Advertisement
ShinyHunters Breach NAIC via PeopleSoft Zero-Day: Public Data Stolen
ShinyHunters exploited an Oracle PeopleSoft zero-day to breach NAIC, exfiltrating public data, logs, and configuration files. Review PeopleSoft security.
Nissan Breach: Oracle PeopleSoft Zero-Day Exploited by ShinyHunters
Nissan discloses a data breach impacting current and former employees, attributed to an exploited Oracle PeopleSoft zero-day vulnerability linked to the ShinyHunters
Klue-Salesforce Breach Exposes Competitive Data; Threat Actors Hacked
Klue's Salesforce instance breach exposed customer competitive intelligence and contact data via an API vulnerability. The initial attackers were subsequently
Tata Electronics Confirms Cyberattack and Data Leak
Tata Electronics confirms a cyberattack impacting its IT infrastructure, leading to data leakage. Analysis of the breach and defense strategies.
Klue OAuth Breach: Icarus Threat Group Targets Salesforce
Klue confirms an OAuth token breach by the Icarus group, potentially exposing customer Salesforce environments. Learn how to secure your integrations.
Texas Data Breach Exposes 3M Driver's Licenses via Vendor
A data breach at a third-party vendor of the Texas Parks and Wildlife Department exposed over 3 million driver's licenses, impacting Texans' PII.

Klue Security Incident: Mitigating Third-Party Risk in Intelligence
Analyze the impact of the Klue security incident on Recorded Future. Learn how to secure SaaS integrations and improve third-party vendor risk management.
Nintendo Confirms Third-Party TinyPulse Data Breach — Supply Chain Risks
Nintendo confirms employee survey data was stolen via a breach at TinyPulse, a third-party vendor owned by WebMD subsidiary Internet Brands.
Kodak Data Breach Confirmed: ShinyHunters Linked to Exfiltration
Kodak acknowledges a data breach after ShinyHunters claimed responsibility, with the threat actor reportedly exfiltrating sensitive company information.

Credential Harvesting Heist Compromises 30K+ Fortinet Devices
A widespread credential harvesting campaign has compromised over 30,000 Fortinet devices across 200 countries, enabling unauthorized access for threat actors.
China-Linked Espionage Targets REDCap Servers, Stealing Medical Data
China-linked threat actors breached exposed REDCap servers, deploying InfiniteRed malware to steal sensitive medical research from a North American institution.
Iranian Handala Group Claims Cal Water Hack, Exposing PII
Iranian cyber group Handala claims responsibility for breaching Cal Water, exposing 5GB of customer PII and RTKBase platform credentials. Analysis and mitigation