Cybercriminals Skim Credit Card Numbers from the Oregon Zoo website
Description
On August 16, the Oregon Zoo reported on August 16 that the credit card information of more than 117,000 people who had visited the year was stolen. This discovery resulted from a 6 week long investigation into a payment skimming malware attack on the zoo’s payment platform, managed by a contracted vendor. The investigation began after suspicious activity was detected in June 2024 and (more…)
City in Ohio Avoids Devastating Ransomware Attack
Description
The city of Columbus, Ohio, had its communication and digital services impacted for almost two weeks following a cybersecurity incident that was detected on July 18, 2024. City officials clarified that the incident is entirely unrelated to the CrowdStrike incident that occurred during the same period. Email services have been completely down, and some computer services affecting public safety, utilities, and public health were (more…)
AT&T Data Breach Spurs Lawsuit and Action from Washington
Description
AT&T announced on July 12, 2024, that it had been a victim of a data breach. The company learned of the breach in April but delayed disclosing it at the request of federal investigators. The attack is attributed to unauthorized access to an AT&T workspace on a third-party cloud platform. Snowflake is a well-known data warehousing (more…)
One Security Breach Cripples 15,000 Car Dealers
Description
CDK Global is a leading Software-as-a-Service (SaaS) provider of integrated technology solutions to the automotive retail industry. According to a 2023 cybersecurity report published by CDK that focused on automobile dealerships, 17% of dealers reported experiencing a cyberattack or incident in 2023. That is an increase of 13% over the year prior. Of those that reported an attack, 46% said their business was impacted either (more…)
Live Nation Faced with Suit after Recent Data Breach
Description
A hacker group known as ShinyHunters, claims to have breached Ticketmaster’s systems and exfiltrated a staggering 1.3 terabytes of data belonging to approximately 560 million customers worldwide. Ticketmaster is an event ticket broker owned by the global entertainment company, Live Nation. The compromised data included names, addresses, phone numbers, credit card information, and other payment details (more…)
Elaborate Email Deception Scam Swindles $445,000 from Victim
Description
The town of Arlington, Massachusetts, discovered firsthand how well-organized cybercriminal organizations on the other side of the world can steal money from unsuspecting victims. On June 5, 2024, the Town Manager published a letter to the community outlining how the local municipality had fallen victim to a business email compromise (BEC) email scheme attack in which more than $445,000 was diverted to an account in control (more…)
Employees’ Personal Data Exposed in Automotive Ransomware Breach
Description
Nissan North America issued a letter to its employees on May 15, providing an update on a data breach involving the personal identifiable information of approximately 53,000 employees. The letter addressed a cybersecurity incident that occurred on November 7, 2023, during which unauthorized cybercriminals gained access to Nissan’s systems.
Initially, an investigation conducted by external experts immediately after the incident suggested that no personal information had (more…)
Dell Computer Data Breach Potentially Impacts 49 million Customers
Description
Dell Computer sent out data breach notifications to its customers alerting them of a data breach that may have compromised the data of as many as 49 million customers on May 8, 2024. According to the letter, the information obtained in the breach includes names, physical addresses, and details related to the customer’s Dell purchase, such as the seven-digit service tag, system serial (more…)
