Data Security

BleepingComputer reports that dozens of GitHub repositories are having their contents erased in an ongoing attack campaign by the Gitloker threat operation.

Hackread reports that widely known Asian technology news outlet Tech in Asia was claimed by threat actor Sanggiero to have had information from more than 221,470 individuals compromised following a cyberattack this month.

Major U.S. automotive aftermarket parts vendor Advance Auto Parts had 3 TB of data containing sensitive customer and employee details claimed to be stolen by the threat actor dubbed "Sp1d3r" following the compromise of its Snowflake cloud storage environment, reports BleepingComputer.

Fifty-four leading banking organizations in Austria, Belgium, Finland, France, Germany, Greece, Ireland, Italy, Luxembourg, and the Netherlands had their customers subjected to attacks with the novel V3B phishing-as-a-service platform, which is being increasingly accessed by threat actors via Telegram, according to BleepingComputer.

Data breach notification service Have I Been Pwned has been updated to include 361 million email addresses from credentials exfiltrated in credential-stuffing attacks and password-stealing malware intrusions that have been leaked on Telegram channels used by cybercriminals, BleepingComputer reports.

BleepingComputer reports that more than 3.2 million individuals were noted to have had their data exfiltrated in the breach of U.S. nationally licensed debt collection agency Financial Business and Consumer Solutions in February, which is over a million higher than the figure initially reported by the firm to the Office of the Maine Attorney General in April.

Officials from the Illinois Secretary of State's office disclosed the compromise of residents' driver's license details and Social Security numbers following a phishing attack against its employees in April, StateScoop reports.