Browsed by
Tag: Data Breach

New ‘Zero-Click’ ChatGPT Attack Threatens User Data, Researchers Warn at Black Hat

New ‘Zero-Click’ ChatGPT Attack Threatens User Data, Researchers Warn at Black Hat

New ‘Zero-Click’ ChatGPT Attack Threatens User Data, Researchers Warn at Black Hat Security researchers today unveiled a critical ‘zero-click’ vulnerability in OpenAI’s ChatGPT Connectors at the Black Hat hacker conference in Las Vegas, demonstrating how a single ‘poisoned’ document could be used to extract sensitive user data. Dubbed ‘AgentFlayer’ by Zenity CTO Michael Bargury and Tamir Ishay Sharbat, the indirect prompt injection attack exploited a weakness that allowed API keys and other confidential information to be siphoned from linked services…

Read More Read More

Allianz Life Confirms Massive Data Breach Affecting 1.4 Million US Customers

Allianz Life Confirms Massive Data Breach Affecting 1.4 Million US Customers

Allianz Life Confirms Massive Data Breach Affecting 1.4 Million US Customers Allianz Life Insurance Company of North America has confirmed a significant data breach impacting the personal information of a majority of its 1.4 million U.S. customers. The company, a subsidiary of Munich-based Allianz SE, stated that the breach occurred on July 16, when a “malicious threat actor” gained unauthorized access to a third-party, cloud-based system utilized by Allianz Life. According to the insurer, the perpetrator used a “social engineering…

Read More Read More

Dating Safety App ‘Tea’ Confirms Major Data Breach, User Images Compromised

Dating Safety App ‘Tea’ Confirms Major Data Breach, User Images Compromised

Dating Safety App ‘Tea’ Confirms Major Data Breach, User Images Compromised The women’s dating safety application, Tea, has confirmed a significant data breach, revealing that images, including some used for identity verification, were stolen by hackers. The company stated the breach impacted members who registered before February 2024, affecting approximately 72,000 images. Despite Tea’s privacy policy promising immediate deletion of verification photos post-authentication, some compromised images included women holding photo identification. The US-based, women-only app, which boasts 1.6 million users,…

Read More Read More

Tea App Hack Confirmed: Thousands of User Photos, IDs Leaked After 4chan Campaign

Tea App Hack Confirmed: Thousands of User Photos, IDs Leaked After 4chan Campaign

Tea App Hack Confirmed: Thousands of User Photos, IDs Leaked After 4chan Campaign The popular “Tea” app, designed as a private forum for women to discuss men, has confirmed a significant data breach, leading to the apparent online leak of tens of thousands of user selfies and photo IDs. A spokesperson for the company confirmed the incident late Friday, estimating that 72,000 images, including 13,000 verification photos and government IDs, were accessed. The breach follows a “hack and leak” campaign…

Read More Read More

Microsoft Rushes Patch for Active SharePoint Zero-Day Attacks on Global Entities

Microsoft Rushes Patch for Active SharePoint Zero-Day Attacks on Global Entities

Microsoft Rushes Patch for Active SharePoint Zero-Day Attacks on Global Entities Microsoft has deployed an emergency security patch in response to widespread “active attacks” leveraging a critical vulnerability in its SharePoint server software. The exploits have reportedly targeted various organizations globally, including businesses and U.S. federal agencies. The software giant issued the security update for SharePoint Subscription Edition and SharePoint 2019 users on Sunday night, aiming to mitigate the ongoing threats. Microsoft confirmed that the vulnerability specifically impacts companies hosting…

Read More Read More

Afghan ‘Blackmail’ Revelation Rocks MoD After Super-Injunction Lifted

Afghan ‘Blackmail’ Revelation Rocks MoD After Super-Injunction Lifted

Afghan ‘Blackmail’ Revelation Rocks MoD After Super-Injunction Lifted A recently lifted super-injunction has revealed that an Afghan national reportedly secured resettlement in the UK by posting sensitive details from a massive Ministry of Defence (MoD) data breach on Facebook. The individual, who had a previously rejected application, allegedly used the leaked information as leverage, prompting the MoD to offer an expedited review of his case. Government sources have controversially accused the man of “blackmailing his way into the country.” The…

Read More Read More

UK’s Secret Afghan Relocation Scheme Exposed as Superinjunction Lifted After Major Data Breach

UK’s Secret Afghan Relocation Scheme Exposed as Superinjunction Lifted After Major Data Breach

UK’s Secret Afghan Relocation Scheme Exposed as Superinjunction Lifted After Major Data Breach A long-standing superinjunction has been lifted, revealing that Britain secretly relocated thousands of Afghans to the UK following a severe data breach by the Ministry of Defence (MoD) in early 2022. The highly confidential scheme, prompted by fears of Taliban reprisals against those whose personal details were leaked, is estimated to have cost the government approximately £2 billion ($2.7 billion). The data leak, which saw sensitive information…

Read More Read More

UK Government Reveals Secret Afghan Resettlement Program After Data Leak Injunction Lifted

UK Government Reveals Secret Afghan Resettlement Program After Data Leak Injunction Lifted

UK Government Reveals Secret Afghan Resettlement Program After Data Leak Injunction Lifted The British government yesterday, Tuesday, publicly disclosed a previously secret program that resettled thousands of Afghans in the UK following a significant data leak. The disclosure came as a rare court order, known as a super injunction, which had barred media reporting on the program, was lifted. Defense Secretary John Healey offered a “sincere apology” for the compromise of information and the lack of transparency surrounding the initiative….

Read More Read More

Massive Data Breach Exposes Billions of Login Credentials

Massive Data Breach Exposes Billions of Login Credentials

Massive Data Breach Exposes Billions of Login Credentials A significant data breach has exposed an estimated 16 billion login records, representing one of the largest data breaches in history. The breach was initially reported by Cybernews, which indicated that the compromised data originated from over 30 databases, each potentially containing up to 3.5 billion passwords. The leaked data includes usernames, passwords, and URLs, affecting a wide range of platforms. Affected platforms include major companies such as Apple (formerly Apple IDs),…

Read More Read More