COVID-19-related exploitation and abuse is on the rise as vaccine data opens new frontiers for threat actors. [...]

Attackers stole tens of millions of current, former or prospective customers' personal data, the company confirmed. It's providing 2 years of free ID protection. [...]

Fresh attacks target companies' employees, promising millions of dollars in exchange for valid account credentials for initial access. [...]

The seller claims to have sucker-punched U.S. infrastructure out of retaliation. The offer: 30m records for ~1 penny each, with the rest being sold privately. [...]

Data theft, insider threats and imposters accessing sensitive customer data have apparently gotten so bad inside Amazon, the company is considering rolling out keyboard-stroke monitoring for its customer-service reps. A confidential memo from inside Amazon explained that customer service credential abuse and data theft was on the rise, according …

A dump of hundreds of thousands of active accounts is aimed at promoting AllWorld.Cards, a recently launched cybercriminal site for selling payment credentials online. [...]

Mass email distribution service compromise mirrors earlier Nobelium attacks. [...]

Employee email takeover exposed personal, medical data of students, employees and patients. [...]

Using a lure relating to a lawsuit against the owner of Jack Daniels whiskey, the cybergang launched a campaign that may be bent on ransomware deployment. [...]

The vendor will work with customers affected by the early July spate of ransomware attacks to unlock files; it's unclear if the ransom was paid. [...]

Expected cyberattacks on Tokyo Olympics likely include attempts to hijack video feeds, the Feds warn. [...]

Deep-pocketed clients' customers & suppliers could be in the attacker's net, with potential PII exposure from an A-list clientele such as Apple, Boeing and IBM. [...]

Chris Hass, director of information security and research at Automox, discusses the future of work: A hybrid home/office model that will demand new security approaches. [...]

An attack on Guess compromised the personal and banking data of 1,300 victims. [...]

REvil ransomware gang lowers price for universal decryptor after massive worldwide ransomware push against Kaseya security vulnerability CVE-2021-30116. [...]

LimeVPN has confirmed a data incident, and meanwhile its website has been knocked offline. [...]

A refined database of 88K U.S. business owners on LinkedIn has been posted in a hacker forum. [...]

Kerry Matre, senior director at Mandiant, discusses the appropriate metrics to use to measure SOC and analyst performance, and how MTTR leads to bad behavior. [...]

After 500 million LinkedIn enthusiasts were affected in a data-scraping incident in April, it's happened again - with big security ramifications. [...]

American IT companies and government have been targeted by the Nobelium state-sponsored group. [...]

Every Sony PlayStation 3 ID out there was compromised, provoking bans of legit players on the network. [...]

The infamous ransomware group hit two big-name companies within hours of each other. [...]

A May 6 ransomware attack caused disruption across several of the municipality’s online services and websites. [...]

Approximately 38,000 of RBA's customers had their embryology data stolen by a ransomware gang. [...]

This is the fourth time in a bit over a year that Carnival’s admitted to breaches, with two of them being ransomware attacks. [...]