Data Breach Today

JANUARY 3, 2024

Archived Data Stolen 2 Months After Sale of Business Affects Patients, Employees A defunct ambulance company is notifying nearly 912,000 patients and employees that their archived records were compromised in an early 2023 data theft hack.

Archiving 286

Archiving Sales 286

Data Breach Today

OCTOBER 24, 2024

Also: Payment Card Theft Trends, Internet Archive Update This week, bulk data transfers to China, credit card theft, the Internet Archive still recovering and the Change Healthcare tally is now 100M. Ukraine fought phishers, civil society against the UN cybercrime treaty, TA866 and virtual hard drives spread malware.

Sales 283

Sales Archiving Security 283

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet Archive was breached via Zendesk, with users receiving warnings about stolen GitLab tokens due to improper token rotation after repeated alerts.

Archiving 135

Archiving Data breaches Authentication File names 135

Security Affairs

NOVEMBER 22, 2021

Memento ransomware group locks files inside WinRAR password-protected archives after having observed that its encryption process is blocked by security firms. The ransomware copies files into password-protected WinRAR archives, it uses a renamed freeware version of the legitimate file utility WinRAR. Pierluigi Paganini.

Archiving 145

Archiving Passwords Ransomware Access 145

Krebs on Security

AUGUST 19, 2024

Following last week’s story on the breadth of the NPD breach , a reader alerted KrebsOnSecurity that a sister NPD property — the background search service recordscheck.net — was hosting an archive that included the usernames and password for the site’s administrator.

Passwords 359

Passwords IT Archiving Data breaches 359

Record Nations

APRIL 12, 2024

Data archiving is the process of storing and preserving electronic data to ensure your information is safe and protected over time. The goal of data archiving is to simplify data management, reduce costs, maintain regulatory compliance, and improve operational efficiency.

Archiving 95

Archiving Compliance Cloud 95

Data Breach Today

DECEMBER 11, 2020

Experts Say Attack is Textbook Example of Hack and Extort Campaign A 4GB data archive belonging to Panasonic India has been released by a hacker who waged an extortion plot. The company says no highly confidential data was revealed, but a look at the data suggests otherwise.

Archiving 299

Archiving 299

Data Breach Today

OCTOBER 18, 2023

While RARLabs Patched Flaw, 'Many Users' Don't Appear to Have Updated the Software Nation-state hackers are targeting a vulnerability in WinRAR, a popular Windows utility for archiving files, warns Google’s Threat Analysis Group, which said it has seen "government-backed hacking groups" who hail from multiple countries, including China and Russia, (..)

Archiving 302

Archiving Government IT 302

Data Breach Today

JANUARY 11, 2021

Archiving, Crowdsourcing and Facial Recognition Help Identify Suspects for FBI Investigators probing the violent storming of the U.S. Capitol by a mob on Wednesday have been seeking images and help in identifying suspects.

Archiving 283

Archiving 283

WIRED Threat Level

OCTOBER 9, 2024

The hack exposed the data of 31 million users as the embattled Wayback Machine maker scrambles to stay online and contain the fallout of digital—and legal—attacks.

Archiving 143

Archiving Security 143

Data Breach Today

MAY 3, 2023

Ukraine Links Attacks to Russian Intelligence Sandworm Hackers Ukrainian cyber defenders say they spotted a malicious script used to activate the delete option on a Windows file archiving utility likely planted by the Russian intelligence agency unit Sandworm. CERT-UA says attackers likely used a compromised VPN credential to gain access.

Archiving 269

Archiving Access 269

Collaboration 2.0

OCTOBER 29, 2024

Though the Internet Archive may appear on the surface as just one service, it actually provides a variety of resources.

Archiving 96

Archiving IT 96

Data Breach Today

FEBRUARY 18, 2021

California Medical Imaging Group Describes Data Exposure A California medical imaging group practice says vulnerabilities in its picture archiving and communications system left patient data at risk of unauthorized access for more than a year.

Risk 243

Risk Archiving Communications Access 243

Collaboration 2.0

OCTOBER 21, 2024

Following last month's devastating cyberattacks, there's good news and bad news about Internet Archive and its popular Wayback Machine.

Archiving 76

Archiving IT 76

Collaboration 2.0

OCTOBER 10, 2024

A DDoS attacker that knocked the popular archive site offline has stolen millions of usernames, email addresses, and encrypted passwords.

Archiving 75

Archiving Encryption Passwords 75

Data Breach Today

JULY 29, 2024

Threat Actors Profit from GitHub's Inauthentic Accounts Network Hackers apparently stymied by improved network detection of malware are turning to fake GitHub repositories to host malicious links and archives embedded with viruses.

Archiving 182

Archiving 182

Security Affairs

JULY 20, 2024

The attackers attempted to trick the company’s customers into opening a ZIP archive file named “ crowdstrike-hotfix.zip.” ” The archive includes a loader named Hijack Loader used to execute the Remcos RAT. The ZIP archive contains a HijackLoader payload that, when executed, loads RemCos.

File names 145

File names Archiving Cybersecurity Communications 145

Security Affairs

DECEMBER 23, 2021

In the initial attacks observed by the researchers, the malicious code downloads a Microsoft Cabinet (CAB) archive containing a malicious executable. When Microsoft’s patch closed that loophole, attackers discovered they could use a different attack chain altogether by enclosing the maldoc in a specially-crafted RAR archive.”reads

Archiving 145

Archiving File names Security Ransomware 145

Data Breach Today

DECEMBER 17, 2024

APT Group Uses Sophisticated Attack Chain to Deploy WmRAT and MiyaRAT A suspected South Asian threat actor targeted a Turkish defense organization, deploying malware via a RAR archive and using alternate data streams to deliver remote access Trojans.

Archiving 130

Archiving Access 130

Security Affairs

NOVEMBER 26, 2024

VXunderground archived the leak and published it on GitHub. We’ve archived the leak and made it available for download on GitHub.” We've archived the leak and made it available for download on GitHub. The operators behind the MaaS have shut down their operations after the data leak.

Archiving 144

Archiving Encryption Passwords IT 144

AIIM

NOVEMBER 14, 2023

The National Archives and Records Administration (NARA) is the nation's record keeper. We identify, protect, preserve, and make publicly available the historically valuable records of all three branches of the federal government. NARA is also the nation’s records manager. That is to say, NARA’s Office of the Chief Records Officer for the U.S.

Records Management 156

Records Management Archiving Government Digital preservation 156

Security Affairs

MARCH 7, 2024

export=download&id=1uRaMFq3jVR3yhcdRbBvuGdq-jLBLKtTH drops /kholapqua.com/Document.zip [link] pic.twitter.com/Y9CpY8xyLU — idclickthat (@idclickthat) August 17, 2023 Threat actors sent Facebook messenger direct messages to the victims attempting to trick them into downloading archive files such as RAR or ZIP files.

Archiving 143

Archiving Cybersecurity IT Information Security 143

Krebs on Security

JUNE 21, 2020

In a post on Twitter , DDoSecrets said the BlueLeaks archive indexes “ten years of data from over 200 police departments, fusion centers and other law enforcement training and support resources,” and that “among the hundreds of thousands of documents are police and FBI reports, bulletins, guides and more.”

Archiving 364

Archiving Government Risk Security 364

Security Affairs

FEBRUARY 29, 2024

The PDF included a link to a fake questionnaire that redirects users to a mailcious ZIP archive hosted on a compromised site. The ZIP archive contains an HTA file named wine.hta that contains obfuscated JavaScript code. The JavaScript code retrieves an encoded ZIP archive containing WINELOADER from the same domain.

Archiving 138

Archiving File names IT Information Security 138

Security Affairs

MAY 25, 2024

com : Distributes a ZIP archive file (“setup-win-x86-x64.exe.zip”) pro : Distributes a RAR archive file (“MBSetup.rar”) that was used to deploy the StealC information stealer malware. Below is the list of malicious websites analyzed by the researchers: avast-securedownload[.]com bitdefender-app[.]com

Archiving 141

Archiving Mining Information Security IT 141

Krebs on Security

JANUARY 17, 2019

Here’s a screenshot of a subset of that seller’s current offerings, which total almost 1 Terabyte of stolen and hacked passwords: The 87GB “Collection1” archive is one of but many similar tranches of stolen passwords being sold by a particularly prolific ne’er-do-well in the underground.

Passwords 54

Passwords Archiving Authentication Data breaches 54

Schneier on Security

FEBRUARY 1, 2024

Consumer Reports is reporting that Facebook has built a massive surveillance network: Using a panel of 709 volunteers who shared archives of their Facebook data, Consumer Reports found that a total of 186,892 companies sent data about them to the social network. The Markup helped Consumer Reports recruit participants for the study.

Archiving 140

Archiving Privacy IT Data Privacy 140

Security Affairs

SEPTEMBER 16, 2022

The archive holds a text file containing an IP address and login credentials, and an a backdoored version of PuTTY that was used to load a dropper called DAVESHELL, which deploys a newer variant of a backdoor dubbed AIRDRY. . “The initial lead was a file downloaded to the host named amazon_assessment.iso.

Archiving 140

Archiving Communications Phishing Access 140

Security Affairs

APRIL 22, 2024

The disclosure of data in the archive poses a threat to the individuals whose data it contains. In August 2015, journalists from BBC’s Radio 4 gained 30 minutes of access thanks to the support of a disgruntled customer and demonstrated that the designations in the archive were inaccurate. LSEG acquired Refinitiv is 2021.

Risk 142

Risk Archiving Access Privacy 142

Security Affairs

MAY 14, 2022

The collective has released a 130 GB archive via DDoSecrets that contains nearly 116,500 emails. The collective has stolen over 7,000 emails from the Achinsk city government and leaked an 8.5GB archive via DDoSecrets. The collective has released a 106 GB archive via DDoSecrets that contains nearly 77,500 emails.

Archiving 144

Archiving Mining Government Cybersecurity 144

Security Affairs

JANUARY 17, 2024

The log file is stored in a sysdiagnose (sysdiag) archive. .” The researchers pointed out that retrieving the Shutdown.log file is easy and allows for time savings compared to other forensic techniques. The lightweight nature of this method makes it readily available and accessible.

Archiving 143

Archiving Cybersecurity IT Access 143

Security Affairs

JULY 31, 2024

IMG (translation: ORDER_NO) and the file itself was either an ISO file or archive.” In the other case, when a RAR archive was sent as an attachment, the content was a heavily obfuscated batch script, with the same name as the archive and with the .cmd These attachments had names like RFQ8219000045320004.tar

Phishing 140

Phishing Archiving Information Security IT 140

Security Affairs

OCTOBER 9, 2024

The implant was distributed through malicious URLs in phishing emails, while the attackers used methods like self-extracting archives and Golang droppers in previous campaigns. The Awaken Likho group is now using a 7-Zip self-extracting archive that displays a decoy document while covertly installing the MeshAgent tool.

Government 128

Government Archiving Phishing Access 128

Security Affairs

AUGUST 17, 2024

Researchers from VX-underground reviewed the archive (277.1GB uncompressed) and confirmed the that data is real and accurate. The archive also contains data on deceased individuals. “Many of these files are archives themselves, with many of those then containing yet more archives.

Data breaches 144

Data breaches Archiving Sales Personal data 144

Security Affairs

JULY 20, 2024

The attackers attempted to trick the company’s customers into opening a ZIP archive file named “ crowdstrike-hotfix.zip.” ” The archive includes a loader named Hijack Loader used to execute the Remcos RAT. The ZIP archive contains a HijackLoader payload that, when executed, loads RemCos.

File names 101

File names Archiving Cybersecurity Communications 101

Security Affairs

AUGUST 21, 2024

The phishing messages include images of alleged prisoners of war from the Kursk region, the content is crafted to trick the recipients into clicking on a link pointing to a ZIP archive (“spysok_kursk.zi”).

Phishing 135

Phishing Archiving IT Information Security 135

Security Affairs

JANUARY 2, 2024

The content of the messages attempted to trick the recipients into opening a password-protected RAR archive. Once the archive is opened, the infection chain starts leading to the deployment of the JinxLoader payload. The attack spotted by the researchers used phishing messages posing as Abu Dhabi National Oil Company (ADNOC).

Archiving 143

Archiving Passwords Phishing IT 143