Fashion giant Dior discloses cyberattack, warns of data breach 

House of Dior, the French luxury fashion brand commonly referred to as Dior, has disclosed a cybersecurity incident that has exposed customer information. 

Source: https://www.bleepingcomputer.com/news/security/fashion-giant-dior-discloses-cyberattack-warns-of-data-breach/
  

Marks & Spencer Confirms Customer Data Stolen in Cyberattack 

UK retailer Marks & Spencer (M&S) has revealed that the personal information of its customers, including telephone numbers, home addresses, and dates of birth, was stolen in a recent cyberattack on the company. 

Source: https://www.darkreading.com/threat-intelligence/marks-spencer-confirms-customer-data-stolen
  

Hackers behind UK retail attacks now targeting US companies 

Google warned today that hackers using Scattered Spider tactics against retail chains in the United Kingdom have also started targeting retailers in the United States. 

Source: https://www.bleepingcomputer.com/news/security/google-scattered-spider-switches-targets-to-us-retail-chains/
  

Australian Human Rights Commission leaks docs to search engines 

The Australian Human Rights Commission (AHRC) disclosed a data breach incident where private documents leaked online and were indexed by major search engines. 

Source: https://www.bleepingcomputer.com/news/security/australian-human-rights-commission-leaks-docs-to-search-engines/
  

Steel giant Nucor Corporation facing disruptions after cyberattack 

A cybersecurity incident on Nucor Corporation’s systems, the largest steel producer in the U.S., forced the company to take offline parts of its networks and implement containment measures. 

Source: https://www.bleepingcomputer.com/news/security/steel-giant-nucor-corporation-facing-disruptions-after-cyberattack/
  

Insight Partners Data Breach: Bigger Impact Than Anticipated 

Nearly three months ago, global venture capital and private equity firm Insight Partners confirmed it had fallen victim to a data breach. Now, details are emerging, and it says that based on the ongoing investigation, the affected data may include fund, management company, and portfolio information, banking and tax information, and the personal information of current and former employees. 

Source: https://www.darkreading.com/threat-intelligence/insight-partners-data-breach-bigger-impact
  

Nation State-Actors Attacking Healthcare Institutions to Sabotage IT & OT Systems 

The healthcare sector faces an unprecedented surge in cyberattacks from nation-state actors seeking to disrupt critical IT infrastructure and operational technology (OT) systems. 

Source: https://cybersecuritynews.com/nation-state-actors-attacking-healthcare-institutions/
  

Twilio denies breach following leak of alleged Steam 2FA codes 

Twilio has denied in a statement for BleepingComputer that it was breached after a threat actor claimed to be holding over 89 million Steam user records with one-time access codes. 

Source: https://www.bleepingcomputer.com/news/security/twilio-denies-breach-following-leak-of-alleged-steam-2fa-codes/
  

Attackers Lace Fake Generative AI Tools With ‘Noodlophile’ Malware 

An attacker is offering supposed generative AI tools to users in Facebook groups, only to give them malware once they upload their media to the fraudulent “tool.” 

Source: https://www.darkreading.com/endpoint-security/attackers-fake-generative-ai-tools-malware
  

Ascension says recent data breach affects over 430,000 patients 

Ascension, one of the largest private healthcare systems in the United States, has revealed that the personal and healthcare information of over 430,000 patients was exposed in a data breach disclosed last month. 

Source: https://www.bleepingcomputer.com/news/security/ascension-says-recent-data-breach-affects-over-430-000-patients/  
 

  

Smarttech247