Researcher breaches Toyota supplier portal with info on 14,000 partners

Toyota’s Global Supplier Preparation Information Management System (GSPIMS) was breached by a security researcher who responsibly reported the issue to the company. GSPIMS is the car manufacturer’s web application that allows employees and suppliers to remotely log in and manage Read More …

UK Engineering Company Vesuvius Hit by Cyber Attack

Vesuvius PLC said Monday that it is currently managing a cyber incident that involved unauthorized access to its systems. The U.K. engineered-ceramics manufacturer said as soon as it was aware of the unauthorized activity, it took the necessary steps to Read More …

Data breach may have leaked classified law enforcement operations information to criminals

A company that provides tech solutions to law enforcement agencies has reportedly suffered a breach that might jeopardize ongoing police operations and undercover personnel. It is unclear if criminals currently under investigation have accessed the information, but the fact that Read More …

LAUSD says Vice Society ransomware gang stole contractors’ SSNs

Los Angeles Unified School District (LAUSD), the second-largest school district in the United States, says the Vice Society ransomware gang has stolen files containing contractors’ personal information, including Social Security Numbers (SSNs). LAUSD also revealed that the threat actors were Read More …

37 million T-Mobile customers hacked in data breach

T-Mobile said a “bad actor” accessed personal data from 37 million current customers in a November data breach. In a regulatory filing Thursday, the company said the hacker stole customer data that included names, billing addresses, emails, phone numbers, dates Read More …

PayPal says crooks poked around 35,000 accounts in credential stuffing attack

The personal information of 35,000 PayPal users was exposed in December, according to a notification letter sent to the online payment company’s customers this week. PayPal attributed this privacy breach to “unauthorized parties,” who accessed accounts using customer login credentials. Read More …

MailChimp discloses new breach after employees got hacked

Email marketing firm MailChimp suffered another breach after hackers accessed an internal customer support and account administration tool, allowing the threat actors to access the data of 133 customers. MailChimp says the attackers gained access to employee credentials after conducting Read More …