2/29/2024 February 29, 2024February 29, 2024 ~ The Cyber Beat ~ Leave a comment Chinese ‘Connected’ Cars Are a National Security Threat, Says BidenChinese PC-Maker Acemagic Customized Its Own Machines to Get Infected With MalwareNew Backdoor Targeting European Officials Linked to Indian Diplomatic EventsChinese Hackers Exploiting Ivanti VPN Flaws to Deploy New MalwareRansomware-as-a-Service Spawns Wave of Cyberattacks in Middle East & AfricaKrebs: Calendar Meeting Links Used to Spread Mac MalwareThe FBI’s New Tactic: Catching Suspects With Push AlertsThe Mysterious Case of the Missing Trump Trial Ransomware LeakCitrix, Sophos Software Impacted by 2024 Leap Year BugsBrave Browser Launches Privacy-Focused AI Assistant on AndroidSEC Investigating Whether OpenAI Investors Were MisledA Government Watchdog Hacked a U.S. Federal Agency to Stress-Test Its Cloud SecurityLaw Firm Houser LLP Reports Data Breach Affecting More Than 325,000 People20 Million Cutout.Pro User Records Leaked on Data Breach ForumHealthcare Providers Hit by Frozen Payments in UnitedHealth Ransomware OutageChange Healthcare Confirms Blackcat/AlphV Behind Ransomware AttackRio Hondo Community College (CA) Announces Breach After Ransomware AttackEgyptian Health Department (IL) Cyberattack Affects Up to 100,000 IndividualsMalicious AI Models on Hugging Face Backdoor Users’ MachinesNew Silver SAML Attack Evades Golden SAML Defenses in Identity SystemsGTPDOOR Linux Malware Targets Telecoms, Exploiting GPRS Roaming NetworksCISA Warns Against Using Hacked Ivanti Devices Even After Factory ResetsGitHub Enables Push Protection by Default to Stop Secrets Leak
2/28/2024 February 28, 2024February 28, 2024 ~ The Cyber Beat ~ Leave a comment Biden Bans Rival Nations From Buying Sensitive U.S. Data—Good LuckCybersecurity Agencies Warn Ubiquiti EdgeRouter Users of APT28’s MooBot ThreatJapan Warns of Malicious PyPi Packages Created by North Korean HackersLazarus Hackers Exploited Windows Zero-Day to Gain Kernel PrivilegesIran-Linked UNC1549 Hackers Target Middle East Aerospace & Defense SectorsFBI Warns U.S. Healthcare Sector of Targeted BlackCat Ransomware AttacksLockBit Ransomware Returns to Attacks With New Encryptors, ServersDictators Used Sandvine Tech to Censor the Internet: The U.S. Finally Did Something About ItPharmaceutical Giant Cencora Says Data Was Stolen in a CyberattackRansomware Gang Claims They Stole 6TB of Change Healthcare DataRhysida Ransomware Wants $3.6 Million for Lurie Children’s Hospital’s Stolen DataPrivacy-Focused Aleo Says KYC Leak Is Copy and Paste ErrorEpic Games: “Zero Evidence” We Were Hacked by Mogilevich GangSavvy Seahorse Gang Uses DNS CNAME Records to Power Investor ScamsTimbreStealer Malware Spreading via Tax-themed Phishing Scam Targets IT UsersAnycubic Users Say Their 3D Printers Were Hacked to Warn of a Security FlawKali Linux 2024.1 Released with 4 New Tools, UI Refresh
2/27/2024 February 27, 2024February 27, 2024 ~ The Cyber Beat ~ Leave a comment UK Email Mistake Put ‘Lives at Risk’ for Afghans Who Had Worked With British MilitaryIndustrial Cyber Espionage France’s Top Threat Ahead of 2024 Paris OlympicsPre-Election Stress Tests Cause Internet Outages in RussiaRussian Hackers Hijack Ubiquiti Routers to Launch Stealthy AttacksHow the Pentagon Learned to Use Targeted Ads to Find Its Targets—and Vladimir PutinThe UK Is GPS-Tagging Thousands of MigrantsChange Healthcare Attack Raises Cash Concerns for PharmaciesNevada Sues to Deny Kids Access to Meta’s Messenger EncryptionOpenAI Says New York Times ‘Hacked’ ChatGPT to Build Copyright LawsuitHessen Consumer Center Says Systems Encrypted by RansomwareOpen-Source Xeno RAT Trojan Emerges as a Potent Threat on GitHubMalicious Code in Tornado Cash Governance Proposal Puts User Funds at RiskLabHost Cybercrime Service Lets Anyone Phish Canadian Bank UserseBay, VMware, McAfee Sites Hijacked in Sprawling Phishing OperationBlack Basta, Bl00dy Ransomware Gangs Join ScreenConnect AttacksFour Million WordPress Sites Vulnerable to LiteSpeed Plugin FlawWordPress Plugin Alert – Critical SQLi Vulnerability Threatens 200K+ WebsitesWindows February 2024 Updates Fail to Install With 0x800F0922 Errors
2/26/2024 February 26, 2024February 26, 2024 ~ The Cyber Beat ~ Leave a comment CISA Issues Alert on APT29’s Cloud Infiltration TacticsNorth Korean Hackers Targeting Developers with Malicious npm PackagesKrebs: FBI’s LockBit Takedown Postponed a Ticking Time Bomb in Fulton County, Ga.…LockBit Cybercrime Gang Says It Is Back Online Following Global Police Bust8,000+ Domains of Trusted Brands Hijacked for Massive Spam OperationWhite House Urges Tech Industry to Eliminate Memory Safety VulnerabilitiesHackers Exploit 14-Year-Old CMS Editor on Gov’t, Edu Sites for SEO PoisoningSteel Giant ThyssenKrupp Confirms Cyberattack on Automotive DivisionU.S. Pharmacy Outage Triggered by ‘Blackcat’ Ransomware at UnitedHealth Unit, Sources SayBanking Trojans Target Latin America and Europe Through Google Cloud RunNew IDAT Loader Attacks Using Steganography to Deploy Remcos RATNIST Releases Cybersecurity Framework 2.0
2/23-25/2024 February 25, 2024February 26, 2024 ~ The Cyber Beat ~ Leave a comment AT&T Says Outage Not Caused by Cyberattack…AT&T’s Botched Network Update Caused Major Wireless Outage…AT&T to Give Billing Credits to Consumers Impacted by OutageOperation Cronos: Who Are the LockBit Admins…LockBit Identity Reveal a Bigger Letdown Than Game of Thrones Season 8 & Every J.J. Abrams Production…LockBit Ransomware Gang Has Over $110 Million in Unspent BitcoinA Vending Machine Error Revealed Secret Face Recognition TechPayPal Files Patent for New Method to Detect Stolen CookiesMicrosoft Releases PyRIT – A Red Teaming Tool for Generative AIThe Royal Canadian Mounted Police (RCMP) Investigating Cyber Attack as Its Website Remains DownMalawi Immigration Dept. Halts Passport Services Amid CyberattackU-Haul Tells 67,000 Customers That Cyber-Crooks Drove Away With Their Personal InfoInsomniac Games Alerts Employees Hit by Ransomware Data BreachUnitedHealth Confirms Optum Hack Behind U.S. Healthcare Billing OutageAquent and CIGNA Affected by Third-Party Data Breach at Prospect Medical HoldingsDormant PyPI Package Compromised to Spread Nova Sentinel MalwareCybercriminal Groups Actively Exploiting ‘Catastrophic’ ScreenConnect Bug
2/22/2024 February 22, 2024February 22, 2024 ~ The Cyber Beat ~ Leave a comment AT&T Service Restored After Customers Hit by Widespread Cellular Outages in the U.S.…Verizon and T-Mobile Users Also Affected…AT&T Outage Prompts Urgent Investigation Into Possible Cyberattack…White House Says FBI, Homeland Security Dept Looking Into AT&T OutageRussian Hackers Attack Ukrainian Media OutletsRussian-Aligned Network Doppelgänger Targets German ElectionsLeak Reveals the Unusual Path of ‘Urgent’ Russian Threat WarningRussia Arrests Three Alleged SugarLocker Ransomware MembersKrebs: New Leak Shows Business Side of China’s APT MenaceRussian Government Software Backdoored to Deploy Konni RAT MalwareSMBs at Risk From SendGrid-Focused Phishing TacticsPrescriptions Nationwide Impacted by Cyber Incident at Change HealthcareScreenConnect Servers Hacked in LockBit Ransomware Attacks…Authorities Dismantled LockBit Before It Could Unleash Revamped Variant…Ransomware Associated With LockBit Still Spreading 2 Days After Server TakedownZero-Click Apple Shortcuts Vulnerability Allows Silent Data TheftBitwarden’s New Auto-Fill Option Adds Phishing ResistanceAvast Fined $16.5 Million for ‘Privacy’ Software That Actually Sold Users’ Browsing Data
2/21/2024 February 22, 2024February 22, 2024 ~ The Cyber Beat ~ Leave a comment Russian Hackers Launch Email Campaigns to Demoralize UkrainiansOnline Dump of Chinese Hacking Documents Offers a Rare Window Into Pervasive State SurveillanceMustang Panda Targets Asia with Advanced PlugX Variant DOPLUGSBiden Order Seeks to Improve U.S. Port CybersecurityU.S. Gov’t Shares Cyberattack Defense Tips for Water UtilitiesCyber Threats Against Heavy Industry IntensifyApple’s iMessage Is Getting Future-Resistant EncryptionU.S. Offering Rewards for Information on Leaders of LockBit Ransomware Group…LockBit Held Victims’ Data Even After Receiving Ransom Payments to Delete ItDuo Face 20 Years in Prison Over Counterfeit iPhone ScamOver 40% of Firms Struggle With Cybersecurity Talent ShortageU.S. Health Tech Giant Change Healthcare Hit by CyberattackeSentire Confirms Rhysida Ransomware VictimsButler County (PA) Network Hacked, Data Stolen, Officials AnnounceNew ‘VietCredCare’ Stealer Targeting Facebook Advertisers in VietnamNew SSH-Snake Malware Steals SSH Keys to Spread Across the NetworkHackers Abuse Google Cloud Run In Massive Banking Trojan CampaignScreenConnect Critical Bug Now Under Attack as Exploit Code EmergesJoomla Fixes XSS Flaws That Could Expose Sites to RCE AttacksNew Wi-Fi Vulnerabilities Expose Android and Linux Devices to HackersMicrosoft Finally Expands Free Purview Audit Logging—but Only for Government t Agencies
2/20/2024 February 20, 2024February 20, 2024 ~ The Cyber Beat ~ Leave a comment Multiple Top UK Universities Recovering Following Targeted DDoS Attack From Anonymous SudanCritical Infrastructure Software Maker PSI Software SE Confirms Ransomware AttackHacked Iraqi Voter Information Found for Sale OnlineSignal Finally Rolls Out Usernames, So You Can Keep Your Phone Number PrivateVietnam to Collect Biometrics – Even DNA – For New ID CardsCarmakers Park Aging Models as U.N. Cyber Rule Comes Into EffectKnight Ransomware Source Code for Sale After Leak Site Shuts DownKrebs: Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll AffiliatesMedian Ransomware Demands Grow to $600K a PopIndia’s Motilal Oswal Says Operations Unaffected by Cyber IncidentFulton County (GA) Officials Say They Did Not Pay Ransom After Cybersecurity AttackPrince George’s County Public Schools (MD) Says Data of 100,000 People Affected in Ransomware AttackInsider Steals 80,000 Email Addresses From UK District CouncilsLinux Malware Campaign “Migo” Targets Redis For CryptominingVoltSchemer Attacks Use Wireless Chargers to Inject Voice Commands, Fry PhonesNew Typosquatting and Repojacking Tactics Uncovered on PyPICritical Flaws Found in ConnectWise ScreenConnect Software – Patch NowVMware Urges Admins to Remove Deprecated, Vulnerable Auth Plug-in
2/19/2024 February 19, 2024February 19, 2024 ~ The Cyber Beat ~ Leave a comment Israeli Aircraft Survive “Cyber-Hijacking” AttemptsIranian Hackers Target Middle East Policy Experts with New BASICSTAR BackdoorNorth Korean Hackers Linked to Defense Sector Supply-Chain AttackThe Danger Lurking Just Below Ukraine’s SurfaceCybercriminals Have Small Town, USA, in Their Crosshairs: How to Fight BackLockBit Cybercrime Gang Disrupted by International Police OperationEU Launches Investigation Into TikTok Over Child Protection and Privacy ConcernsWyze Says Camera Breach Let 13,000 Customers Briefly See Into Other People’s HomesCactus Ransomware Claim to Steal 1.5TB of Schneider Electric DataSpectrum Vision (NY) Files Notice of Breach Affecting Patients of Multiple ProvidersMeta Warns of 8 Spyware Firms Targeting iOS, Android, and Windows DevicesAnatsa Banking Trojan Resurfaces, Targets European BanksHackers Exploit Critical RCE Flaw in Bricks WordPress Site BuilderOver 28,500 Exchange Servers Vulnerable to Actively Exploited Bug
2/16-18/2024 February 19, 2024February 19, 2024 ~ The Cyber Beat ~ Leave a comment FBI Director Says China Cyberattacks on U.S. Infrastructure Now at Unprecedented ScaleRussian APT ‘Winter Vivern’ Targets European Government, MilitaryU.S. State Government Network Breached via Former Employee’s AccountKeyTrap Attack: Internet Access Disrupted with One DNS PacketNorth Korean Hackers Now Launder Stolen Crypto via YoMix TumblerHackers Exploit EU Agenda in Spear Phishing CampaignsHacker Arrested for Selling Bank Accounts of U.S., Canadian UsersFBI’s Most-Wanted Zeus and IcedID Malware Mastermind Pleads GuiltyWyze Security Cameras Are Coming Back Online After an Outage Cut Off Access…Wyze Cameras Let Some Owners See Into a Stranger’s Home — AgainALPHV Ransomware Claims loanDepot, Prudential Financial BreachesAlpha Ransomware Linked to NetWalker Operation Dismantled in 2021Virginia Farm Bureau Notifies 261,187 of October 2022 Data BreachCISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD VulnerabilitySolarWinds Fixes Critical RCE Bugs in Access Rights Audit Solution
2/15/2024 February 15, 2024February 15, 2024 ~ The Cyber Beat ~ Leave a comment Pentagon Launches Nuke-Spotting Satellites Amid Russian Space Bomb RumorsU.S. Conducted Cyberattack on Suspected Iranian Spy ShipDOJ Disrupts Russian Hacking Campaign That Infiltrated Homes, Small BusinessesRussian Turla Hackers Target Polish NGOs with New TinyTurla-NG BackdoorGoldPickaxe Trojan Blends Biometrics Theft and Deepfakes to Scam BanksNginx Core Developer Quits Project in Security Dispute, Starts “Freenginx” ForkOpenAI Blocks State-Sponsored Hackers From Using ChatGPTNeuberger: Defining Espionage vs. Pre-Positioning for Attacks Is Key to Battling State ActorsU.S. Offers Up to $15 Million for Tips on ALPHV/Blackcat Ransomware GangLockBit Claims Ransomware Attack on Fulton County, GeorgiaLockBit Claims Cyberattack on Indian Broker Motilal OswalKadac Australia Hit by Medusa Ransomware Attack, Threat Group Demands $100K“TicTacToe Dropper” Malware Distribution Tactics RevealedNew Qbot Malware Variant Uses Fake Adobe Installer Popup for EvasionAWS SNS Hijackings Fuel Cloud Smishing CampaignRansomHouse Gang Automates VMware ESXi Attacks With New MrAgent ToolOver 13,000 Ivanti Gateways Vulnerable to Actively Exploited BugsMicrosoft: New Critical Exchange Bug Exploited as Zero-Day
2/14/2024 February 14, 2024February 14, 2024 ~ The Cyber Beat ~ Leave a comment Microsoft and OpenAI Say Criminal & Nation-State Hackers Are Using ChatGPT to Improve Cyberattacks…China, Russia, and IranGenerative AI Financial Scammers Are Getting Very Good at Duping Work Email‘AI Girlfriends’ Are a Privacy NightmareIranian Hackers Target Israel and U.S. to Sway Public Opinion in Hamas ConflictChina’s Volt Typhoon Spies Broke Into Emergency Network of ‘Large’ U.S. CityFinancial Firms Expect Big Changes from European Cyber RulesDuckDuckGo Browser Gets End-to-End Encrypted Sync FeatureTrans-Northern Pipelines Investigating ALPHV Ransomware Attack ClaimsKrebs: Minnesota-Based U.S. Internet Leaked Years of Internal, Customer EmailsColorado Public Defender’s Office Disrupted by CyberattackRomanian Hospital Ransomware Crisis Attributed to Third-Party Breach: Hipocrate Information SystemUbuntu ‘command-not-found’ Tool Could Trick Users into Installing Rogue PackagesNew Critical Microsoft Outlook RCE Bug Is Trivial to ExploitZoom Patches Critical Privilege Elevation Flaw in Windows AppsMicrosoft Exchange Update Enables Extended Protection by Default
2/13/2024 February 14, 2024February 14, 2024 ~ The Cyber Beat ~ Leave a comment U.S., UK and India Among the Countries Most At Risk of Election Cyber InterferenceU.S. Needs to Take China’s Cyber-Threat to Infrastructure More SeriouslyAs Online Romance Scams Rise, Banks Ask For Help to Save Victims BillionsHackers Steal $290 Million in Crypto From PlayDapp Gaming Platform200,000 Facebook Marketplace User Records Leaked on Hacking ForumMeta Says Risk of Account Theft After Phone Number Recycling Isn’t Its Problem to SolveCyber Vendors See Signs of Market RecoveryHackers Used New Windows Defender Zero-Day to Drop DarkMe MalwareKrebs: Fat Patch Tuesday, February 2024 Edition…Microsoft February 2024 Patch Tuesday Fixes 2 Zero-Days, 73 FlawsBank of America Customers at Risk After Vender Infosys McCamish Systems Data BreachPrudential Financial Breached in Data Theft CyberattackIntegris Health Says Data Breach Impacts 2.4 Million PatientsFertility Tracker Glow Fixes Bug That Exposed Users’ Personal DataSouthern Water Notifies Customers and Employees of Data BreachGerman Battery Maker Varta Says Five Plants Hit by CyberattackGlupteba Botnet Evades Detection with Undocumented UEFI BootkitPikaBot Resurfaces with Streamlined Code and Deceptive TacticsNotorious Bumblebee Malware Re-emerges with New Attack MethodsIvanti Vulnerability Exploited to Install ‘DSLog’ Backdoor on 670+ IT Infrastructures
2/12/2024 February 12, 2024February 12, 2024 ~ The Cyber Beat ~ Leave a comment U.S. Government Accountability Office Agency Says It Was Alerted to Breach by Contractor CGI FederalChina Targets U.S. Hacking Ops in Media OffensiveA Backroom Deal Looms Over a High-Stakes U.S. Surveillance FightThe Hidden Injustice of CyberattacksFCC Gets Tough: Telcos Must Now Tell You When Your Personal Info Is StolenRhysida Ransomware Cracked, Free Decryption Tool ReleasedUnited Nations Digging Into DPRK Crypto Cyberattacks Totaling $3BRansomware Attack Forces 21 Romanian Hospitals to Go OfflineSophisticated Cyber-Attack Hits Islamic Charity in Saudi ArabiaJet Engine Dealer to Airlines Willis Lease Finance Corporation Discloses ‘Unauthorized Activity’Caravan and Motorhome Club Admits Wide Array of Personal Data Potentially AccessedCity of Haysville (KS) Email Account CompromisedMalicious Campaign Impacts Hundreds of Microsoft Azure AccountsCISA: Roundcube Email Server Bug Now Exploited in Attacks
2/9-11/2024 February 11, 2024February 11, 2024 ~ The Cyber Beat ~ Leave a comment Ukraine Telecom CEO Describes Russian Attack That Wiped Thousands of ComputersAI-Powered Robocalls Banned by FTC Ahead of U.S. ElectionAmericans Lost Record $10 Billion to Fraud in 2023, FTC WarnsCanada Declares Flipper Zero Public Enemy No. 1 in Car-Theft CrackdownU.S. DoJ Dismantles Warzone RAT Infrastructure, Arrests Key OperatorsUK to Replace Physical Biometric Immigration Cards With E-visasMiddle East Cybersecurity Teams Want More BudgetHow ‘Big 4′ Nations’ Cyber Capabilities Threaten the WestA Celebrated Cryptography-Breaking Algorithm Just Got an Upgrade‘World’s Biggest Casino’ App WinStar Exposed Customers’ Personal DataKrebs: Juniper Support Portal Exposed Customer Device InfoConnecticut College Discloses Data Breach From 11 Months AgoVail-Summit Orthopaedics & Neurosurgery (CA) Notifies Patients of Recent Data BreachNew Coyote Trojan Targets 61 Brazilian Banks with Nim-Powered AttackMoqHao Android Malware Evolves with Auto-Execution CapabilityNew RustDoor macOS Malware Impersonates Visual Studio UpdateExpressVPN Bug Has Been Leaking Some DNS Requests for YearsFortinet Warns of Critical FortiOS SSL VPN Flaw Likely Under Active Exploitation
2/8/2024 February 8, 2024February 8, 2024 ~ The Cyber Beat ~ Leave a comment UN Experts Investigate 58 Cyberattacks Worth $3 Bln by North KoreaKimsuky’s New Golang Stealer ‘Troll’ and ‘GoBear’ Backdoor Target South KoreaIran-Israel Cyber War Goes GlobalKrebs: From Cybercrime Saul Goodman to the Russian GRUGenerative AI Pushed Cyber, Business Teams Closer at E-Commerce Giant ZalandoLondon Underground Is Testing Real-Time AI Surveillance Tools to Spot CrimeFake LastPass Lookalike Made It Into Apple App StoreU.S. Offers $10 Million for Tips on Hive Ransomware LeadershipData Breaches at Viamedis and Almerys Impact 33 Million in FranceHyundai Motor Europe Hit by Black Basta Ransomware AttackFunerals Reportedly Canceled Due to Ransomware Attack on Austrian TownAndroid XLoader Malware Can Now Auto-Execute After InstallationRaspberry Robin Evolves With Stealth Tactics, New ExploitsHijackLoader Evolves: Researchers Decode the Latest Evasion MethodsCritical Patches Released for New Flaws in Cisco, Fortinet, VMware ProductsIvanti: Patch New Connect Secure Auth Bypass Bug Immediately
2/7/2024 February 8, 2024February 8, 2024 ~ The Cyber Beat ~ Leave a comment U.S.: Chinese Hacking Campaign Aimed At Critical Infrastructure Goes Back Five YearsChinese Embassy in Netherlands: China Would Never Allow CyberattacksResearchers: Chinese Firm Behind ‘News’ Websites Pushes Pro-Beijing Content GloballyMeta to Introduce Labeling for AI-Generated Images Ahead of U.S. ElectionGovernments and Tech Giants Unite Against Commercial SpywareRansomware Payments Hit a Record $1.1 Billion in 20233 Million Smart Toothbrushes Were Not Used in a DDoS Attack After All, but It Could HappenLas Vegas Gears Up for Super Bowl Cyber ChallengeHalf of Polled Infosec Pros Say Their Degree Was Less Than Useful for Real-World WorkCyber Attack on Washington County (PA) Now Considered Ransomware AttackCalifornia State Worker Union Targeted by RansomwareHopSkipDrive (CA) Notifies Over 155k of Breach Involving Their Sensitive InformationAfter FBI Takedown, KV-Botnet Operators Shift Tactics in Attempt to Bounce BackCritical Bootloader Vulnerability in Shim Impacts Nearly All Linux DistrosCritical Cisco Bug Exposes Expressway Gateways to CSRF AttacksFortinet Warns of New FortiSIEM RCE Bugs in Confusing DisclosureExperts Detail New Flaws in Azure HDInsight Spark, Kafka, and Hadoop ServicesGoogle Tests Blocking Side-Loaded Android Apps With Risky Permissions
2/6/2024 February 6, 2024February 6, 2024 ~ The Cyber Beat ~ Leave a comment Chinese Hackers Infect Dutch Military Network With MalwareGoogle Says Spyware Vendors Behind Most Zero-Days It DiscoversU.S. Border Agency to Hire 50 AI Experts to Crack Down on Drugs, Child Abuse -DocumentWhatsApp Chats Will Soon Work With Other Encrypted Messaging AppsMeta’s Oversight Board Urges a Policy Change After a Fake Biden VideoExplicit Comments on School App After Apparent HackMalware-as-a-Service Now the Top Threat to OrganizationsMozilla Adds Paid-for Data-Deletion Tier to Monitor, Its Privacy-Breach RadarVerizon Insider Data Breach Hits Over 63,000 EmployeesHackers Steal Data of 2 Million in SQL Injection, XSS AttacksData Breach at French Healthcare Services Firm Puts Millions at RiskJ.D. Gilmour (CA) Breached by Unauthorized Access to Employee Email AccountResumeLooters Gang Raids Retail and Job Site DataBeware: Fake Facebook Job Ads Spreading ‘Ov3r_Stealer’ to Steal Crypto and CredentialsJetBrains Warns of New TeamCity Auth Bypass VulnerabilityMitsubishi Electric Factory Automation Flaws Expose Engineering Workstations
2/5/2024 February 6, 2024 ~ The Cyber Beat ~ Leave a comment Philippines Wards off Cyber Attacks From China-Based HackersPegasus Spyware Targeted iPhones of Journalists and Activists in JordanU.S. Rolls Out Visa Restriction Policy on People Who Misuse Spyware to Target Journalists, ActivistsUK Court Backlog Blocks Attempts to Fight Fraud EpidemicMurder Suspect Mistakenly Released From Jail After ‘Cybersecurity Incident’Finance Worker Pays Out $25 Million After Video Call With Deepfake ‘Chief Financial Officer’Teens Committing Scary Cybercrimes: What’s Behind the Disturbing Trend?HPE Investigates New Breach After Data for Sale on Hacking ForumCity of Jacksonville Beach (FL) Releases Statement on Last Week’s ‘Cybersecurity Event’Emmanuel College (MA) Reports Data Breach Affecting the Personal Information of 89k IndividualsPatchwork Using Romance Scam Lures to Infect Android Devices with VajraSpy MalwareNew Mispadu Banking Trojan Exploiting Windows SmartScreen FlawNewest Ivanti SSRF Zero-Day Now Under Mass ExploitationMicrosoft Outlook December Updates Trigger ICS Security Alerts
2/2-4/2024 February 5, 2024February 5, 2024 ~ The Cyber Beat ~ Leave a comment Russian APT28 Hackers Targeting High-Value Orgs with NTLM Relay AttacksU.S. Unveils Sanctions Targeting Iran Drone, Cyber Programs in Wake of Deadly Proxy StrikeMyanmar Hands Over Mob Bosses in Cyber-Fraud BustRubrik Plans April Listing Amid U.S. Probe Into Former Employee -SourcesTeen Chatting App Wizz Removed from Apple and Google Stores for Sextortion ConcernsBTC-e Server Admin Indicted for Laundering Ransom Payments, Stolen CryptoCheck if You’re in Google Chrome’s Third-Party Cookie Phaseout TestMicrosoft Is Bringing the Linux Sudo Command to Windows ServerMastodon Vulnerability Allows Hackers to Hijack Any Decentralized AccountResearchers Remotely Exploit Devices Used to Manage Safe Aircraft Landings and TakeoffsRussian Hackers Believed to be Behind Cyber Attack on Iceland’s Reykjavík UniversityLurie Children’s Hospital (IL) Took Systems Offline After CyberattackNorthern Light Health (ME) Computer Servers Hacked, No Patient Information LeakedPennsylvania Courts’ Website Target of Cyber AttackFBI Joins Investigation Into City of Germantown (TN) CyberattackClackamas Community College (OR) Still Recovering After ‘Ransomware Attack’Knight Barry Provides Notice of Data Breach to Consumers Following CyberattackClorox Says Cyberattack Caused $49 Million in ExpensesAnyDesk Hacked: Popular Remote Desktop Software Mandates Password ResetLeaky Vessels Flaws Allow Hackers to Escape Docker, Runc Containers
2/1/2024 February 2, 2024February 2, 2024 ~ The Cyber Beat ~ Leave a comment Cloudflare Says State-Backed Hackers Tried to Burrow Into Its Global Network…Using Auth Tokens Stolen in Okta AttackU.S. Agencies Failure to Oversee Ransomware Protections Threaten White House Cyber GoalsAviation Industry to Tackle GPS Security ConcernsA Startup Allegedly ‘Hacked the World.’ Then Came the Censorship—and Now the BacklashEx-CIA Software Engineer Sentenced to 40 Years for Giving Secrets to WikiLeaksKrebs: Arrests in $400M SIM-Swap Tied to Heist at FTX?Interpol-Led Initiative Targets 1300 Suspicious IPsPalo Alto Networks Must Pay Centripetal $151.5 Million in Patent DisputeRise of Deepfake Threats Means Biometric Security Measures Won’t Be EnoughFTC Orders Blackbaud to Boost Security After Massive Data BreachFootball Australia Investigating ‘Possible Data Breach’Encore Bank Data Breach After Hackers Access an Employee Email AccountMore Android Apps Riddled With Malware Spotted on Google PlayPurpleFox Malware Infects Thousands of Computers in UkraineFritzFrog Returns with Log4Shell and PwnKit, Spreading Malware Inside Your NetworkExposed Docker APIs Under Attack in ‘Commando Cat’ Cryptojacking CampaignHeadCrab 2.0 Goes Fileless, Targeting Redis Servers for Crypto MiningWarning: New Malware Emerges in Attacks Exploiting Ivanti VPN VulnerabilitiesNew Windows Event Log Zero-Day Flaw Gets Unofficial PatchesCISA Orders Federal Agencies to Disconnect Ivanti VPN Appliances by Saturday