Hacker News with Generative AI: Data Breaches

TeleMessage Customers Include DC Police, Andreessen Horowitz, JP Morgan,Hundreds (micahflee.com)
I've been digging through the 410 GB of Java heap dumps from TeleMessage's archive server, provided by DDoSecrets. Here's a description of the dataset, some of my initial findings, details about an upcoming open source research tool I'm going to release, and a huge list of potential TeleMessage customers.

Data Breaches, Privacy, Law Enforcement, Finance, Technology

176 points by Bluestein 12 days ago | 1 comments

Data breach exposes 184M passwords, likely captured by malware (zdnet.com)
Yet another data breach has exposed passwords and other sensitive information – but this one is a whopper.

Data Breaches, Cybersecurity, Malware

143 points by taubek 12 days ago | 94 comments

Suspected InfoStealer Malware Data Breach Exposed 184M Logins/Passwords (websiteplanet.com)
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to Website Planet about a non-password-protected database that contained 184 million login and password credentials.

Cybersecurity, Data Breaches, Malware, Password Security, Login Credentials

9 points by frizlab 16 days ago | 0 comments

Hacker who breached comms app used by Trump aide stole data from across US govt (yahoo.com)
A hacker who breached the communications service used by former Trump national security adviser Mike Waltz earlier this month intercepted messages from a broader swathe of American officials than has previously been reported, according to a Reuters review, potentially raising the stakes of a breach that has already drawn questions about data security in the Trump administration.

Cybersecurity, Politics, Government, Data Breaches, Trump Administration

6 points by rmason 17 days ago | 1 comments

Coinbase says its data breach affects at least 69k customers (techcrunch.com)
Coinbase said at least 69,461 customers had personal and financial information stolen during a months-long data breach that it disclosed last week.

Data Breaches, Cybersecurity, Cryptocurrency, Coinbase

22 points by Sourabhsss1 17 days ago | 13 comments

Coinbase Data Breach Will Lead to People Dying, TechCrunch Founder Says (decrypt.co)
The founder of online news publication TechCrunch has claimed that Coinbase’s recent data breach “will lead to people dying,” amid a wave of kidnap attempts targeting high-net-worth crypto holders.

Cryptocurrency, Cybersecurity, Crime, Data Breaches

20 points by thm 18 days ago | 10 comments

Have I Been Pwned 2.0 (troyhunt.com)
This has been a very long time coming, but finally, after a marathon effort, the brand new Have I Been Pwned website is now live!

Security, Privacy, Data Breaches

880 points by LorenDB 19 days ago | 305 comments

'Significant amount' of private data stolen in UK Legal Aid hack (bbc.co.uk)
A "significant amount" of private data including details of domestic abuse victims has been hacked from Legal Aid's online system.

Cybersecurity, Data Breaches, Legal Issues, UK News

51 points by neversaydie 19 days ago | 40 comments

M&S hackers believed to have gained access through third party (bbc.co.uk)
The hackers behind a cyber-attack on Marks & Spencer (M&S) managed to gain entry through a third party who had access to its systems, the BBC understands.

Cybersecurity, Data Breaches, Retail, Technology, Business

5 points by mmarian 20 days ago | 0 comments

Coinbase says customers' personal information stolen in data breach (techcrunch.com)
Crypto giant Coinbase has confirmed its systems have been breached and customer data, including government-issued identity documents, were stolen.

Data Breaches, Cybersecurity, Crypto, Coinbase

5 points by riffraff 22 days ago | 0 comments

California sent residents' personal health data to LinkedIn (themarkup.org)
The website that lets Californians shop for health insurance under the Affordable Care Act, coveredca.com, has been sending sensitive data to LinkedIn, forensic testing by The Markup has revealed.

Privacy, Healthcare, Data Breaches, California, Social Media

185 points by anticorporate 23 days ago | 114 comments

Coinbase says customers’ personal information stolen in data breach (techcrunch.com)
Crypto giant Coinbase has confirmed its systems have been breached and customer data, including government-issued identity documents, were stolen.

Cryptocurrency, Security, Data Breaches, Coinbase

14 points by jbegley 23 days ago | 1 comments

A note about the security of your Steam account (steampowered.com)
The account details of 89 million Steam users have reportedly been hacked.

Cybersecurity, Data Breaches, Gaming, Steam

16 points by taubek 23 days ago | 8 comments

89M Steam account details just got leaked (xda-developers.com)

Data Breaches, Security, Gaming, Steam

10 points by github3012 24 days ago | 1 comments

North Korean IT Workers Are Being Exposed on a Scale (wired.com)
Security researchers are publishing 1,000 email addresses they claim are linked to North Korean IT worker scams that infiltrated Western companies—along with photos of men allegedly involved in the schemes.

Cybersecurity, North Korea, Data Breaches, Hacking, IT Workers

18 points by Brajeshwar 24 days ago | 7 comments

DOGE engineer's credentials found in past public leaks from info-stealer malware (arstechnica.com)
Login credentials belonging to an employee at both the Cybersecurity and Infrastructure Security Agency and the Department of Government Efficiency have appeared in multiple public leaks from info-stealer malware, a strong indication that devices belonging to him have been hacked in recent years.

Cybersecurity, Data Breaches, Government, Malware

293 points by lysp 29 days ago | 163 comments

DOGEs K Schutt's computer infected by malware, credentials found in stealer logs (micahflee.com)
Kyle Schutt is a 37 year old "DOGE software engineer," according to ProPublica. In February, Drop Site News reported that he gained access to FEMA's "core financial management system." His computer was apparently compromised with malware, because his email address and passwords have shown up in four separate stealer log datasets, all of them published since late 2023.

Cybersecurity, Malware, Data Breaches, Software Engineering

32 points by cycomanic 30 days ago | 4 comments

LockBit Hacked – Plaintext Passwords (gbhackers.com)
The notorious LockBit ransomware group, once considered one of the world’s most prolific cyber extortion rings, has itself become the victim of a major cyberattack.

Cybersecurity, Ransomware, Data Breaches, LockBit

15 points by 1armsteve 30 days ago | 0 comments

Tulsi Gabbard Reused the Same Weak Password on Multiple Accounts for Years (wired.com)
Tulsi Gabbard, the director of national intelligence, used the same easily cracked password for different online accounts over a period of years, according to leaked records reviewed by WIRED.

Cybersecurity, Politics, Data Breaches, Privacy

10 points by JohnTHaller 31 days ago | 1 comments

TeleMessage suspends services after hackers claim to have stolen files (nbcnews.com)

Cybersecurity, Data Breaches, Hacking, Telecommunications

12 points by ceejayoz 33 days ago | 0 comments

The Signal Clone the Trump Admin Uses Was Hacked (micahflee.com)
A hacker has breached and stolen customer data from TeleMessage, an obscure Israeli company that sells modified versions of Signal and other messaging apps to the U.S. government to archive messages, 404 Media has learned.

Security, Government, Messaging Apps, Data Breaches

18 points by speckx 33 days ago | 0 comments

Reddit data breach: undeletes all your post & comments, again ... (reddit.com)
Dedicated to the intersection of technology, privacy, and freedom in the digital world.

Data Breaches, Reddit, Privacy, Technology

10 points by ballerburg9006 37 days ago | 6 comments

Banking passwords stolen from Australians are being traded online by criminals (abc.net.au)
More than 31,000 passwords belonging to Australian customers of the Big Four banks are being shared amongst cyber criminals online, often for free, the ABC can reveal.

Cybersecurity, Australia, Banking, Data Breaches, Crime

8 points by testrun 39 days ago | 3 comments

From 112k to 4M folks' data – HR biz attack goes from bad to mega bad (theregister.com)
Houston-based VeriSource Services' long-running probe into a February 2024 digital break-in shows the data of 4 million people – not just a few hundred thousand as it first claimed - was accessed by an "unknown actor".

Data Breaches, Cybersecurity, Business, Technology, HR

6 points by rntn 40 days ago | 0 comments

More than 21M employee screenshots leaked from WorkComposer (tomsguide.com)

Data Breaches, Cybersecurity, Privacy, Business, Software

12 points by ronalbarbaren 40 days ago | 1 comments

Top employee monitoring app leaks 21M screenshots on users (techradar.com)

Privacy, Cybersecurity, Data Breaches, Employee Monitoring

42 points by mooreds 42 days ago | 6 comments

Blue Shield says it shared health info on up to 4.7M patients with Google Ads (theregister.com)
US health insurance giant Blue Shield of California handed sensitive health information belonging to as many as 4.7 million members to Google's advertising empire, likely without these individuals' knowledge or consent.

Health Data, Privacy, Google Ads, Healthcare, Data Breaches

23 points by Bender 44 days ago | 2 comments

Ransomware scum bilked victims out of a 'staggering' $16.6B last year, says FBI (theregister.com)
Digital scammers and extortionists bilked businesses and individuals in the US out of a "staggering" $16.6 billion last year, according to the FBI — the highest losses recorded since bureau’s Internet Crime Complaint Center (IC3) started tracking them 25 years ago.

Cybersecurity, Crime, Data Breaches, FBI

9 points by LinuxBender 45 days ago | 0 comments

Blue Shield shared the private health data of millions with Google for years (techcrunch.com)
Health insurance giant Blue Shield of California is notifying millions of people of a data breach. The company confirmed on Wednesday that it had been sharing patients’ private health information with tech and advertising giant Google since 2021.

Data Privacy, Health Insurance, Google, Data Breaches

9 points by coloneltcb 45 days ago | 2 comments

Whistleblower: DOGE siphoned NLRB case data (krebsonsecurity.com)
A security architect with the National Labor Relations Board (NLRB) alleges that employees from Elon Musk‘s Department of Government Efficiency (DOGE) transferred gigabytes of sensitive data from agency case files in early March, using short-lived accounts configured to leave few traces of network activity.

Data Breaches, Cybersecurity, Labor Law, Elon Musk, Government Efficiency

35 points by todsacerdoti 47 days ago | 4 comments