The company said it was alerted by Troy Hunt, security expert and founder of the data breach notification website Have I Been Pwned.
The spam email campaign was sent from domains that closely resembled those used by the legitimate HMRC – in this case it was using hmirc-gov.co.uk, Trustwave experts said.
Pizza Hut said that its website was compromised and hackers stole some of its customers' card data between 1 and 2 October.
The news comes as US President Donald Trump refused to certify the landmark 2015 Iran nuclear deal, which he has continued to describe as a "terrible" deal.
From the Accenture cloud server snafu to the North Korean military missions - here are IBTimes UK tech team's pick of the biggest cybersecurity stories of the week so far.
DoubleLocker is based on a banking trojan and could become a "ransom-banker" that tries to wipe out victims' bank or PayPal accounts.
A computer engineer found the Subaru key fob's rolling code – the internal system used to securely lock and unlock car doors – was "predictable".
The largest number of Hyatt properties impacted were based in China with 18 hotels.
The incident comes a month after Equifax disclosed that it suffered a massive breach that compromised valuable personal and financial data of 145.5 million Americans.
The case reportedly relates to the alleged hacking of a Tunbridge Wells firm in April this year, which resulted in one of its clients losing £25,000 via fake invoice.
Security experts say that the cybercriminals operating this scam have also been targeting customers of Wells Fargo, Comcast Chase Bank and TD Bank since June.
The internet's largest torrent portal is running Coinhive, which currently runs alongside the site's ads and mines Monero.
The malware, which security experts uncovered in April, only targets ATM machines running Windows 7 and Windows Vista.
A security researcher described the incident as a "very critical data breach, making every T-Mobile cell phone owner a victim".
Security experts suspect the attack was an "early-stage reconnaissance" mission instead of a disruptive cyberattack.
The data targeted by the hackers contained records dated between 2011 and 2016. The NCSC issued out a statement advising affected users on how to handle the breach.
Accenture left at least 4 cloud servers publicly exposed, leaving sensitive corporate and customer data potentially freely accessible to hackers.
The hackers used specialised malware to leave no trace of their activities, their "tradecraft" suggesting involvement with an organised cybercrime group.
The malware has been sold in underground hacking forums with prices ranging from $29 a week to $299 for a full-package "pro" deal.
The attack allows hackers to infiltrate firms' Office 365 accounts by attempting to "knock" on backdoor system accounts.
North Korean hackers reportedly accessed secret Seoul-Washington war plans that detail procedures on how to handle an all-out war with Pyongyang.
There is no evidence to suggest that confidential client and employee data, as well as financial information, were accessed.
