Background check provider data breach affects 3 million people who may not have heard of the company

Employment screening company DISA Global Solutions has filed a data breach notification after a cyber incident on their network. DISA says a third party had access to its environment between February 9, 2024, and April 22, 2024. The attacker may Read More …

Malicious packages deepseeek and deepseekai published in Python Package Index

As part of their research and monitoring efforts, the Supply Chain Security team of the Threat Intelligence department of the Positive Technologies Expert Security Center (PT ESC) detected and prevented a malicious campaign in the Python Package Index (PyPI) package Read More …

UK’s Morrisons says cyber attack at technology provider hit Christmas sales

British supermarket group Morrisons said a November cyber attack at technology provider Blue Yonder hit its product availability, impacting sales in the Christmas quarter. CEO Rami Baitieh said the attack meant Morrisons had to shut down its warehouse management system, Read More …

Italian digital identity provider suffers data breach, 5.5M customers affected

InfoCert has had millions of its customers’ personal data stolen and put up for sale. A leading European certification authority and provider of digital identity services such as Italy’s SPID (Public Digital Identity System), InfoCert posted a public notice on Read More …

U.S. Treasury Department Says Systems Hacked by China-Backed Actor

The Treasury Department told lawmakers Monday that a state-sponsored actor in China hacked its systems, accessing several user workstations and certain unclassified documents. The treasury was informed on Dec. 8 by a third-party software service provider, BeyondTrust, that a threat Read More …

Singapore OSV player Vallianz hit by cyber attack

Singapore OSV owner and operator Vallianz has been hit by a cyberattack that has allowed an unknown party unauthorised access to the company’s servers. Upon discovering the ransomware incident, the firm – and its parent company Rawabi Holding Company Limited Read More …

Cyber attack may affect personal information of thousands of Rhode Islanders

A massive cyberattack could impact the personal information of hundreds of thousands of Rhode Islanders after hackers targeted a state contractor that stores health and personal data. Governor Dan McKee announced that the personal information of thousands was compromised in Read More …

“Termite” ransomware group claims responsibility for the Blue Yonder attack

On Friday, the “Termite” ransomware group claimed responsibility for the attack on its dark web leak site. In a post seen by TechCrunch, the gang claims to have stolen 680 gigabytes of data from Blue Yonder, including documents, reports, insurance Read More …

Retail outages drag into second week after Blue Yonder ransomware attack

A ransomware attack on supply chain software giant Blue Yonder continues to cause disruption to the company’s customers, almost two weeks after the outage first began. In a brief update to its cybersecurity incident page on Sunday, Arizona-based Blue Yonder Read More …

Ransomware attack on Blue Yonder disrupts Starbucks, Sainsbury’s, Morrisons

Starbucks has confirmed that a ransomware attack on software supplier Blue Yonder has disrupted its internal systems for managing employee schedules and tracking work hours. The incident has primarily affected Starbucks’ North American operations, including approximately 11,000 stores across the Read More …