PrivacySignal
← Front page
Breach

Lessons from the Underground: How to Combat Business Email Compromise

BleepingComputer · · International · Data Breaches

Business Email Compromise is more than an email scam. It's a coordinated operation involving compromised accounts, financial research, and cash-out networks. Flare explores how underground forums reveal how BEC attacks are planned and executed. [...]

Who should care: Cybersecurity · Privacy officers · Administrators

#breach
Read the original at BleepingComputer → Browse the archive

This summary is AI-assisted and may contain errors. It is an original briefing to help you gauge significance quickly — not a reproduction of the source. Always read the linked original before relying on it. See our methodology.

Related stories

Breach
DataBreaches.net · · International

Kaspersky Lab experts have discovered a new attack vector and toolkit for compromising corporate Gmail accounts

Kaspersky Labs writes: It is used by the ToddyCat group. Kaspersky Lab experts have discovered a new attack vector and toolkit for compromising corporate Gmail accounts. Using this toolkit, attackers can access user accounts via an API, read conversations, and harvest data from calendars and other Google services while remaining undetected for extended periods of... Source

Who should care: Cybersecurity · Privacy officers · Administrators

#breach Read original →
Breach
DataBreaches.net · · International

Insurance giant Aflac discloses data breach at Japan subsidiary

Sergiu Gatlan reports: American insurance giant Aflac has disclosed a new data breach after attackers breached its Japan subsidiary’s systems and stole personal and bank account information. Aflac (short for American Family Life Assurance Company) is a Fortune 500 company and the largest supplemental insurance provider in the United States, serving millions of customers in... Source

Who should care: Cybersecurity · Privacy officers · Administrators

#breach Read original →
Breach
BleepingComputer · · International

Blackfield ransomware asks Nidec Corporation for $2 million ransom

The Blackfield ransomware gang is asking for a $2 million ransom from Nidec Corporation, a large Japanese manufacturer of electronic components for automotive and computing applications. [...]

Who should care: Cybersecurity · Privacy officers · Administrators

#breach#security Read original →
Breach Critical
BleepingComputer · · International

CISA: Windows BlueHammer flaw now exploited by ransomware gangs

CISA confirmed on Monday that ransomware gangs are now exploiting a Microsoft Defender privilege escalation vulnerability, dubbed BlueHammer, that has previously been abused in zero-day attacks. [...]

Who should care: Cybersecurity · Privacy officers · Administrators

#breach#security Read original →
Breach
HIPAA Journal · · US Federal

Washington Dept. Health & Social Services Insider Breach Affects 8,600 Individuals

Washington State's Department of Social and Health Services disclosed that an employee improperly accessed protected records belonging to approximately 8,600 individuals, constituting an insider data breach of sensitive personal information held by a state agency.

Why this matters: Government social-services databases contain some of the most intimate personal details people share with any institution. Insider breaches highlight that threats to sensitive data aren't only external — individuals often have no practical recourse or visibility when their information is misused from within.

Who should care: Cybersecurity · Privacy officers · Administrators · Healthcare professionals · Compliance

#breach#healthcare Read original →