6/28-30/2024 June 30, 2024June 30, 2024 ~ The Cyber Beat ~ Leave a comment TeamViewer Links Corporate Cyberattack to Russian State HackersKimsuky Using TRANSLATEXT Chrome Extension to Steal Sensitive DataGoogle Thwarts Over 10,000 Attempts by Chinese Influence OperatorFake Information on TikTok is RampantFake IT Support Sites Push Malicious PowerShell Scripts as Windows FixesDev Rejects CVE Severity, Makes His GitHub Repo Read-OnlyDark Reading Confidential: Meet the Ransomware Negotiators‘I Don’t See It Happening’: CISA Chief Dismisses Ban on Ransomware PaymentsThe U.S. Wants to Integrate the Commercial Space Industry With Its Military to Prevent Cyber AttacksGoogle Is Piloting Face Recognition for Office SecurityGoogle to Block Entrust Certificates in Chrome Starting November 2024Insurers Warn Standardizing Cyber Policies Could Limit Future CoverageFormer Geisinger IT Employee Accessed Data of Over 1 Million U.S. PatientsNearly 4,000 Arrested in Global Police Crackdown on Online Scam NetworksPolish Parliament Strips Official of Immunity, Clearing Path for Prosecution in Spyware ScandalHubSpot Investigating Customer Account HacksDairy Giant Agropur Says Data Breach Exposed Customer InfoInfosys McCamish Says LockBit Stole Data of 6 Million PeopleLurie Children’s Hospital of Chicago Says Nearly 800,000 Affected by January Ransomware AttackBlackSuit Ransomware Gang Claims Attack on KADOKAWA CorporationNow Targeting: Meet Brain Cipher — The New Ransomware Behind Indonesia’s Data Center AttackTicketmaster Sends Notifications About Recent Massive Data BreachPolyfill.io, BootCDN, Bootcss, Staticfile Attack Traced to 1 OperatorNew Unfurling Hemlock Threat Actor Floods Systems With MalwareNew SnailLoad Attack Exploits Network Latency to Spy on Users’ Web Activities8220 Gang Exploits Oracle WebLogic Server Flaws for Cryptocurrency MiningHackers Exploit Critical D-Link DIR-859 Router Flaw to Steal PasswordsResearchers Warn of Flaws in Widely Used Industrial Gas Analysis EquipmentGitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 OthersJuniper Releases Out-Of-Cycle Fix for Max Severity Auth Bypass Flaw
6/27/2024 June 27, 2024June 27, 2024 ~ The Cyber Beat ~ Leave a comment TeamViewer’s Corporate Network Was Breached in Alleged APT29 HackCrimea Warns of Internet Disruptions Following DDoS Attacks on Local Telecom OperatorsChinese Cyberspies Employ Ransomware in Attacks for DiversionChina-Sponsored Attackers Target 40K Corporate Users in 90 DaysU.S. Lawmakers Wave Red Flags Over Chinese Drone DominanceCISOs Reveal Firms Prioritize Savings Over Long-Term SecurityOperation First Light Seizes $257m in Global Scam BustAs Backlash Mounts, Data Privacy Bill Markup Is Canceled Moments Before It Was to StartCloudflare: We Never Authorized polyfill.io to Use Our Name…Polyfill Claims It Has Been ‘Defamed’, Returns After Domain Shut DownStartups Scramble to Assess Fallout From Evolve Bank Data BreachRust-Based P2PInfect Botnet Evolves with Miner and Ransomware PayloadsPrompt Injection Flaw in Vanna AI Exposes Databases to RCE AttacksCritical GitLab Bug Lets Attackers Run Pipelines as Any UserCritical SQLi Vulnerability Found in Fortra FileCatalyst Workflow Application
6/26/2024 June 27, 2024June 27, 2024 ~ The Cyber Beat ~ Leave a comment U.S., Japan, South Korea Vow Strategic Cooperation to Boost Security, EconomiesChinese and N. Korean Hackers Target Global Infrastructure with Ransomware…‘ChamelGang’ APTAmerica’s Drinking Water Is Facing Attack, With Links Back to China, Russia and IranWhy Things Can’t Go Back To Normal After The Change Healthcare AttackWar Crime Prosecutions Enter a New Digital AgeJulian Assange Lands in Australia a Free Man…How Wikileaks Changed the Internet, From Clinton’s Emails to the Iraq WarU.S. Convicts Crypto-Robbing Gang Leader Who Kidnapped Victims Before Draining Their AccountFeds Put $5M Bounty on ‘CryptoQueen’ Ruja IgnatovaWhisperGate Suspect Indicted as U.S. Offers a $10M Bounty for His CaptureU.S. Supreme Court Will Not Curb Biden Administration Social Media ContactsRussia to Ban 81 Foreign Media Outlets in Response to Europe’s SanctionsIRS Apologizes for Data Breach That Leaked Taxpayer InformationLockBit Lied: Stolen Data Is From a Bank, Not U.S. Federal Reserve…Arkansas-Based Evolve Bank Confirms Cyber Attack and Data BreachCDK Expects Car Dealership System Outage to Last Until at Least June 30Texas Retina Associates Notifies Nearly 300k People of Recent Data BreachNovel Banking Malware ‘Snowblind’ Targets Customers in Southeast AsiaNew Credit Card ‘Caesar Cipher Skimmer’ Targets WordPress, Magento, and OpenCart SitesExploit for Critical Fortra FileCatalyst Workflow SQLi Flaw ReleasedProgress Discloses Two New Vulnerabilities in MOVEit ProductsApple Patches AirPods Bluetooth Vulnerability That Could Allow EavesdroppingGoogle Will Address Android’s Find My Device Network Issues ‘Over the Coming Weeks’CISA: Most Critical Open Source Projects Not Using Memory Safe Code
6/25/2024 June 26, 2024June 26, 2024 ~ The Cyber Beat ~ Leave a comment Cloud Breaches Impact Nearly Half of OrganizationsFBI Warns of Fake Law Firms Targeting Crypto Scam VictimsU.K. and U.S. Cops Band Together to Tackle Qilin’s Ransomware ShakedownsIndonesia Refuses to Pay $8M Ransom After CyberattackThe Mystery of AI Gunshot-Detection Accuracy Is Finally UnravelingDeepfake Creators Are Revictimizing GirlsDoPorn Sex Trafficking SurvivorsFinancial Sextortion Schemes Mostly Target Teenage Boys, Largely Through InstagramFrench Police Shut down Chat Website ‘Coco’ Reviled as ‘Den of Predators’Wikileaks’ Julian Assange Released from U.K. Prison, Heads to AustraliaSouth Africa’s National Health Lab Hit with Ransomware Attack Amid Mpox OutbreakNeiman Marcus Confirms Data Breach After Snowflake Account HackGeisinger Provides Notice of Data Breach for More Than One Million PatientsNew Medusa Trojan Variant Emerges with Enhanced Stealth FeaturesIf You’re Using polyfill.io Code on Your Site – Like 100,000+ Are – Remove It ImmediatelyNew Attack Technique Exploits Microsoft Management Console FilesP2PInfect Botnet Targets REdis Servers with New Ransomware ModuleMultiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts
6/24/2024 June 25, 2024June 25, 2024 ~ The Cyber Beat ~ Leave a comment Thwarting Cyberattacks From China Is DHS’s Top Infrastructure Security PriorityChina-Based RedJuliett Targets Taiwan in Cyber Espionage CampaignLockBit Claims Hack of the U.S. Federal ReserveRed Tape Is Making Hospital Ransomware Attacks WorseGoogle Introduces New Framework Called ‘Project Naptime’ for Improved AI-Powered Vulnerability ResearchRussian Hackers Sanctioned by European Council for Attacks on EU and UkraineFour FIN9 Hackers Indicted for Cyberattacks Causing $71M in LossesSellafield Pleads Guilty to Historic Cybersecurity OffensesJulian Assange to Plead Guilty in U.S. Case…Allowing Him to Go FreeCyber Attack Compromised Indonesia Data Centre, Ransom SoughtLevi’s and More Affected in Pants-Dropping Week of Data BreachesCar Dealerships in North America Revert to Pens and Paper After Cyberattacks on CDK Global…Multiple Car Dealers Report Disruptions to SECHeart South Cardiovascular Group (AL) Files Official Notice of Data BreachModular Malware Boolka’s BMANAGER Trojan ExposedAndroid Users Warned of Rising Malware Threat From Rafel RATNew Attack Uses MSC Files and Windows XSS Flaw to Breach NetworksCritical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool
6/21-23/2024 June 23, 2024June 23, 2024 ~ The Cyber Beat ~ Leave a comment Since Joining NATO, Sweden Claims Russia Has Been Borking Nordic SatellitesJapan’s Space Agency Hit by Series of Cyberattacks Since Last Year, Official SaysU.S. Imposes Sanctions on Russia’s AO Kaspersky Lab Executives Over Cyber Risks…But Not Eugene Kaspersky…Kaspersky’s U.S. Customers Face Tight Deadline Following Gov’t BanPolish Investigators Seize Pegasus Spyware Systems as Part of Probe Into Alleged AbuseChinese Hackers Deploy SpiceRAT and SugarGh0st in Global Espionage CampaignRisk of Getting Malicious Extension From Chrome Store Way Worse Than Google’s Letting On, Study SuggestsFacebook PrestaShop Module Exploited to Steal Credit CardsWired: Perplexity Plagiarized Our Story About How Perplexity Is a Bullshit MachineFive Men Convicted for Operating Illegal Streaming Site JetflicksTor Browser 13.5 Brings Android Enhancements, Better Bridge ManagementMultifactor Authentication Is Not Enough to Protect Cloud DataCISO Corner: Critical Infrastructure Misinformation; France’s Atos BidCDK Global Begins to Restore Systems After Cyber Hack Hits Thousands of Retailers…CDK Warns: Threat Actors Are Calling Customers, Posing as Support…CDK Global Outage Caused by BlackSuit Ransomware AttackSynnovis Attackers Publish NHS Patient Data Online…Almost 200 Cancer Operations PostponedChange Healthcare Lists the Medical Data Stolen in Ransomware AttackChemical Security Assessment Tool (CSAT) Warned of Possible Data Exfiltration Following CISA BreachLos Angeles Unified Confirms Student Data Stolen in Snowflake Account HackJollibee Investigates Alleged Data Breach Affecting MillionsExCobalt Cyber Gang Targets Russian Sectors with New GoRed BackdoorMilitary-Themed Email Scam Spreads Malware to Infect Pakistani UsersOyster Backdoor Spreading via Trojanized Popular Software DownloadsRatel RAT Targets Outdated Android Phones in Ransomware AttacksSolarWinds Serv-U Vulnerability Under Active Attack – Patch Immediately
6/20/2024 June 21, 2024June 21, 2024 ~ The Cyber Beat ~ Leave a comment U.S. Bans Kaspersky Software…Later This Year…“Security Concerns”…“Threat of Influence Operation”…Kaspersky Denies Threat AccusationsUN Security Council to Debate Cybersecurity Threats, Despite Russian VetoFrench Diplomatic Entities Targeted by Russian-Aligned NobeliumChinese Cyber Espionage Targets Telecom Operators in Asia Since 2021Experts Uncover New Evasive SquidLoader Malware Targeting Chinese OrganizationsKrebs: KrebsOnSecurity Threatened with Defamation Lawsuit Over Fake Radaris CEOApax Discussing With Possible Advisers IT Services Firm Lutech’s Sale, Sources SayHow Cybersecurity Can Steer Organizations Toward SustainabilityThreat Actor ‘IntelBroker’ Claims AMD and Apple BreachesCDK Global Hacked Again While Recovering From First CyberattackT-Mobile Denies It Was Hacked, Links Leaked Data to Vendor BreachCrooks Get Their Hands on 500K+ Consulting Radiologists Patient Records in Cyber-AttackMore Than 400,000 Have Data Leaked in Cyberattack on Texas Education OrganizationChange Healthcare Starts Notifying Data-Breach VictimsLinux Version of RansomHub Ransomware Targets VMware ESXi VMsNew Rust-Based Fickle Malware Uses PowerShell for UAC Bypass and Data ExfiltrationSolarWinds Serv-U Path Traversal Flaw Actively Exploited in AttacksCosmicSting Flaw Impacts 75% of Adobe Commerce, Magento SitesResearchers Uncover UEFI Vulnerability Affecting Multiple Intel CPUs
6/19/2024 June 19, 2024June 19, 2024 ~ The Cyber Beat ~ Leave a comment This Is What Would Happen if China Invaded TaiwanUNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term SpyingCyberattack Led to Harrowing Lapses at Ascension Hospitals, Clinicians Say…Don’t Blame Us for People Suffering – London Hospital HackersRoad to Redemption: GhostSec’s Hacktivists Went to the Dark Side. Now They Want Back.Perplexity Is a B*!!$4!t MachineFrance Seeks to Protect National Interests With Bid for Atos CybersecLeonardo Nears Deals to Grow in Cybersecurity, Space and Drone Industries, CEO SaysCybersecurity Burnout Costing Firms $700m+ AnnuallyCIISec Urges Employers to Target Young Talent in Gaming CentersHamster Kombat Is Dangerous, Agree Officials in Russia, Ukraine and BeyondNew Threat Actor ‘Void Arachne’ Targets Chinese Users with Malicious VPN InstallersQuishing Campaign Targets Chinese Citizens via Fake Official DocumentsCDK Global Cyberattack Impacts Thousands of U.S. Car DealershipsAdvance Auto Parts Confirms Data Breach Exposed Employee InformationCrown Equipment Confirms a Cyberattack Disrupted ManufacturingU.S. Meat Company Carl Buddig Suffers Data Security BreachScout Energy Partners (TX) Notifies Consumers of Early 2024 Data BreachKraken Crypto Exchange Hit by $3 Million Theft Exploiting Zero-Day FlawMailcow Mail Server Flaws Expose Servers to Remote Code ExecutionUpdate Your Windows PC to Avoid a Serious Wi-Fi Vulnerability
6/18/2024 June 18, 2024June 18, 2024 ~ The Cyber Beat ~ Leave a comment G7 Countries Vow to Establish Collective Cybersecurity Framework for Operational TechU.S. Secret Service, CISA Host Cybersecurity Training for Critical-Infrastructure DirectorsQuarter of Firms Suffer an API-Related Breach92% of Organizations Hit by Credential Compromise from Social Engineering AttacksScathing Report on Medibank Cyberattack Highlights Unenforced MFANew AI Deepfake Porn Bill Would Require Big Tech to Police and Remove ImagesTwo Men Guilty of Breaching Law Enforcement Portal in Blackmail SchemeCybersecurity Startup Huntress Valued at Over $1.5 Bln After Latest FundingSignal Foundation Warns Against EU’s Plan to Scan Private Messages for CSAMFTC Files Complaint Against TikTok for Alleged Data Privacy PracticesDark-Web Kingpin Puts ‘Stolen’ Internal AMD databases, Source Code up for Sale…AMD InvestigatingHackers Derail Amtrak Guest Rewards Accounts in BreachLendingTree Says It’s Probing Potential Snowflake-Related Data BreachHighland Health Systems (AL) Notifies Patients of July 2023 Data BreachONNX Phishing Service Targets Microsoft 365 Accounts at Financial FirmsFake Meeting Software ‘Vortax’ Spreads macOS InfostealerCybercriminals Exploit Free Software Lures to Deploy Hijack Loader and Vidar StealerNew Malware Targets Exposed Docker APIs for Cryptocurrency MiningVMware Discloses Critical Vulnerabilities, Urges Immediate Remediation
6/17/2024 June 18, 2024June 18, 2024 ~ The Cyber Beat ~ Leave a comment China-Linked Hackers Infiltrate East Asian Firm for 3 Years Using F5 DevicesChina Attempted Covert Military Drone Tie-Up With UK University – ReportShinyHunters Hacker Details How They Allegedly Stole Ticketmaster Data From SnowflakeAmazon-Powered AI Cameras Used to Detect Emotions of Unwitting UK Train PassengersEU Cybersecurity Label Should Not Discriminate Against Big Tech, European Groups SayAcademics Develop Testing Benchmark for LLMs in Cyber Threat IntelligenceEmpire Market Owners Charged for Enabling $430M in Dark Web TransactionsPanera Bread Likely Paid a Ransom in March Ransomware AttackCleveland Confirms Ransomware Attack as City Hall Remains ClosedAll Households in Scottish Region to Get Alert About Hackers Publishing Stolen Medical DataU.S. to Stop Advance Payments for Medicare Providers Hit by Change HackNiceRAT Malware Targets South Korean Users via Cracked SoftwareFake Google Chrome Errors Trick You Into Running Malicious Powershell ScriptsHackers Exploit Legitimate Websites to Deliver BadSpace Windows BackdoorSpace: The Final Frontier for Cyberattacks
6/14-16/2024 June 16, 2024June 16, 2024 ~ The Cyber Beat ~ Leave a comment ICC Probes Cyberattacks in Ukraine as Possible War Crimes, Sources SayUkraine Busts SIM Farms Targeting Soldiers With SpywareTaiwan Must Prepare for Cyber, Financial Attacks by ChinaMicrosoft to Delay Launch of AI Recall Tool Due to Security ConcernsApple’s AI for iPhone Just Showed Google How It’s DoneMeta Pauses Plans to Train AI Using European Users’ Data, Bowing to Regulatory PressureIt’s Time for the FTC to Act on ChatGPTGoogle Loses Bid to End U.S. Antitrust Case Over Digital AdvertisingFrench State Bidding for Piece of Atos, Offers €700MKrebs: Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested…Scattered Spider Hackers Switch Focus to Cloud Apps for Data TheftFormer IT Employee Gets 2.5 Years for Wiping 180 Virtual ServersNigerian Faces up to 102 Years in the Slammer for $1.5m Phishing ScamHow to Spot a Business Email Compromise ScamA Guide to RCS, Why Apple’s Adopting It, and How It Makes Texting BetterStanford Internet Observatory Wilts Under Legal Pressure During Election YearPakistani Hackers Use DISGOMOJI Malware in Indian Government Cyber Attacks…Controlled Through Emojis Sent From DiscordNorth Korean Hackers Target Brazilian Fintech with Sophisticated Phishing TacticsGrandoreiro Banking Trojan Hits Brazil as Smishing Scams Surge in PakistanLondon Hospital Hack Delayed More Than 800 OperationsKeytronic Confirms Data Breach After Ransomware Gang Leaks Stolen FilesTruist Bank Says Breach of Customer Data Is Unrelated to SnowflakeKulicke and Soffa Admit Data Breach From LockBit AttackPhishing Attack Hits L.A. County Public Health, Jeopardizing 200,000+ Residents’ InfoInsurance Giant Globe Life Investigating Web Portal BreachCISA Warns of Windows Bug Exploited in Ransomware AttacksNew ARM ‘TIKTAG’ Attack Impacts Google Chrome, Linux SystemsASUS Warns of Critical Remote Authentication Bypass on 7 RoutersMozilla Firefox Can Now Secure Access to Passwords With Device CredentialsMicrosoft: New Outlook Security Changes Coming to Personal Accounts
6/13/2024 June 14, 2024June 14, 2024 ~ The Cyber Beat ~ Leave a comment Arid Viper Hackers Spy in Egypt and Palestine Using Android SpywarePakistan-Linked Malware Campaign ‘Operation Celestial Force’ Evolves to Target Windows, Android, and macOSU.S. Lawmakers Grill Microsoft President Over China Ties, Hacks…Microsoft in Damage-Control Mode, Says It Will Prioritize Security Over AI…Majority of Voters Concerned With Microsoft Ties to Government After Breaches: PollNew Attack Technique ‘Sleepy Pickle’ Targets Machine Learning ModelsU.S. Space Force Wanted $77M to Reinforce Gps – And Congress Shot It DownNew Apple iPhone App Proves Just How Hard It Is to Kill the Online PasswordCyber Insurance Claims Hit Record High in North AmericaCyber and Data Privacy Insurance Trends in an Era of Increased RegulationTraverse City (MI) & Newburgh (NY) City Governments Face Shutdowns After Ransomware AttacksAscension: Hackers Stole Some Patient Data but Didn’t Breach Electronic Health Record System…Ascension Attack Caused by Employee Downloading Malicious FileTruist Bank Confirms Breach After Stolen Data Shows up on Hacking ForumPanera Warns of Employee Data Breach After March Ransomware AttackNew York Times Warns Freelancers of GitHub Repo Data BreachCybercriminals Employ PhantomLoader to Distribute SSLoad MalwarePhishing Emails Abuse Windows Search Protocol to Push Malicious ScriptsExploit for Veeam Recovery Orchestrator Auth Bypass Available, Patch NowPoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager
6/12/2024 June 12, 2024June 12, 2024 ~ The Cyber Beat ~ Leave a comment China’s Dominant Drone Industry Is a Step Ahead of CongressChinese Hackers Leveraging ‘Noodle RAT’ BackdoorMedical-Targeted Ransomware Is Breaking Records After Change Healthcare’s $22M PayoutScattered Spider Now Affiliated with RansomHub Following BlackCat ExitU.S. Federal Authorities Say UnitedHealth Can Notify Victims of Massive Data BreachCISA Warns of Criminals Impersonating Its Employees in Phone CallsAWS Adds Passkeys Support, Warns Root Users Must Enable MFAU.S. Business Owners Seek Higher Insurance Coverage as AI, Election Risks Loom, Survey ShowsMicrosoft Deprecates Windows DirectAccess, Recommends Always On VPNPolice Arrest Conti and LockBit Ransomware Crypter SpecialistWhite House Report Dishes Deets on All 11 Major Government Breaches From 2023Life360 Confirms a Hacker Stole Tile Tracker IDs and Customer InfoToronto School Board Reports Ransomware Attack on Test EnvironmentEpic Games Database Leak Hints at a Trove of Unannounced GamesCryptojacking Campaign Targets Misconfigured Kubernetes ClustersNew Phishing Toolkit Uses PWAs to Steal Login CredentialsWithSecure Reveals Mass Exploitation of Edge Software and Infrastructure AppliancesGoogle Warns of Actively Exploited Pixel Firmware Zero-DayBlack Basta Ransomware May Have Exploited MS Windows Zero-Day FlawKrebs: Patch Tuesday, June 2024 “Recall” Edition
6/11/2024 June 12, 2024June 12, 2024 ~ The Cyber Beat ~ Leave a comment Chinese Actor SecShow Conducts Massive DNS Probing on Global ScaleChina-Linked ValleyRAT Malware Resurfaces with Advanced Data Theft TacticsChinese Hackers Breached 20,000 FortiGate Systems WorldwidePhishing Attacks Targeting U.S. and European Organizations Double According to Reports from Abnormal SecurityU.S. Leaders Dodge Questions About Israel’s Influence CampaignApple Launches Private Cloud Compute for Privacy-Centric AI ProcessingI Asked an AI Chatbot to Tell Me About Myself. It Was Wrong in an Uncanny Way.The Evolving Role Of Cybersecurity Operations In A Rapidly Changing WorldTicketmaster’s Snowflake Data Breach Was Just One of 165Trionfo Solutions Announces Data Breach Affecting BCBS of Texas, Illinois, Montana, Oklahoma and New MexicoNew Warmcookie Windows Backdoor Pushed via Fake Job OffersPure Storage Pwned, Claims Data Plundered by Crims Who Broke Into Snowflake WorkspaceTellYouThePass Ransomware Exploits Recent PHP RCE Flaw to Breach ServersJetBrains Warns of IntelliJ IDE Bug Exposing GitHub Access TokensKaspersky Finds Critical Vulnerabilities in ZKTeco Biometric Access Control TerminalMicrosoft June 2024 Patch Tuesday Fixes 51 Flaws, 18 RCEs
6/10/2024 June 11, 2024June 11, 2024 ~ The Cyber Beat ~ Leave a comment Sticky Werewolf Expands Cyber Attack Targets in Russia and BelarusGoogle Takes Down Influence Campaigns Tied to China, Indonesia, and RussiaIoT Vulnerabilities Skyrocket, Becoming Key Entry Point for Attackers…A Look at the Riskiest Connected Devices of 2024Apple’s Standalone Passwords App Syncs Across iOS, iPad, Mac, and WindowsApple’s AI Promise: “Your Data Is Never Stored or Made Accessible to Apple”…Everything Apple Announced at WWDC 2024America’s Rural Hospitals Keep Getting Attacked by Cybercriminals. Microsoft and Google Are Working to Fix ThatDeepfakes, Fraudsters and Hackers Are Coming for Cybersecurity Jobs16 DevSecOps Trends Shaping The Future Of Software And Cybersecurity23andMe Data Breach Under Investigation in UK and CanadaTwo Arrested in UK Over ‘Fake Cell Tower-Powered’ Smishing CampaignLondon Hospitals Face Blood Shortage After Synnovis Ransomware AttackCyber Incident Forces Cleveland to Shut down City HallVietnam’s State Postal Service Claims to Restore Its Systems After CyberattackSnowflake Tells Customers to Enable MFA as Investigations ContinueCylance Confirms Data Breach Linked to ‘Third-Party’ PlatformLykke Crypto Exchange Acknowledges Hack After Halting WithdrawalsDiversified Global Graphics Group Announces Data Breach Affecting an Unknown Number of Consumer SSNsMore_eggs Malware Disguised as Resumes Targets Recruiters in Phishing AttackGitloker Attacks Abuse GitHub Notifications to Push Malicious oAuth AppsExploit for Critical Veeam Auth Bypass Available, Patch NowArm Warns of Actively Exploited Flaw in Mali GPU Kernel DriversNetgear WNR614 Flaws Allow Device Takeover, No Fix Available
6/7-9/2024 June 9, 2024June 9, 2024 ~ The Cyber Beat ~ Leave a comment SPECTR Malware Targets Ukraine Defense Forces in SickSync CampaignDDoS Attacks Target EU Political Parties as Elections BeginDead in 6 Hours: How Nigerian Sextortion Scammers Targeted My SonFeds Seize Domains Linked to Crypto Investment Scam Preying on New York’s Russian DiasporaApple Might Reveal a New ‘Passwords’ App This WeekMicrosoft Will Switch Off Recall by Default After Security BacklashAmazon, Best Buy, Google May Soon Sell Home Smart Devices With ‘Hacker-Safe’ LabelCrowdStrike, KKR, GoDaddy to Join Benchmark S&P 500LastPass Says 12-Hour Outage Caused by Bad Chrome Extension UpdateEmailGPT Exposed to Prompt Injection AttacksSapphire Werewolf Hackers Spy on Russian Education, Defense and Aerospace IndustriesTrainees Urged to Help Hospitals After Cyber-Attack‘New York Times Source Code’ Leaks Online via 4chanJapan Video-Sharing Site Niconico Hit by CyberattackFrontier Warns 750,000 of a Data Breach After Extortion ThreatsChristie’s Starts Notifying Clients of RansomHub Data BreachWhat Snowflake Isn’t Saying About Its Customer Data BreachesMalicious VSCode Extensions with Millions of Installs DiscoveredCommando Cat Cryptojacking Attacks Target Misconfigured Docker InstancesNew PHP Vulnerability Exposes Windows Servers to Remote Code ExecutionSecurity Flaws Found in Popular WooCommerce Plugin
6/6/2024 June 7, 2024June 7, 2024 ~ The Cyber Beat ~ Leave a comment Ukraine Says Hackers Abuse SyncThing Data Sync Tool to Steal DataThe Snowflake Attack May Be Turning Into One of the Largest Data Breaches EverMicrosoft’s Recall Feature Is Even More Hackable Than You ThoughtSEC Cyber Disclosures Delayed Several Times Since December‘Significant Work’ Remains to Harmonize Cybersecurity Rules: WatchdogFCC Launches $200 Million Program to Bolster Cybersecurity for Schools and LibrariesFBI Encourages LockBit Victims to Step Right up for Free Encryption KeysGoogle Maps Timeline Data to be Stored Locally on Your Device for PrivacyGreylock Leads $36 Million Financing for Cybersecurity Startup Seven AITechnology, Regulations Can’t Save Orgs From Deepfake HarmNarrowing the Stubborn Cybersecurity Worker GapWhy Your Organization Should Focus More On OT CybersecurityLos Angeles Unified School District Investigates Data Theft ClaimsPandaBuy Pays Ransom to Hacker Only to Get Extorted AgainNearly 400,000 Affected by Data Breach at Panorama EyecareBrockton Area Multi-Services Files Notice of Data Breach Involving Client SSNsPruittHealth Notifies Patients of November 2023 Data Breach Following Ransomware AttackMuhstik Botnet Exploiting Apache RocketMQ Flaw to Expand DDoS AttacksHackers Exploit Legitimate Packer Software to Spread Malware UndetectedHackers Target Python Developers with Fake “Crytic-Compilers” Package on PyPINew Gitloker Attacks Wipe GitHub Repos in Extortion SchemeLinux Version of TargetCompany Ransomware Focuses on VMware ESXiPOC Exploit Code Published for 9.8-Rated Apache HugeGraph RCE FlawHackers Exploit 2018 ThinkPHP Flaws to Install ‘Dama’ Web Shells
6/5/2024 June 5, 2024June 5, 2024 ~ The Cyber Beat ~ Leave a comment Russian Hackers Claim Cyberattack on Spanish Defence CompanyChinese State-Backed Cyber Espionage ‘Crimson Palace’ Targets Southeast Asian GovernmentTrump, Biden Battle for Youth Vote on TikTokA U.S. Company Enabled a North Korean Scam That Raised Money for WMDsAriane Systems Check-in Terminals Used by Thousands of Hotels Leak Guest InfoThe Age of the Drone Police Is HereAlarming Cybersecurity Stats: What You Need To Know In 2024Apple Refused to Pay Bug Bounty to Russian Cybersecurity Firm Kaspersky LabPeak Design Accidentally Leaked 10 Years of Client Data and RecordsClub Penguin Fans Breached Disney Confluence Server, Stole 2.5gb of DataAdvance Auto Parts Stolen Data for Sale After Snowflake AttackQilin Ransomware Gang Linked to Attack on London HospitalsWD & Associates (RI) Data Breach Affects an Unknown Number of ConsumersRebranded Knight Ransomware Targeting Healthcare and Businesses WorldwideKali Linux 2024.2 Released With 18 New Tools, Y2038 Changes
6/4/2024 June 4, 2024June 4, 2024 ~ The Cyber Beat ~ Leave a comment London Hospitals Cancel Operations Following Ransomware IncidentTikTok Fixes Zero-Day Bug Used to Hijack High-Profile AccountsAccount Takeovers Outpace Ransomware as Top Security ConcernThis Hacker Tool Extracts All the Data Collected by Windows’ New Recall AIAI Is Your Coworker Now. Can You Trust It?FBI Warns of Fake Remote Work Ads Used for Cryptocurrency FraudChinese Spies Are Targeting Disgruntled U.S. Corporate Workers, Warns National Counterintelligence Head Michael CaseyBiden: ‘All the Bad Guys Are Rooting for Trump’ on Foreign Election MeddlingThings the Guys Who Stole My Phone Have Texted Me to Try to Get Me to Unlock ItCommand Senior Chief Busted for Secretly Setting up Wi-Fi on U.S. Navy Combat ShipPentagon ‘Doubling Down’ on Microsoft Despite ‘Massive Hack,’ Senators ComplainMicrosoft Accused of Tracking Kids With Education SoftwareMicrosoft Deprecates Windows NTLM Authentication ProtocolCrowdstrike Forecasts Upbeat Second-Quarter Revenue on Robust Demand for Cybersecurity SolutionsNetskope Crosses $500 Million in Subscription Revenue, in No Rush to Go PublicRussian Power Companies, IT Firms, and Gov’t Agencies Hit by Decoy Dog TrojanNew Multi-Stage Malware Targets Windows Users in UkraineSnowflake Warns: Targeted Credential Theft Campaign Hits Cloud CustomersARRL Says It Was Hacked by an “International Cyber Group”Christie’s Stolen Data Sold to Highest Bidder Rather Than Leaked, RansomHub ClaimsChildren’s Names, Addresses, and Medical Information Leaked From Billericay School in Essex After Cyber-AttackAustralian Mining Company Northern Minerals Discloses Breach After BianLian Leaks DataThriving Mind South Florida Notifies Patients of August 2023 Data BreachNew v3B Phishing Kit Targets Customers of 54 European Banks‘Fog’ Ransomware Rolls in to Target Education, Recreation SectorsDarkGate Malware Replaces AutoIt with AutoHotkey in Latest Cyber AttacksOracle WebLogic Server OS Command Injection Flaw Under Active AttackZyxel Issues Emergency RCE Patch for End-Of-Life NAS Devices
6/3/2024 June 4, 2024June 4, 2024 ~ The Cyber Beat ~ Leave a comment Andariel Hackers Target South Korean Institutes with New Dora RAT MalwareRussia Aims Cyber Operations at Summer OlympicsMicrosoft India’s X Account Hijacked in Roaring Kitty Crypto ScamAzure Service Tags Tagged as Security Risk, Microsoft DisagreesSnowflake Says There’s No Evidence Attackers Breached Its Platform to Hack TicketmasterRansomware Rises Despite Law Enforcement TakedownsAuthorities Ramp Up Efforts to Capture the Mastermind Behind EmotetData Firm Execs Convicted for Helping Fraudsters Target the ElderlyNIST Turns to IT Consultants to Clear National Vulnerability Database Backlog361 Million Stolen Accounts Leaked on Telegram Added to HIBPCollection Agency FBCS UPS Data Breach Tally to 3.2 Million PeopleCrooks Threaten to Leak 3B Personal Records ‘Stolen From Background Check Firm’Illinois Secretary of State Warning of a Data Breach Originating From Lake CountyCyberattack on Telecom Giant Frontier Claimed by RansomHubBeware: Fake Browser Updates Deliver BitRAT and Lumma Stealer MalwareResearchers Uncover RAT-Dropping npm Package Targeting Gulp UsersExploit for Critical Progress Telerik Auth Bypass Released, Patch NowResearcher Uncovers Flaws in Cox Modems, Potentially Impacting Millions
5/31-6/2/2024 June 2, 2024June 2, 2024 ~ The Cyber Beat ~ Leave a comment OpenAI, Meta, and TikTok Crack Down on Covert Influence Campaigns, Some AI-PoweredLobbyists for AI-Related Issues Surged in 2023Live Nation Took 11 Days to Confirm the Massive Ticketmaster Data Breach…Massive Ticketmaster, Santander Data Breaches Linked to Snowflake Cloud Storage…The Ticketmaster Data Breach May Be Just the BeginningWarren Buffett Is Worried About Potential for ‘Huge Losses’ in Booming, but Still Tiny Cyber Insurance MarketTrend Micro Taps Nvidia Software Tools for AI Cybersecurity OfferingMicrosoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT DevicesEuropol Identifies 8 Cybercriminals Tied to Malware Loader BotnetsPolice Dismantle Pirated TV Streaming Network That Made $5.7 MillionRussian Hackers Target Europe with HeadLace Malware and Credential HarvestingGermany’s Christian Democratic Party Hit by ‘Serious’ CyberattackPolish News Agency Probably Hit by Russian Cyberattack, Minister SaysAI Company Hugging Face Detects Unauthorized Access to Its Spaces PlatformThe Billericay School in Essex Facing ‘Critical Incident’ After Cyber AttackShinyHunters Claims Santander Breach, Selling Data for 30M CustomersJapanese Crypto Exchange DMM Bitcoin Warns That Hackers Stole $308 Million in Bitcoin (BTC)Kaspersky Releases Free Tool That Scans Linux for Known ThreatsGoogle Chrome Change That Weakens Ad Blockers Begins June 3rd