Hi friends,

For those who celebrate, I hope you all enjoyed a wonderful Christmas, and are about to enjoy a wonderful New Year's!

Because I don't want you to spend all your time reading security news I tried to keep it short, although the breaches section is much longer than I'd like. Maybe just skim that one, ok? ;-)

Have a good one folks!

Dieter Van der Stock

Breaches and leaks

  • Lockbit ransomware disrupts emergency care at German hospitals: link.
  • EasyPark discloses data breach that may impact millions of users: link.
  • Albanian parliament, telecom company hit by cyberattacks: link.
  • Australian healthcare provider St. Vincent’s has data stolen during cyberattack: link.
  • Kroll reveals FTX customer info exposed in August data breach: link.
  • First American Financial takes systems offline after cyber incident: link.
  • Fidelity National Financial subsidiary says 1.3 million affected by November cyberattack: link.
  • Ohio Lottery hit by cyberattack claimed by DragonForce ransomware: link.
  • Crypto drainer steals $59 million from 63k people in Twitter ad push: link.
  • Nissan Australia cyberattack claimed by Akira ransomware gang: link.
  • Ubisoft says it's investigating reports of a new security breach: link.
  • Mint Mobile discloses new data breach exposing customer data: link.
  • GTA 5 source code reportedly leaked online a year after Rockstar hack: link.
  • Integris Health patients get extortion emails after cyberattack: link.
  • Yakult Australia confirms 'cyber incident' after 95 GB data leak: link.
  • Panasonic discloses data breach after December 2022 cyberattack: link.
  • Eagers Automotive halts trading in response to cyberattack: link.
  • Game mod on Steam breached to push password-stealing malware: link.
  • Entertainment giant National Amusements says more than 82,000 affected by cyberattack: link.
Dieter Van der Stock

Issues and fixes

  • OpenAI rolls out imperfect fix for ChatGPT data leak flaw: link.
  • Apache OFBiz RCE flaw exploited to find vulnerable Confluence servers: link.
  • Barracuda fixes new ESG zero-day exploited by Chinese hackers: link.
Dieter Van der Stock