Data Breach | SC Media

Data Breach

20M Aptoide accounts exposed by leak on hacker forum

More than 20 million accounts registered with the software marketplace application Aptoide have been reportedly exposed after a unknown actor posted stolen user data on a hacking forum. Researchers with Under the Breach discovered the data dump and disclosed the incident via Twitter. ZDNet reported additional details the same day. Aptoide is a blockchain-based decentralized…

23 million Webkinz login credentials found on the dark web

The popular children’s website Webkinz suffered a massive data breach earlier this month that saw about 23 million user login credentials exposed on a dark web forum. The data was spotted by Under the Breach which found 1GB of data containing usernames and encrypted passwords, according to ZDNet. Reportedly, the attackers exploited a SQL injection…

Nation-state hackers reportedly hunting for COVID-19 research

Foreign state-sponsored hackers are reportedly targeting companies tasked with researching COVID-19, in some cases intruding into systems and performing reconnaissance. FBI Deputy Assistant Director Tonya Ugoretz acknowledged the cyber espionage activity in an online panel discussion organizations by the Aspen Institute, Reuters has reported. Ugoretz reportedly said that when companies publicly disclose that they are…

Collectibles app’s user credentials collected, posted on dark web forum

A post on a dark web hacking forum has exposed four million user credentials that were taken from Quidd, an app designed for trading collectibles featuring popular brands, entertainment properties and fictional characters. Risk-Based Security reported via a company blog post that its Data Breach Research discovered the pilfered data, which the forum is not…

Compromised email account leads to Saint Francis Ministries data breach

An unauthorized party gained entry into an an employee’s email account at Saint Francis Ministries, accessing sensitive personal identifying information, as well as financial and protected health data. In an online notification and corresponding press release, the Salina, Kan.-based non-profit organization said the actor accessed the account between Dec. 13 and 20 of 2019. Saint…

San Francisco airport websites hacked to swipe personal device credentials

Two websites affiliated with San Francisco International Airport (SFO) were compromised with code last March, allowing attackers to steal device login credentials from users who visited these sites, airport officials have disclosed. The breach affected the websites SFOConnect.com, which appears to deliver informational content to the SFO workforce, and SFOConstruction.com, which includes details on airport…

Travelex paid $2.3 million ransom, report

Travelex reportedly shelled out a $2.3 million ransom payment after being struck on New Year’s Eve with REvil/Sodinokibi ransomware. The company has not publicly stated it paid the ransom, but The Wall Street Journal reported that sources have indicated otherwise. In early January it was believed the attackers were seeking $3 million to release the…

Next post in Data Breach