JULY 24, 2024
1. Phishing Attack on US Schools:
- The Tycoon and Storm-1575 threat groups have targeted large US school districts using sophisticated phishing techniques to bypass multi-factor authentication protections and steal Microsoft 365 credentials (TechRadar).
2. Life360 API Breach:
- A vulnerability in Life360's login API allowed a threat actor to leak the personal information of 442,519 customers (BleepingComputer).
3. MediSecure Ransomware Attack:
- Australian prescription delivery service MediSecure experienced a ransomware attack in April, resulting in the theft of personal and health information of approximately 12.9 million people (BleepingComputer).
4. MarineMax Data Breach:
- MarineMax, the world's largest recreational boat and yacht retailer, reported a data breach affecting over 123,000 customers. The breach, claimed by the Rhysida ransomware gang, exposed sensitive customer information (BleepingComputer).
5. AT&T Data Breach:
- AT&T suffered a significant data breach, exposing the call logs of around 109 million customers. The breach was linked to a database on the company's Snowflake account (BleepingComputer).
6. Trello Data Leak:
- Trello, a project management tool, had over 15 million email addresses leaked due to an unsecured API. This data was collected and released on a hacking forum, posing potential risks for phishing attacks (BleepingComputer) (Cyware).
7. Rite Aid Ransomware Attack:
- Rite Aid confirmed that a ransomware attack in June led to a data breach impacting 2.2 million customers. The incident was attributed to the RansomHub ransomware group (BleepingComputer).
8. OpenSSH Vulnerability:
- A critical OpenSSH vulnerability, known as regreSSHion (CVE-2024-6387), has been identified. While exploitation attempts have been seen, mass attacks are considered unlikely at this time (SecurityWeek).
These incidents highlight the ongoing and evolving threats in the cybersecurity landscape, emphasizing the need for robust security measures and vigilance to protect sensitive data.