, TX - AT&T recently revealed a cybersecurity incident that exposed call and text message records for a significant portion of its customer base. The breach impacted nearly all of AT&T's cellular customers, along with customers of mobile virtual network operators (MVNOs) that utilize AT&T's network. Even some landline customers who interacted with AT&T cellular users during the timeframe are included. While the compromised data doesn't contain the … [Read more...]
Omni Hotels & Resorts Suffers Breach, Potentially Impacting Millions
DALLAS, TX - Last month, Omni Hotels & Resorts, a prominent hotel chain, experienced a cybersecurity breach that resulted in the theft of customer information. In an update on their website, Omni confirmed that the stolen data includes customer names, email addresses, postal addresses, and guest loyalty program information. However, financial information and Social Security numbers were not compromised. The breach was detected on March 29, prompting Omni to shut down … [Read more...]
World’s Biggest Ransomware Group Shut Down, Domains Seized in Global Operation
WASHINGTON, D.C. - The operations of infamous ransomware group LockBit have been shut down, their domains seized, and several high-ranking members placed under arrest as the result of a recent digital takedown carried out by an international law enforcement operation. Operation Cronos, the code name of a joint effort made up by agencies representing 11 countries – Australia, Canada, Finland, France, Germany, Japan, the Netherlands, Sweden, Switzerland, the United … [Read more...]
10 Billion Connections to Malicious Domains Blocked by NSA in 2023 via “PDNS”
WASHINGTON, D.C. - The National Security Agency (NSA) noted that 10 billion user connections to known malicious or suspicious domains were blocked over the course of the past year as part of the agency’s efforts, according to its 2023 Cybersecurity Year in Review report released on Tuesday. The NSA‘s annual report is a public account of the agency’s work with government partners, defense industrial base (DIB) entities, and foreign partners to help keep the nation secure, … [Read more...]
Hackers Take Control of Computer Network At Missouri Hospital; Demand Ransom
KANSAS CITY, MO - Liberty Hospital in Missouri fell victim to a grim cyber assault Tuesday when a menacing blackmail message from a hacker resulted in a disruption of its computer systems. A message from an anonymous source targeting the hospital warned, “We have hacked you and downloaded all confidential data of your company. Your reputation will be ruined. Save your business. Contact us within 72 hours.” This message itself was uncovered exclusively by KMBC-TV, an ABC … [Read more...]
Recently Discovered October 2023 Xfinity Hack Affects Nearly 36 Million Customers
PHILADELPHIA, PA - Leading internet service provider, Xfinity, recently released information regarding a major data breach that is expected to have affected millions of customers. The offenders exploited a vulnerability left by a patch, causing unauthorized access to software provider Citrix, a system used by Xfinity. It is important for Xfinity users to amend their usernames and passwords in response to this breach, even if their data has not been directly exposed. While … [Read more...]
“Prolific Puma” Created 75k Unique Domain Names Since April 2022 Used for Scams
SANTA CLARA, CA - Researchers from security vendor Infoblox have uncovered an actor known as “Prolific Puma” that has been revealed as having provided link shortening services for countless cyber criminals for a span of time of at least four years or longer, an act that has likely been responsible for an immense number of scams targeting innocent people. As an example of how Prolific Puma lives up to the "prolific” part of their name, the actor reportedly … [Read more...]
FEDs Seize 17 Domains Suspected of Being Used for Fraud in U.S. by North Korea
WASHINGTON, D.C. - On Wednesday, the United States Justice Department announced it has seized 17 website domains utilized by North Korean information technology (IT) workers to purportedly evade government sanctions, conduct cyberattacks and defraud U.S. businesses, with the millions of dollars in illicit proceeds generated from such activities being used to fund North Korea's weapon development program. The Justice Department confirmed in a statement that the … [Read more...]
Managed Care Confirms Serious Breach of Nearly 9 Million Patients’ Critical Info
ATLANTA, GA - Managed Care of North America, Inc. (MCNA), a major insurance company, suffered a data breach that exposed the personal information of nearly 9 million patients. The Atlanta-based company claims to be the largest dental insurer in the nation. According to reports, Hackers had access to MCNA systems from February 26 to March 7, 2023, compromising confidential patient information such as full names, addresses, birthdates, driver’s license numbers, phone … [Read more...]
PharMerica Discloses Data Breach That Exposes Info of Nearly 6 Million People
LOUISVILLE, KY - PharMerica, a national pharmacy network owned by BrightSpring Health, has informed nearly 6 million of their members that Social Security numbers, names, birthdates, medical information, and more was exposed in a data breach. The information was stolen between March 12 and March 13. If exploited, cybercriminals can use this information to commit identity theft. On March 14, 2023, we learned of suspicious activity on our computer network. Upon discovering … [Read more...]