Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: Insurance giant Globe Life finished the investigation into the data breach it suffered last June and says that the incident may have impacted an additional 850,000 customers. [...]
January 31st, 2025 (3 months ago)
|
|
|
Description: Mizuno USA, a subsidiary of Mizuno Corporation, one of the world's largest sporting goods manufacturers, confirmed in data breach notification letters that unknown attackers stole files from its network between August and October 2024. [...]
January 31st, 2025 (3 months ago)
|
|
|
Description: Check out the Cloud Security Alliance’s recommendations for rolling out AI apps securely. Meanwhile, a Deloitte survey found GenAI initiatives by cyber teams deliver highest ROI to their orgs. Plus, the NSA urges orgs to combat GenAI deepfakes with content provenance tech. And get the latest on CISO trends; patch management; and data breach prevention.Dive into six things that are top of mind for the week ending Jan. 31.1 - CSA: Best practices for secure AI implementationLooking for guidance on how to securely deploy AI systems? You might want to check out the Cloud Security Alliance’s new white paper “AI Organizational Responsibilities: AI Tools and Applications.”Published this week, the paper covers three key areas: the security of large language models and generative AI applications; supply chain management; and additional implementation elements, such as employee use of generative AI tools. Each of those three areas is analyzed according to six areas of responsibility for teams deploying AI systems:Evaluation criteria: To assess AI risks, organizations need quantifiable metrics. That way they’ll be able to measure elements such as model performance, data quality, algorithmic bias and vendor reliability.RACI model: It’s key to be clear about who is responsible, accountable, consulted and informed (RACI) regarding AI decisions, selection of tools and vendor management.High-level implementation strategies: Teams should outline the process for integrating AI tools and ap...
January 31st, 2025 (3 months ago)
|
|
|
Description: Mizuno USA has confirmed a data breach following claims by the BianLian ransomware group, which listed the company on its leak site and published stolen data. The attack resulted in unauthorized access to Mizuno's network, with sensitive information being exfiltrated over a two-month period in 2024. Mizuno USA is a subsidiary of Mizuno Corporation, a …
The post Mizuno USA Confirms Data Breach Following Ransomware Claim appeared first on CyberInsider.
January 31st, 2025 (3 months ago)
|
|
|
Description: Globe Life Inc. has disclosed new details regarding a cybersecurity incident involving an extortion attempt and the unauthorized access of sensitive customer data. The insurance provider confirmed that an unknown threat actor gained access to the personally identifiable information (PII) of approximately 855,000 individuals and attempted to extort the company by threatening to release the …
The post Globe Life Confirmed Data Breach Impacts 855,000 Customers appeared first on CyberInsider.
January 31st, 2025 (3 months ago)
|
|
|
Description: Community Health Center (CHC), a leading Connecticut healthcare provider, is notifying over 1 million patients that their personal and health information was stolen in an October breach. [...]
January 31st, 2025 (3 months ago)
|
|
|
Description: A dataset allegedly containing over 62 million records from the Brazilian lead generation platform Speedio has been listed for sale on a popular hacking forum. The breach, which includes 27 million unique email addresses, was recently added to Have I Been Pwned (HIBP) as an unverified data exposure, meaning it may originate from other sources. …
The post Speedio Reportedly Suffers Data Breach Exposing 62M Records appeared first on CyberInsider.
January 30th, 2025 (3 months ago)
|
|
|
Description: In December 2024, data alleged to have been taken from the Brazilian lead generation platform Speedio was posted for sale to a popular hacking forum. The data was allegedly obtained from an unsecured Elasticsearch instance and contained over 62M records of largely public business information including company names, phone numbers and physical addresses, along with 27M unique email addresses, predominantly from public services such as Gmail and Outlook. Speedio did not respond to multiple attempts to disclose the incident, and the origin of the data could not be independently verified. The data was provided to HIBP by a source who requested it be attributed to "[email protected]".
January 30th, 2025 (3 months ago)
|
|
|
Description: Graphics tablet maker Wacom has disclosed a potential data breach affecting customers who made purchases through its official online store. In a notification letter sent to impacted users, the company revealed that credit card details may have been exposed between November 28, 2024, and January 8, 2025. The incident is still under investigation, but Wacom …
The post Wacom Notifies E-Shop Customers of Credit Card Data Exposure appeared first on CyberInsider.
January 29th, 2025 (3 months ago)
|
|
|
Description: Ransomware attacks have reached an unprecedented scale in the healthcare sector, exposing vulnerabilities that put millions at risk. Recently, UnitedHealth revealed that 190 million Americans had their personal and healthcare data stolen during the Change Healthcare ransomware attack, a figure that nearly doubles the previously disclosed total.
This breach shows just how deeply ransomware
January 29th, 2025 (3 months ago)
|