The breach was discovered on December 28, 2024, when unauthorized access to customer information was detected on their PowerSource customer support platform. Some impacted districts reported unauthorized activity as early as December 22.
A new threat group identified as Hellcat claims to have stolen sensitive user data after breaching Schneider Electric's Jira system. The alleged attack compromised critical information, including over 400,000 rows of user data, totaling more than 40GB.
In June, the NJCCIC reported on a previous ClickFix campaign that used PowerShell scripts to drop malicious payloads. Recently, ClickFix was identified in two separate phishing campaigns. In one of these campaigns , the threat actors hacked into over 6,000 WordPress sites.
Analysts recently discovered at least one Advanced Persistent Threat (APT) actor actively exploiting CVE-2024-39717. The vulnerability impacts Versa’s Director GUI platform, which potentially allows malicious files to be uploaded by users with Provider-Data-Center-Admin and more.
National Public Data, a Florida-based company that aggregates consumers’ data to provide background checks, confirmed that they experienced a data breach. On April 7, the cybercriminal USDoD posted 2.9 billion rows of data on Breachforums for $3.5 million.
Approximately 109 million AT&T customers' call logs were compromised in a significant data breach. The company's breached information was stored online in its Snowflake database. Multiple organizations reported subsequent breaches following Snowflake's.
Researchers have been tracking the activity of a newly discovered threat actor group, Unfurling Hemlock, that may have been active for a while due to finding similar characteristics in older campaigns. These threat actors have distributed over 50,000 malware samples.
Everbridge, a software company, has informed its customers that threat actors gained access to files containing business and user data in a recent breach of its corporate systems. The company offers public warning, crisis management, and risk intelligence services.
Multiple organizations using Snowflake, a cloud data analysis company, disclosed that they were breached. The data platform is used by 9,437 customers, including some of the largest companies worldwide, such as AT&T, Capital One, US Foods, Western Union, and many others.
Researchers discovered a new Redline campaign targeting gamers with promises of free copies of a game cheat software called Cheat Lab. Redline is an information-stealing malware capable of acting as a backdoor, carrying out tasks and exfiltrating data.
