Data breaches involving large troves of valuable personal information are often followed by leaks or sale of the affected data by cybercriminals on the dark web. Recently, a database of BMW car owners in the U.K. was put on sale on underground forums by the threat actor group called KelvinSecurityTeam. In other news, a Las Vegas-based fitness brand exposed sensitive photos of around 99,000 customers and trainers in a data leak. Let’s find out the top highlights from the cybersecurity domain in the past 24 hours.
01
Researchers at KELA discovered a database of 384,319 BMW customers in the U.K. being offered for sale on the dark web by the KelvinSecurityTeam hacking group.
02
03
Apparently, Trinity Metro, a Fort Worth-based rail transportation agency, has fallen victim to a ransomware attack by the NetWalker group which published online evidence of the attack on their site.
04
Sodinokibi ransomware operators have breached Light S.A., a Brazil-based electric power distribution company, and demanded a $14 million ransom.
05
The U.S. National Security Agency (NSA) has issued guidance on securing IP Security (IPsec) Virtual Private Networks (VPNs) against potential attacks.
06
Law enforcement authorities from the U.K., France, and the Netherlands, cracked down on EncroChat, an encrypted chat platform with around 60,000 users, that was being used by organized crime gangs for planning their illegal activities. The joint operation saw over 800 arrests across Europe.
07
According to a recent Ponemon Institute report, enterprises use a total of 45 security tools on average, 19 of which are used in a single incident response process. It also found that enterprises using over 50 tools are 8% less effective in incident response.
08
According to a research by Comparitech based on data and tools provided by the National Center for Education Statistics (NCES), schools and colleges in the U.S. have leaked 24.5 million records since 2005.
09
A team of academics from the University of Iowa have created a technique called CanaryTrap that can help identify when Facebook apps secretly share user data with third-parties.
10
The Florida Orthopedic Institute is facing a potential $99 million class-action lawsuit from patients affected in a ransomware attack on the health firm that occured in the month of April.
