State hackers breach defense, energy, healthcare orgs worldwide
MediaMarkt hit by Hive ransomware, initial $240 million ransom
REvil ransomware affiliates arrested in Romania and Kuwait
Pwn2Own: Printer plays AC/DC, Samsung Galaxy S21 hacked twice
U.S. offers $10 million reward for leaders of REvil ransomware
Robinhood discloses data breach impacting 7 million customers
Softbank plans to charge electronic gadgets using 5G antennas
US sanctions Chatex cryptoexchange used by ransomware gangs
Qualys BrowserCheck
STOPDecrypter
AuroraDecrypter
FilesLockerDecrypter
AdwCleaner
ComboFix
RKill
Junkware Removal Tool
How to remove the PBlock+ adware browser extension
Remove the Toksearches.xyz Search Redirect
Remove the Smashapps.net Search Redirect
Remove the Smashappsearch.com Search Redirect
Remove Security Tool and SecurityTool (Uninstall Guide)
How to remove Antivirus 2009 (Uninstall Instructions)
How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo
How to remove Google Redirects or the TDSS, TDL3, or Alureon rootkit using TDSSKiller
Locky Ransomware Information, Help Guide, and FAQ
CryptoLocker Ransomware Information Guide and FAQ
CryptorBit and HowDecrypt Information Guide and FAQ
CryptoDefense and How_Decrypt Ransomware Information Guide and FAQ
How to make the Start menu full screen in Windows 10
How to install the Microsoft Visual C++ 2015 Runtime
How to open an elevated PowerShell Admin prompt in Windows 10
How to Translate a Web Page in Google Chrome
How to start Windows in Safe Mode
How to remove a Trojan, Virus, Worm, or other Malware
How to show hidden files in Windows 7
How to see hidden files in Windows
eLearning
IT Certification Courses
Gear + Gadgets
Security
RobinHood
Stock trading platform Robinhood has disclosed a data breach after their systems were hacked and a threat actor gained access to the personal information of approximately 7 million customers.
The attack occurred on November 3rd after a threat actor called a customer support employee and used social engineering to obtain access to customer support systems.
After accessing the support systems, the threat actor was able to access customer information, including full names, email addresses, and for a limited number of people, data of birth, and zip codes.
“At this time, we understand that the unauthorized party obtained a list of email addresses for approximately five million people, and full names for a different group of approximately two million people,” disclosed a blog post published today about the security incident.
“We also believe that for a more limited number of people—approximately 310 in total—additional personal information, including name, date of birth, and zip code, was exposed, with a subset of approximately 10 customers having more extensive account details revealed.”
In summary, the data breach exposed:
The company states that they do not believe any Social Security numbers, bank account numbers, or debit card numbers were exposed in the attack.
After learning of the attack and securing their systems, RobinHood also received an extortion demand. While Robinhood has not provided any details regarding the extortion demand, it was likely a threat that the stolen data would be leaked if a Bitcoin ransom was not paid.
RobinHood says they continue to investigate the incident with the help of Mandiant, a well-known cybersecurity firm commonly used to perform incident response after attacks.
“As a Safety First company, we owe it to our customers to be transparent and act with integrity,” said Robinhood Chief Security Officer Caleb Sima. “Following a diligent review, putting the entire Robinhood community on notice of this incident now is the right thing to do.”
In 2019, Robinhood recommended users reset all of their passwords after it was discovered they were stored in their system in human readable format, otherwise known as clear text.
While Robinhood did not detect any unauthorized access to these passwords, it could have allowed employees to see customers’ passwords.
If you are affected by this data breach or are simply concerned about the safety of your account, Robinhood suggests you take the following steps:
With this latest incident, passwords were not exposed, as the threat actor had access to internal systems, it would not hurt to change your password to be extra cautious.
BleepingComputer has reached out to RobinHood and will update the story if more details become available.
This is a developing story.
Trucking giant Forward Air reports ransomware data breach
UK Labour Party discloses data breach after ransomware attack
US defense contractor Electronic Warfare hit by data breach
Sensitive data of 400,000 German students exposed by API flaw
Australia drafts Online Privacy Bill to bolster data security
Not a member yet? Register Now
Microsoft: New Windows driver deployment service coming soon
MediaMarkt hit by Hive ransomware, initial $240 million ransom
To receive periodic updates and news from BleepingComputer, please use the form below.
Terms of Use Privacy PolicyEthics Statement
Copyright @ 2003 – 2021 Bleeping Computer® LLC – All Rights Reserved
Not a member yet? Register Now
Read our posting guidelinese to learn what content is prohibited.

source

You May Also Like

Amazon is shutting down web ranking site Alexa.com

ALPHV BlackCat – This year’s most sophisticated ransomwareSonicWall ‘strongly urges’ customers to…

How cybercriminals adjusted their scams for Black Friday 2021

Hackers exploit Microsoft MSHTML bug to steal Google, Instagram credsApple sues spyware-maker…

New zero-day exploit for Log4j Java library is an enterprise nightmare

New zero-day exploit for Log4j Java library is an enterprise nightmareALPHV BlackCat…

Microsoft warns of surge in HTML smuggling phishing attacks

AMD fixes dozens of Windows 10 graphics driver security bugsVoid Balaur hackers-for-hire…