Description

Rackspace is a managed cloud computing provider based in San Antonio, Texas, that offers cloud hosting, dedicated servers, and multi-cloud solutions. The company servers than 300,000 customers across the world, including two-thirds of the world’s largest public traded companies. On the morning of September 24, 2024, Rackspace fell victim to a cyberattack that exploited a zero-day vulnerability in a monitoring application provided by ScienceLogic. (more…)

Description

See Tickets, a global ticketing services company, detected suspicious activity on several of its e-commerce platforms in May of 2023. A subsequent investigation revealed that cybercriminals had injected malicious code into the company’s checkout pages. This unauthorized code enabled the attackers to capture customer information transactions processed between February 28, 2023, and July 2, 2023. The compromised data included names, addresses, zip codes, payment card (more…)

Description

The mayor of Plymouth, Connecticut reported on the mayor’s office Facebook page that the town had fallen victim to a sophisticated social engineering scam. Cybercriminals had compromised the accounts of one of the town’s vendors a month earlier, gaining access to information about an ongoing project for the town. Using this knowledge, the scammers sent fraudulent invoices to the town’s financial department. While the (more…)

Description

FlightAware, based in Houston, Texas, is renowned for delivering real-time, historical, and predictive flight insights to various segments of the aviation industry, including airlines, airports, and air traffic control. On July 25, the company identified a configuration error in its backend systems that had exposed personal user information for over three years, allowing unauthorized access. In response, the company’s President issued a letter to (more…)

Description

On August 16, the Oregon Zoo reported on August 16 that the credit card information of more than 117,000 people who had visited the year was stolen. This discovery resulted from a 6 week long investigation into a payment skimming malware attack on the zoo’s payment platform, managed by a contracted vendor. The investigation began after suspicious activity was detected in June 2024 and (more…)

Description

AT&T announced on July 12, 2024, that it had been a victim of a data breach. The company learned of the breach in April but delayed disclosing it at the request of federal investigators. The attack is attributed to unauthorized access to an AT&T workspace on a third-party cloud platform. Snowflake is a well-known data warehousing (more…)

Description

CDK Global is a leading Software-as-a-Service (SaaS) provider of integrated technology solutions to the automotive retail industry. According to a 2023 cybersecurity report published by CDK that focused on automobile dealerships, 17% of dealers reported experiencing a cyberattack or incident in 2023. That is an increase of 13% over the year prior. Of those that reported an attack, 46% said their business was impacted either (more…)