Recherche : [unauthorized]

Emera and Nova Scotia Power Responding to Cybersecurity Incident https://investors.emera.com/news/news-details/2025/Emera-and-Nova-Scotia-Power-Responding-to-Cybersecurity-Incident/default.aspx

04/05/2025 13:03:01

April 28, 2025
HALIFAX, Nova Scotia--(BUSINESS WIRE)-- Emera Inc. and Nova Scotia Power today announced, on April 25, 2025 they discovered and are actively responding to a cybersecurity incident involving unauthorized access into certain parts of its Canadian network and servers supporting portions of its business applications.

Immediately following detection of the external threat, the companies activated their incident response and business continuity protocols, engaged leading third-party cybersecurity experts, and took actions to contain and isolate the affected servers and prevent further intrusion. Law enforcement officials have been notified.

There remains no disruption to any of our Canadian physical operations including at Nova Scotia Power’s generation, transmission and distribution facilities, the Maritime Link or the Brunswick Pipeline, and the incident has not impacted the utility’s ability to safely and reliably serve customers in Nova Scotia. There has been no impact to Emera’s U.S. or Caribbean utilities.

Emera will release its Q1 Financial Statements and Management Disclosure and Analysis on May 8, 2025, as planned. At this time, the incident is not expected to have a material impact on the financial performance of the business.

Our IT team is working diligently with cyber security experts to bring the affected portions of our IT system back online.

Grafana security update: no customer impact from GitHub workflow vulnerability https://grafana.com/blog/2025/04/27/grafana-security-update-no-customer-impact-from-github-workflow-vulnerability/

02/05/2025 11:45:31

On April 26, an unauthorized user exploited a vulnerability with a GitHub workflow to gain unauthorized access to tokens, all of which have now been invalidated. At this time, our investigation has found no evidence of code modifications, unauthorized access to production systems, exposure of customer data, or access to personal information.

Next.js Middleware Exploit: Deep Dive into CVE-2025-29927 Authorization Bypass - ZeroPath Blog https://zeropath.com/blog/nextjs-middleware-cve-2025-29927-auth-bypass

23/03/2025 13:53:00

Explore the critical CVE-2025-29927 vulnerability in Next.js middleware, enabling attackers to bypass authorization checks and gain unauthorized access.

Hubspot says it's investigating customer account hacks | TechCrunch https://techcrunch.com/2024/06/28/hubspot-says-its-investigating-customer-account-hacks/

28/06/2024 20:36:33

The company “identified a security incident that involved bad actors targeting a limited number of HubSpot customers and attempting to gain unauthorized access to their accounts” on June 22.

XSS Vulnerabilities in Azure Led to Unauthorized Access to User Sessions - SecurityWeek https://www.securityweek.com/xss-vulnerabilities-in-azure-led-to-unauthorized-access-to-user-sessions/

18/06/2023 21:53:18

Microsoft addressed two XSS vulnerabilities in Azure Bastion and Azure Container Registry (ACR) leading to unauthorized access to sessions.

Notice of Recent Security Incident https://blog.lastpass.com/2022/08/notice-of-recent-security-incident/

29/08/2022 10:26:34

We have no evidence that this incident involved any access to customer data or encrypted password vaults. Our products and services are operating normally.

Detecting Scatter Swine: Insights into a relentless phishing campaign https://sec.okta.com/scatterswine

29/08/2022 10:25:04

Twilio recently identified unauthorized access to information related to 163 Twilio customers, including Okta.

Liens par page

Filtres