Individuals traveling to Singapore, Malaysia, and the UK have been subjected to a novel phishing campaign exploiting online arrival card submissions in a bid to exfiltrate personal details, SiliconAngle reports.
Numerous school districts impacted by the sweeping cyberattack against major education technology provider PowerSchool disclosed having their students' highly sensitive information compromised as a result of the incident, which was noted to have affected more than a third of the firm's 18,000 clients and claimed to have compromised over 70 million students and faculty members, reports The Record, a news site by cybersecurity firm Recorded Future.
Hackread reports that widely used artificial intelligence-based chatbot OmniGPT was allegedly compromised by the threat actor dubbed "Gloomer," who proceeded to leak over 34 million lines of user conversations and 30,000 user emails and phone numbers.
International shipping solution Hipshipper — which is leveraged by Amazon, Shopify, and eBay sellers to deliver goods to more than 150 countries — had more than 14.3 million records inadvertently exposed by an unsecured Amazon AWS bucket, Cybernews reports.
Nearly 4,500 internet-exposed SonicWall firewalls were discovered by Bishop Fox researchers to be at risk of having their VPN sessions taken over in attacks exploiting a recently patched high-severity authentication bypass flaw within the SonicOS SSLVPN application, tracked as CVE-2024-53704, according to BleepingComputer.
