Saturday , March 29 2025
maxar

Maxar Space Data Leak, Company admit, Investigation ongoing!

infosecbulletin Tuesday , November 19 2024 Uncategorized

Maxar Space Systems has verified a major data breach that exposed particular information of current and former workers. The breach in mid-October 2024 raised major cybersecurity concern after a hacker used a Hong Kong IP address to attack the company’s systems immorally.

Maxar said, they discovered the breach on ‘October 11, 2024, and took stern action to prevent the unauthorized access to the system in future.”

FBI investigating cyberattack at Oracle, Bloomberg News reports

By infosecbulletin / Saturday , March 29 2025
The Federal Bureau of Investigation (FBI) is probing the cyberattack at Oracle (ORCL.N), opens new tab that has led to...
Read More
FBI investigating cyberattack at Oracle, Bloomberg News reports

OpenAI Offering $100K Bounties for Critical Vulns

By infosecbulletin / Thursday , March 27 2025
OpenAI has increased its maximum bug bounty payout to $100,000, up from $20,000, to encourage the discovery of critical vulnerabilities...
Read More
OpenAI Offering $100K Bounties for Critical Vulns

Splunk Alert User RCE and Data Leak Vulns

By infosecbulletin / Thursday , March 27 2025
Splunk has released a security advisory about critical vulnerabilities in Splunk Enterprise and Splunk Cloud Platform. These issues could lead...
Read More
Splunk Alert User RCE and Data Leak Vulns

CIRT alert Situational Awareness for Eid Holidays

By infosecbulletin / Thursday , March 27 2025
As the Eid holidays near, cybercriminals may try to take advantage of weakened security during this time. The CTI unit...
Read More
CIRT alert Situational Awareness for Eid Holidays

Cyberattack on Malaysian airports: PM rejected $10 million ransom

By infosecbulletin / Wednesday , March 26 2025
Operations at Kuala Lumpur International Airport (KLIA) were unaffected by a cyber attack in which hackers demanded US$10 million (S$13.4...
Read More
Cyberattack on Malaysian airports: PM rejected $10 million ransom

Micropatches released for Windows zero-day leaking NTLM hashes

By infosecbulletin / Wednesday , March 26 2025
Unofficial patches are available for a new Windows zero-day vulnerability that allows remote attackers to steal NTLM credentials by deceiving...
Read More
Micropatches released for Windows zero-day leaking NTLM hashes

VMware Patches Authentication Bypass Flaw in Windows Tool

By infosecbulletin / Wednesday , March 26 2025
On Tuesday, VMware issued an urgent fix for a security flaw in its VMware Tools for Windows. CVE-2025-22230 allows a...
Read More
VMware Patches Authentication Bypass Flaw in Windows Tool

IngressNightmare
Over 40% of cloud environments are vulnerable to RCE

By infosecbulletin / Tuesday , March 25 2025
Kubernetes users of the Ingress NGINX Controller are advised to fix four newly found remote code execution ( RCE) vulnerabilities,...
Read More
IngressNightmare Over 40% of cloud environments are vulnerable to RCE

(CVE-2025-29927)
Urgently Patch Your Next.js for Authorization Bypass

By infosecbulletin / Tuesday , March 25 2025
Next.js, a widely used React framework for building full-stack web applications, has fixed a serious security vulnerability. Used by many...
Read More
(CVE-2025-29927) Urgently Patch Your Next.js for Authorization Bypass

Oracle refutes breach after hacker claims 6 million data theft

By infosecbulletin / Sunday , March 23 2025
A hacker known as “rose87168” claims to have stolen six million records from Oracle Cloud servers. The stolen data includes...
Read More
Oracle refutes breach after hacker claims 6 million data theft

What information was involved:

The system had these types of personal data:

Home address
Social security number
Business contact information
Gender
Employee number
Job title,
Hiring date
Role start date
Termination date etc

These files did not contain any bank account information or dates of birth.

Maxar has informed law enforcement agencies and is coordinating with them to probe the breach. The company hired a cybersecurity establishment to help fix the vulnerabilities that caused the breach.

Maxar informed affected individualities in a letter about available defensive measures. Current workers can enroll in IDShield for identity protection, while former workers can use IDX for identity monitoring services.

The company advised current and former workers to keep an eye on their fiscal accounts for unusual exertion, report any suspected identity theft to law enforcement, and consider placing a security snap on their credit lines to cover against unauthorized access.

The hacker used a Hong Kong IP address, raising enterprises about the transnational nature and geopolitical counter accusations of the cyberattack. Cybersecurity experts praise Maxar for its quick response to minimize farther damage after the data breach, pressing the significance of translucency and nippy action. The disquisition is ongoing, and further details about the breach and necessary cybersecurity advancements for Maxar are anticipated in the coming weeks.

Check Also

Webex

Cisco alerts about a Webex flaw that exposes credentials

Cisco has alerted customers about a vulnerability in Webex for BroadWorks that could allow unauthorized …

Leave a Reply

Your email address will not be published. Required fields are marked *

Mail: [email protected]
© Copyright 2025, All Rights Reserved InfoSecBulletin