After processing over 300,000 Paycheck Protection Program\napplications, Bank\nof America<\/a> has revealed that a data breach occurred within the U.S. Small\nBusiness Administration\u2019s program that allowed all other SBA-authorized lenders\nto view highly sensitive data. The data includes tax information and social\nsecurity numbers relating to both businesses and their owners and could have\nextremely devastating effects in the wrong hands. Fortunately, the SBA secured\nthe compromised data within a day of being notified and Bank of America has\nreached out to affected customers offering of two years of identity theft\nprotection. null<\/p>\n\n\n\n Threat actors working for the Maze group recently claimed to\nhave belonging to millions of Bank\nof Costa Rica<\/a> customer accounts, a claim that was quickly refuted by the\nbank itself. Within a week, Maze began publishing proof of their bounty and\npromised to continue posting records if the bank fails to improve their current\nsecurity. Maze also claimed to have accessed the bank\u2019s systems on multiple\noccasions to determine if security had improved but chose not to encrypt their\nsystems as the second breach occurred during the COVID-19 pandemic. <\/p>\n\n\n\n Researchers have been looking into a recent data dump that\nappears to have originated from the 2014 LiveJournal<\/a>\nbreach and contains over 33 million records up to 2017. It is hard to precisely\ndate the breach, as LiveJournal is a Russian-owned journaling service and never\nreported it, though many LiveJournal users were targeted in a past spam\nextortion email campaign. More recently, users of Dreamwidth, which shares the\nLiveJournal codebase, has seen reports of compromised accounts. <\/p>\n\n\n\nBank of Costa Rica Suffers Data Breach<\/h2>\n\n\n\n
Old LiveJournal Breach Data Re-emerges<\/h2>\n\n\n\n
Turla Hackers Grabbing Antivirus Logs to Check for Detection<\/h2>\n\n\n\n