Cybernews<p>The Iowa-headquartered transportation support company DRT has seen attackers access its email accounts, potentially accessing the personal details of numerous individuals.</p><p>Read more: <a href="https://cnews.link/drt-transportation-email-hack-data-breach-4/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cnews.link/drt-transportation-</span><span class="invisible">email-hack-data-breach-4/</span></a> <br><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/cyberattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cyberattack</span></a> <a href="https://infosec.exchange/tags/Iowa" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Iowa</span></a> <a href="https://infosec.exchange/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a></p>
#databreach
46 posts31 participants4 posts today
NEW: Qilin claims attack on Accu Reference Medical Laboratory. It wasn't the lab's first data breach:
Florida Lung, Asthma and Sleep Specialists hit by ransomware, exposing patient data
Florida Lung, Asthma and Sleep Specialists (FLASS) was hit by a Rhysida ransomware attack. The cybercriminal group demanding six bitcoins (approximately $650,000).
****
#cybersecurity #infosec #incident #databreach
https://beyondmachines.net/event_details/florida-lung-asthma-and-sleep-specialists-hit-by-ransomware-exposing-patient-data-m-2-c-d-n/gD2P6Ple2L
PDCM Insurance hit by ransomware attack, exposes employee and customer data
PDCM Insurance was hit by a LockBit 3.0 ransomware attack that the group claimed on their dark web site on May 1, 2025, compromising personally identifiable information and protected health information of employees and customers.
****
#cybersecurity #infosec #incident #databreach
https://beyondmachines.net/event_details/pdcm-insurance-hit-by-ransomware-attack-exposes-employee-and-customer-data-i-m-5-q-d/gD2P6Ple2L
BeyondMachinesPDCM Insurance hit by ransomware attack, exposes employee and customer dataPDCM Insurance was hit by a LockBit 3.0 ransomware attack that the group claimed on their dark web site on May 1, 2025, compromising personally identifiable information and protected health information of employees and customers.
#BitcoinDepot breach exposes data of nearly 27,000 #crypto users
Supabase MCP can leak your entire SQL database
「 The cursor assistant operates the Supabase database with elevated access via the service_role, which bypasses all row-level security (RLS) protections. At the same time, it reads customer-submitted messages as part of its input. If one of those messages contains carefully crafted instructions, the assistant may interpret them as commands and execute SQL unintentionally 」
https://simonwillison.net/2025/Jul/6/supabase-mcp-lethal-trifecta/
Simon Willison’s WeblogSupabase MCP can leak your entire SQL databaseHere's yet another example of a lethal trifecta attack, where an LLM system combines access to private data, exposure to potentially malicious instructions and a mechanism to communicate data back …
Over 26 million resumes exposed in top CV maker data breach - here's what we know
「 While it might not sound like much, the cache is a treasure trove for cybercriminals. Knowing these people are actively seeking new job opportunities, they can create fully customized, highly relevant phishing emails, successfully tricking people into downloading malware or sharing login credentials 」
TechRadar · Over 26 million resumes exposed in top CV maker data breach - here's what we know
Rockerbox tax credit consultancy leaks 245 K client records
Cybersecurity researcher Jeremiah Fowler discovered an unprotected database belonging to Dallas-based tax credit consulting firm Rockerbox.tech that exposed 245,949 records containing highly sensitive personal and financial information. The database was secured several days after responsible disclosure. The company did not respond to the security researcher's notification.
****
#cybersecurity #infosec #incident #databreach
https://beyondmachines.net/event_details/rockerbox-tax-credit-consultancy-leaks-245-k-client-records-r-s-j-q-g/gD2P6Ple2L
BeyondMachinesRockerbox tax credit consultancy leaks 245 K client recordsCybersecurity researcher Jeremiah Fowler discovered an unprotected database belonging to Dallas-based tax credit consulting firm Rockerbox.tech that exposed 245,949 records containing highly sensitive personal and financial information. The database was secured several days after responsible disclosure. The company did not respond to the security researcher's notification.