11/28/2024 November 28, 2024November 28, 2024 ~ The Cyber Beat ~ Leave a comment Undersea Cable Cuts in the Baltic Sea Are Stoking Geopolitical Tensions — Here’s What’s Going OnCloned Customer Voice Beats Bank Security ChecksThe Only Thing Worse Than Being Fired Is Scammers Fooling You Into Thinking You’re FiredTfL Faces Independent Investigation Over Cyber-Attack ResponseAlbanian Drug Smugglers Busted After Cops Decrypt CommsUK Hospital Network Postpones Procedures After CyberattackCrypto Exchange XT.com Suspends Withdrawals After Suspected $1.7M HackXMLRPC npm Library Turns Malicious, Steals Data, Deploys Crypto MinerCritical Vulnerabilities Discovered in Industrial Wireless Access PointHow Learning to Fly Made Me a Better Cybersecurity CEO
11/27/2024 November 28, 2024November 28, 2024 ~ The Cyber Beat ~ Leave a comment T-Mobile Says Salt Typhoon Cyber Attackers Had No Access to Customer Data…Salt Typhoon Chinese Hackers Breached T-Mobile’s Routers to Scope Out Network…Salt Typhoon’s Surge Extends Far Beyond U.S. TelcosBritish Government Demands Chinese-Owned Company Appoint a Security Chief With UK ClearancesKrebs: Hacker in Snowflake Extortions May Be a U.S. SoldierPolice Bust Pirate Streaming Service Making €250 Million per MonthAppeals Court Overturns Treasury Sanctions Against Crypto Mixer Tornado CashExxon Lobbyist Investigated Over Hack-And-Leak of Environmentalist Emails, Sources SayMicrosoft Is Being Investigated by the FTC Over Antitrust ConcernsFTC Changes Its Telemarketing Rules to Cover Growing ‘Tech Support Scam’ CallsAkamai Technologies: Bankruptcy Court Approves Bid for Edgio AssetsUK Nuclear Decommissioning Authority Opens Sellafield Cyber CenterBIC, Starbucks, Morrisons Continue Recovery After Blue Yonder Ransomware AttackHoboken (NJ) Hit with Ransomware Cyberattack, Officials SayData Broker SL Data Services Leaves 600K+ Sensitive Files Exposed OnlineCloudflare Says It Lost 55% of Logs Pushed to Customers for 3.5 HoursZello Asks Users to Reset Passwords After Security IncidentContemporary Information Corp (CA) Provides Notice of Data Breach Following Incident at BackChecked, LLCAttack Group APT-C-60 Targets Japan Using Trusted PlatformsHackers Abuse Popular Godot Game Engine to Infect Thousands of PCsNew Bootkit “Bootkitty” Targets Linux Systems via UEFIMatrix Botnet Exploits IoT Devices in Widespread DDoS Botnet CampaignCritical Flaw in ProjectSend Under Active Exploitation Against Public-Facing ServersMicrosoft Re-Releases Exchange Updates After Fixing Mail Delivery
11/26/2024 November 26, 2024November 26, 2024 ~ The Cyber Beat ~ Leave a comment Aggressive Chinese APT Group Earth Estries Targets Governments with New BackdoorsRussian RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks‘CyberVolk’ Hacktivists Use Ransomware in Support of Russian InterestsDarknet Services Fuel Holiday Scams and E-Commerce ExploitsEmergency Vehicle Lights Can Screw up a Car’s Automated Driving SystemMy Car Knows My Secrets, and I’m (Mostly) OK With ThatCrowdStrike Raises Annual Forecast on Steady Cybersecurity DemandOver 1,000 Arrested in Massive ‘Serengeti’ Anti-cybercrime OperationRansomHub Gang Says It Broke Into Networks of Texas City, Minneapolis AgencyNHS Trust Declares Major Incident for “Cybersecurity Reasons”Canadian Privacy Regulators Publish Details of Medical Testing Company LifeLabs Data BreachRadiologic Medical Services (IA) Announces Data Breach After Unauthorized Access to Employee Email AccountNew DDoS Campaign by ‘Matrix’ Exploits IoT Devices and Server MisconfigurationsNew NachoVPN Attack Uses Rogue VPN Servers to Install Malicious UpdatesCritical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote AttacksCISA Urges Agencies to Patch Critical “Array Networks” Flaw Amid Active Attacks
11/25/2024 November 26, 2024November 26, 2024 ~ The Cyber Beat ~ Leave a comment China Has Utterly Pwned ‘Thousands and Thousands’ of Devices at U.S. TelcosSalt Typhoon Hackers Backdoor Telcos With New GhostSpider MalwareFormer Verizon Employee Gets Four-Year Sentence for Sharing Cyber Secrets With Chinese GovernmentUK Minister Criticized Over ‘Hyperbolic’ Speech on Russia’s Cyber CapabilitiesAmerica’s Rivals Have a New Favorite Weapon: Criminal GangsDOJ: Man Hacked Networks to Pitch Cybersecurity ServicesCyberattacks Cost British Businesses $55 Billion in Past Five Years, Broker SaysNew York State Fines Geico and Travelers $11.3 Million for Data BreachesStarbucks, Others Faces Disruptions Following Ransomware Attack on Software Supplier Blue YonderSpring EQ (PA) Notifies Consumers of Data Breach Stemming from Compromised Employee Email AccountPyPI Python Library “aiocpa” Found Exfiltrating Crypto Keys via Telegram BotBlackBasta Ransomware Brand Picks up Where Conti Left OffCybersecurity Blind Spots in IaC and PaC Tools Expose Cloud Platforms to New AttacksResearchers Uncover Malware Using BYOVD to Bypass Antivirus ProtectionsQNAP Addresses Critical Flaws Across NAS, Router SoftwareGoing Way Beyond Secure by Demand
11/22-24/2024 November 24, 2024November 24, 2024 ~ The Cyber Beat ~ Leave a comment Russia’s Ballistic Missile Attack on Ukraine Is an Alarming FirstRussia Ready to Wage Cyber War on UK, Minister to SayChinese Hackers Preparing for Conflict, U.S. Cyber Official SaysWhite House Officials Meet with Telecoms Execs on Suspected China HackMicrosoft President Asks Trump to “Push Harder” Against Russian HacksTrump Taps Border Hawk to Head DHS. Will Noem’s ‘Enthusiasm’ Extend to Digital Domain?The Pentagon’s Battle Inside the U.S. For Control of a New Cyber ForceThe U.S. Is Calling Out Foreign Influence Campaigns Faster Than EverGoogle Exposes GLASSBRIDGE: A Pro-China Influence Network of Fake News SitesThree-Quarters of Black Friday Spam Emails Identified as ScamsBangkok Busts SMS Blaster Sending 1 Million Scam Texts From a VanMeta Removes Over 2 Million Accounts Pushing Pig Butchering ScamsSupreme Court Tosses Facebook Appeal in Shareholder Lawsuit Arising From Cambridge Analytica Data BreachDeliveryHero Subsidiary Fined $5.2 Million for Tracking Drivers’ GeolocationAndrew Tate’s Site ‘Real World’ Ransacked, Subscriber Data StolenSoftware Company Blue Yonder Providing Services to U.S. and UK Grocery Stores Says It Was Hit by Ransomware AttackMembers Trust Company (FL) Data Breach Following Compromised Email Accounts Affects 11,854 ConsumersRussian Fancy Bear Hackers Breach U.S. Firm Over Wi-Fi From Russia in ‘Nearest Neighbor Attack’Russian Cyber Spies TAG-110 Target Organizations with HatVibe and CherrySpy MalwareChina-Linked TAG-112 Targets Tibetan Media with Cobalt Strike Espionage CampaignAPT-K-47 (aka Mysterious Elephant) Uses Hajj-Themed Lures to Deliver Advanced Asyncshell MalwareNorth Korean Hackers Sapphire Sleet Steal $10M with AI-Driven Scams and Malware on LinkedInPyPI Attack: ChatGPT, Claude Impersonators Deliver JarkaStealer via Python LibrariesHackers Abuse Avast Anti-Rootkit Driver to Disable DefensesMicrosoft Rolls Out Recall to Windows Insiders With Copilot+ PCsMicrosoft Testing Windows 11 Support for Third-Party PasskeysSenators Call for Audit of TSA’s Facial Recognition Tech as Use Expands in Airports
11/21/2024 November 21, 2024November 21, 2024 ~ The Cyber Beat ~ Leave a comment Potential Trump Cyber Picks Coalesce — But Insiders Say There Could Be SurprisesChina’s Surveillance State Is Selling Citizen Data as a Side HustleChinese Ship Casts Shadow Over Baltic Subsea Cable SnipfestNorth Korean Front Companies Impersonate U.S. IT Firms to Fund Missile ProgramsThe AI Effect: Amazon Sees Nearly 1 Billion Cyber Threats a DayGoogle’s AI-Powered OSS-Fuzz Tool Finds 26 Vulnerabilities in Open-Source ProjectsMicrosoft Disrupts ONNX Phishing-as-a-Service InfrastructureFortinet VPN Design Flaw Hides Successful Brute-Force AttacksA New ‘Ultra-Secure’ Phone Carrier Says It Can Make You Harder to TrackMeta Finally Breaks Its Silence on Pig ButcheringU.S. Seizes PopeyeTools Cybercrime Marketplace, Charges AdministratorsKrebs: Feds Charge Five Men in ‘Scattered Spider’ RoundupDozens of Central Asian Targets Hit in Recent Russia-Linked Cyber-Espionage CampaignCyberattack at French Hospital Exposes Health Data of 750,000 PatientsStop & Shop Races to Restock Shelves After ‘Cybersecurity Issue’Gambling and Lottery Giant International Game Technology Disrupted by Cyberattack, Working to Bring Systems Back OnlineOver 145,000 Industrial Control Systems Across 175 Countries Found Exposed OnlineNow BlueSky Hit with Crypto Scams as It Crosses 20 Million UsersRockford Gastroenterology Associates (IL) Notifies 147,253 of 2023 Data BreachLinux Malware WolfsBane and FireWood Linked to Gelsemium APTVietnam’s Infostealer Crackdown Reveals VietCredCare and DuckTailNodeStealer Malware Targets Facebook Ad Accounts, Harvesting Credit Card DataWarning: Over 2,000 Palo Alto Networks Devices Hacked in Ongoing Attack Campaign
11/20/2024 November 21, 2024November 21, 2024 ~ The Cyber Beat ~ Leave a comment Chinese APT Group Targets Telecom Firms Linked to Belt and Road InitiativeInside the Booming ‘AI Pimping’ IndustryAmazon and Audible Flooded With ‘Forex Trading’ and Warez Listings60% of Emails with QR Codes Classified as Spam or MaliciousU.S. Charges Five in ‘Scattered Spider’ Hacking SchemeTwo Brothers Indicted for Operating Illegal Sports Streaming Service That Netted $7 MillionMITRE Shares 2024’s Top 25 Most Dangerous Software WeaknessesKrebs: Fintech Giant Finastra Investigating Data BreachNorfolk Sheriff’s Office (VA) Says They Were the ‘Victim of a Cybersecurity Event’Wexford County (MI) Computer Systems Returning After Cyberattack Forced ShutdownFBI Says BianLian Based in Russia, Moving From Ransomware Attacks to ExtortionGhost Tap: Hackers Exploiting NFCGate to Steal Funds via Mobile PaymentsFive Privilege Escalation Flaws Found in Ubuntu Needrestart
11/19/2024 November 20, 2024November 20, 2024 ~ The Cyber Beat ~ Leave a comment Data Privacy Experts Predict Some Wins Under Trump 2.0Hacker Is Said to Have Gained Access to File With Damaging Testimony About Matt GaetzRansomware Gangs on Recruitment Drive for Pen TestersLeaked Documents Show What Phones Secretive Tech ‘Graykey’ Can UnlockMicrosoft Shares More Details on Windows 11 Admin ProtectionMicrosoft Announces Its Own Black Hat-Like Hacking Event With Big Rewards for AI SecurityAuto Sector Scrambles to Retool Workforce for Electric and Automated FutureTSA Cyber Disclosure Requirements Worry Natural Gas CompaniesTSA Not Monitoring Transportation Sector Efforts to Stop Ransomware, Watchdog SaysD-Link Urges Users to Retire VPN Routers Impacted by Unfixed RCE FlawHealthcare Org Equinox Notifies 21K Patients and Staff of Data TheftAspen Healthcare Services (TX) Announces Data Breach Following Ransomware AttackAdventHealth (FL) Files Official Notice of Data BreachHackers Hijack Unsecured Jupyter Notebooks to Stream Illegal Sports BroadcastsSpotify Abused to Promote Pirated Software and Game CheatsHelldown Ransomware Expands to Target VMware and Linux SystemsNgioweb Botnet Fuels NSOCKS Residential Proxy Network Exploiting IoT DevicesCISA Tags Progress Kemp Loadmaster Flaw as Exploited in AttacksApple Fixes Two Zero-Days Used in Attacks on Intel-Based MacsOracle Warns of Agile PLM File Disclosure Flaw Exploited in Attacks
11/18/2024 November 19, 2024November 19, 2024 ~ The Cyber Beat ~ Leave a comment Sweden’s ‘Doomsday Prep for Dummies’ Guide Hits Mailboxes TodayNorth Korean IT Worker Network Tied to BeaverTail Phishing CampaignSurge in DocuSign Phishing Attacks Target U.S. State ContractorsMany U.S. Water Systems Exposed to ‘High-Risk’ Vulnerabilities, Watchdog FindsBipartisan Effort to Clean up Cyber Regulations Gets a Boost in House, but Calendar Is TightFake Donald Trump Assassination Story Used in Phishing ScamMicrosoft 365 Admin Portal Abused to Send Sextortion EmailsHeather ‘Razzlekhan’ Morgan Sentenced to 18 Months in Prison, Ending Bitfinex SagaU.S. Charges Phobos Ransomware Admin After South Korea ExtraditionCybersecurity At A Crossroads As Global Threats Hit Record HighsWhy the Demand for Cybersecurity Innovation Is SurgingBrave on iOS Adds New “Shred” Button to Wipe Site-Specific DataGmail’s New Shielded Email Feature Lets Users Create Aliases for Email PrivacyApple Still Blocking Access to News Apps and Podcasts at Moscow’s RequestU.S. Space Tech Giant Maxar Discloses Employee Data BreachBritish Software Company Microlise Confirms Hackers Compromised Corporate DataRockport Mortgage Notifies Individuals of Recent Data Breach Leaking Their Personal InformationGreat Plains Regional Medical Center (OK) Notifies Patients of Data Breach Following Ransomware AttackAI Company iLearningEngines Tells SEC That $250,000 Stolen in CyberattackFord ‘Actively Investigating’ After Employee Data Allegedly Parked on Leak SiteAkira Ransomware Racks Up 30+ Victims in a Single Day‘ClickFix’ Cyber-Attacks for Malware Deployment on the RiseFake Bitwarden Ads on Facebook Push Info-Stealing Chrome ExtensionFake Discount Sites Exploit Black Friday to Hijack Shopper InformationNew Stealthy BabbleLoader Malware Spotted Delivering WhiteSnake and Meduza StealersCritical 9.8-Rated VMware vCenter RCE Bug Exploited After Patch FumblePalo Alto Networks Patches Two Firewall Zero-Days Used in Attacks
11/15-17/2024 November 17, 2024November 17, 2024 ~ The Cyber Beat ~ Leave a comment Library of Congress Email Systems Hacked Earlier This Year by ‘Foreign Adversary’Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli OrganizationsVietnamese Hacker Group Deploys New PXA Stealer Targeting Europe and AsiaChinese ‘SilkSpecter’ Fraud Network Uses 4,700 Fake Shopping Sites to Steal Credit CardsT-Mobile Confirms It Was Hacked in Recent Wave of Telecom BreachesNew Apple Security Feature Reboots iPhones After 3 Days, Researchers ConfirmNSO Group Used Another WhatsApp Zero-Day After Being Sued, Court Docs SayCyber Schemes Among Projects Getting £20M WindfallBitfinex Hacker Ilya Lichtenstein Sentenced to 5 Years, Guilty of Laundering $10.5 Billion in BitcoinOhio Man Behind Helix Cryptocurrency Mixer Gets 3-Year SentenceKrebs: An Interview With the Target & Home Depot HackerWill Passkeys Ever Replace Passwords? Can They?FTC Reports 50% Drop In Unwanted Call Complaints Since 2021Otsego Public Schools (MI) Hacked; Personal Info ExposedFake AI Video Generators Infect Windows, macOS With InfostealersPhishing Emails Increasingly Use SVG Attachments to Evade DetectionRansomware Groups Use Cloud Services For Data ExfiltrationResearchers Warn of Privilege Escalation Risks in Google’s Vertex AI ML PlatformWarning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN CredentialsPAN-OS Firewall Vulnerability Under Active Exploitation – IoCs ReleasedBotnet Exploits GeoVision Zero-Day to Install Mirai MalwarewatchTowr Finds New Zero-Day Vulnerability in Fortinet ProductsHigh-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment VariablesSecurity Plugin Flaw in Millions of WordPress Sites Gives Admin AccessMicrosoft Pulls Exchange Security Updates Over Mail Delivery IssuesThe Vendor’s Role in Combating Alert FatigueTop Ukrainian Cyber Official Resigns a Year After Taking Office
11/14/2024 November 14, 2024November 14, 2024 ~ The Cyber Beat ~ Leave a comment Trump’s Second Term Is Expected to Bring Big Change to Top U.S. Cyber Agency…More Spyware, Fewer Rules: What Trump’s Return Means for U.S. Cybersecurity…Washington’s Cybersecurity Storm of ComplacencySitting Ducks DNS Attacks Put Global Domains at RiskGoogle Warns of Rising Cloaking Scams, AI-Driven Fraud, and Crypto SchemesBank of England U-turns on Vulnerability Disclosure RulesCybercriminal Devoid of Boundaries Gets 10-Year Prison SentenceTeen Behind Hundreds of Swatting Attacks Pleads Guilty to Federal ChargesMalware Being Delivered by Mail, Warns Swiss Cyber AgencyHungary Confirms Hack of Defense Procurement AgencyKids’ Shoemaker Start-Rite Trips Over Security Again, Spilling Customer Card InfoMicrosoft Power Pages Misconfiguration Leads to Data ExposureNew Glove Infostealer Malware Bypasses Chrome’s Cookie EncryptionRussian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing EmailsNew RustyAttr Malware Targets macOS Through Extended Attribute AbuseCISA Warns of More Palo Alto Networks Bugs Exploited in AttacksChatGPT Allows Access to Underlying Sandbox OS, “Playbook” Data
11/13/2024 November 13, 2024November 13, 2024 ~ The Cyber Beat ~ Leave a comment China-Linked Hackers Stole Surveillance Data From Telecom Companies, U.S. SaysHamas-Affiliated WIRTE Employs SameCoin Wiper in Disruptive Attacks Against IsraelTrump’s Second Term Is Expected to Bring Big Change to Top U.S. Cyber Agency…Top White House Cyber Official Urges Trump to Focus on Ransomware, ChinaThese Are the Passwords You Definitely Shouldn’t Be UsingLeaked Info of 122 Million Linked to B2B Data Aggregator BreachData Broker Amasses 100M+ Records on People – Then Someone Snatches, Sells ItThese Guys Hacked AirPods to Give Their Grandmas Hearing AidsAmazon MOVEit Leaker Claims to Be Ethical HackerChinese National Faces 20 Years in U.S. Prison for Laundering Pig-Butchering ProceedsChina-Linked Group Hacked Tibetan Media and University Sites to Distribute Cobalt Strike PayloadEmbargo Ransomware Fiends Boast They’ve Stolen 1.4TB From U.S. Pharmacy NetworkWisconsin City of Sheboygan Says Ransom Demanded After CyberattackASM Global (CA) Notifies Affected Individuals of Recent Data BreachHive0145 Targets Europe with Advanced Strela Stealer CampaignsNew ShrinkLocker Ransomware Decryptor Recovers Bitlocker PasswordCritical Bug in EoL D-Link NAS Devices Now Exploited in AttacksKrebs: Microsoft Patch Tuesday, November 2024 EditionNIST Says Exploited Vulnerability Backlog Cleared but End-Of-Year Goal for Full List UnlikelyNew Google Pixel AI Feature Analyzes Phone Conversations for Scams
11/12/2024 November 12, 2024November 12, 2024 ~ The Cyber Beat ~ Leave a comment German Interior Minister Warns of Cyber Threat Ahead of ElectionsVolt Typhoon Rebuilds Malware Botnet Following FBI DisruptionSurge in Exploits of Zero-Day Vulnerabilities Is ‘New Normal’ Warns Five Eyes AllianceFBI, CISA, and NSA Reveal Most Exploited Vulnerabilities of 2023Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 91 Flaws…Two Zero-Day Bugs in Microsoft’s Nov. Update Under Active Exploit…Windows 10 KB5046613 Update Released with Fixes For Printer BugsCISOs Turn to Indemnity Insurance as Breach Pressure MountsSignal Introduces Convenient “Call Links” for Private Group ChatsPentagon Leaker Sentenced to 15 Years in Jail After Sharing Military Secrets OnlineDutch Company Behind Hannaford, Stop & Shop Says Cyber Issue Affecting U.S. NetworkDelta, Amazon Confirm Vendor Breach as Dark Web Posts Revive MOVEit Leak ConcernsBBS Financial (MA) Confirms Data Breach Following January 2024 Ransomware AttackNorth Korean Hackers Target macOS Using Flutter-Embedded MalwareTA455’s Iranian Dream Job Campaign Targets Aerospace with MalwarePhishing Tool GoIssue Targets Developers on GitHubNew Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ MisconfigurationD-Link Won’t Fix Critical Bug in 60,000 Exposed EoL ModemsHow Italy Became an Unexpected Spyware Hub
11/11/2024 November 12, 2024 ~ The Cyber Beat ~ Leave a comment Credit Cards Readers Across Israeli Stores, Gas Stations Crash in CyberattackFBI Issues Warning as Crooks Ramp up Emergency Data Request ScamsWEF Introduces Framework to Strengthen Anti-Cybercrime PartnershipsSecurity Flaws in Popular ML Toolkits Enable Server Hijacks, Privilege EscalationThe AI Machine Gun of the Future Is Already HereHalliburton Reports $35 Million Loss After Ransomware AttackOpen Source Security Incidents Aren’t Going AwayAmazon Confirms Employee Data Breach, but Says It’s Limited to Contact InfoHIBP Notifies 57 Million People of Hot Topic Data BreachFood Lion Acknowledges They Were Hit by CyberattackSet Forth, Inc. (IL) Sends Data Breach Letters to 1.5 Million ConsumersEnglish Construction Company (VA) Targeted in Ransomware Attack, Leading to Data Breach Affecting Former EmployeesNew Remcos RAT Variant Targets Windows Users Via PhishingNew Ymir Ransomware Partners With RustyStealer in Attacks
11/8-10/2024 November 10, 2024November 10, 2024 ~ The Cyber Beat ~ Leave a comment Pro-Russian Hacktivists Target South Korea as North Korea Joins Ukraine WarAuthorities Work to Find the Source of Racist Texts Sent to Black People Nationwide After the ElectionTSA Wants to Expand Cyber Rules for Pipelines and RailroadsScattered Spider, BlackCat Claw Their Way Back From Criminal UndergroundScammers Target UK Senior Citizens With Winter Fuel Payment TextsGoogle’s Mysterious ‘search.app’ Links Leave Android Users ConcernedA New iOS 18 Security Feature Makes It Harder for Police to Unlock iPhonesFBI: Spike in Hacked Police Emails, Fake Subpoenas (Krebs)Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money LaunderingIcePeony and Transparent Tribe Target Indian Entities with Cloud-Based ToolsMalicious NPM Packages Target Roblox Users with Data-Stealing MalwareMalicious PyPI Package with 37,000 Downloads Steals AWS KeysHackers Now Use Zip File Concatenation to Evade DetectionCritical Veeam RCE Bug Now Used in Frag Ransomware AttacksUnpatched Mazda Connect Bugs Let Hackers Install Persistent MalwarePalo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat ConcernsD-Link Won’t Fix Critical Flaw Affecting 60,000 Older NAS DevicesHow the Creator of Zero Trust Developed Today’s Most Robust Cybersecurity StrategyRussia’s Internet Watchdog Blocks Thousands of Websites That Use Cloudflare’s Privacy Service
11/7/2024 November 8, 2024November 8, 2024 ~ The Cyber Beat ~ Leave a comment U.S. Agency Warns Employees About Phone Use Amid Ongoing China HackChina-Aligned MirrorFace Hackers Target EU Diplomats with World Expo 2025 BaitChina-Linked Hackers Tasked With Japanese Targets Pursue Them Through EuropeCanada Orders Shutdown of Local TikTok Branch Over Security Concerns764 Terror Network Member Richard Densmore Sentenced to 30 Years in PrisonAkamai Forecasts Fourth-Quarter Revenue Below Estimates on Weak Client SpendingCloudflare’s Q4 Revenue Forecast Falls Short as Cybersec Competition IntensifiesFortinet’s Quarterly Revenue Forecast Disappoints, Shares FallDatadog Raises Annual Forecast Betting on AI-Driven Cybersecurity DemandDefenders Outpace Attackers in AI AdoptionNokia Says Hackers Leaked Third-Party App Source CodeTexas-Based Oilfield Supplier Newpark Resources Faces Disruptions Following Ransomware AttackOrthopedicsNY Files Official Notice of 2023 Data Breach Affecting Patient InformationNorth Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOSDon’t Open That ‘Copyright Infringement’ Email Attachment – It’s an InfostealerAndroxgh0st Botnet Adopts Mozi Payloads, Expands IoT ReachMalicious PyPI Package ‘Fabrice’ Found Stealing AWS Keys from Thousands of DevelopersCISA Warns of Critical Palo Alto Networks Bug Exploited in AttacksHPE Warns of Critical Rce Flaws in Aruba Networking Access PointsThe Power of Process in Creating a Successful Security Posture
11/6/2024 November 7, 2024November 7, 2024 ~ The Cyber Beat ~ Leave a comment Top U.S. Cyber Official Says ‘No Evidence of Malicious Activity’ Impacting ElectionFact Check: Georgia Voter Fraud Video Labeled Russian Disinformation Uses False Personal DataIRISSCON: Organizations Still Falling Victim to Predictable Cyber-AttacksCybercrooks Are Targeting Bengal Cat Lovers in Australia for Some ReasonPeople Urged to Update Some Internet RoutersGermany Drafts Law to Protect Researchers Who Find Security FlawsMajor Ukrainian University Bans Telegram to Reduce CyberthreatsUK Orders Chinese Owners to Relinquish Control of Scottish Semiconductor BusinessMassive Nigerian Cybercrime Bust Sees 130 ArrestedWashington Courts’ Systems Offline Following Weekend CyberattackCyber-Attack on Microlise Disrupts DHL and Serco Tracking ServicesCyberattack Disables Tracking Systems and Panic Alarms on British Prison VansSelectBlinds Says 200,000 Customers Impacted After Hackers Embed Malware on SiteNokia: No Evidence So Far That Hackers Breached Company DataWinos4.0 Malware Found in Game Apps, Targets Windows UsersNew SteelFox Malware Hijacks Windows PCs Using Vulnerable DriverVEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute MalwareCisco Bug Lets Hackers Run Commands as Root on UWRB Access Points
11/5/2024 November 5, 2024November 5, 2024 ~ The Cyber Beat ~ Leave a comment The FBI Says Russian Emails Are Sending Fake Bomb Threats to Polling Stations…Russia Is Going All Out on Election Day InterferenceU.S. Warns of Last-Minute Iranian and Russian Election Influence Ops…Officials Warn Against Fake U.S. Election Videos, but See Little DisruptionClickFix Exploits Users with Fake Errors and Malicious CodeInterpol Disrupts Cybercrime Activity on 22,000 IP Addresses, Arrests 41Krebs: Canadian Man Arrested in Snowflake Data ExtortionsA Kansas Pig Butchering: CEO Who Defrauded Bank, Church, Friends Gets 24 YearsFBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber IntrusionsMeta Found to Have Exposed Info on North Korean Defectors to AdvertisersUkraine Accuses Google of Revealing Locations of Its Military SystemsGeorgia Hospital Unable to Access Record System After Ransomware AttackSchneider Electric Ransomware Crew Demands $125K Paid in BaguettesChinese Group Accused of Hacking Singtel in Telecom AttacksChinese Air Fryers May Be Spying on Consumers, Which? WarnsToxicPanda Malware Targets Banking Apps on Android DevicesPakistani Hackers Targeted High-Profile Indian Entities using Custom ElizaRATMalware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat PackagesSynology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS DevicesGoogle Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android SystemGoogle Cloud to Make MFA Mandatory by the End of 2025How to Win at Cyber by Influencing People
11/4/2024 November 5, 2024November 5, 2024 ~ The Cyber Beat ~ Leave a comment U.S. Cybersecurity Chief Says Disinformation Surge Hasn’t Impacted Election…In Final Check-in Before Election Day, CISA Cites Low-Level Threats, and Not Much ElseNakasone Says All the News About Influence Campaigns Ahead of Election Day Is Actually ‘A Sign of Success’Rep. Yvette Clarke on AI-Fueled Disinformation: ‘We Have Not Protected Ourselves in Time for This Election Cycle’U.S. Says Russia Behind Fake Haitian Voters VideoMoldova Elects Pro-West President Maia Sandu Despite Russian InterferenceCustom “Pygmy Goat” Malware Used in Sophos Firewall Hack on Gov’t NetworkInside the Massive Crime Industry That’s Hacking Billion-Dollar CompaniesNorthern Minnesota Man Cost Former Employer $45K in Cryptojacking Scheme, Charges SayNigerian Handed 26-Year Sentence for Real Estate Phishing ScamGoogle Researchers Claim First Vulnerability Found Using AISchneider Electric Confirms Dev Platform Breach After Hacker Steals DataNokia Investigates Breach After Hacker Claims to Steal Source CodeCisco Says DevHub Site Leak Won’t Enable Future BreachesColumbus (OH) Ransomware Attack Exposes Data of 500,000 ResidentsMiddlesbrough Council Targeted in Second Cyber Attack in a WeekHouston Housing Authority Was Victim of a Ransomware Attack, Agency SaysKemlon Products & Development Group (TX) Files Official Notice of Data BreachMeet Interlock — The New Ransomware Targeting FreeBSD ServersWindows Infected With Backdoored Linux VMs in New Phishing AttacksCybercriminals Exploit DocuSign APIs to Send Fake InvoicesSupply Chain Attack Uses Smart Contracts for C2 OpsCritical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
11/1-3/2024 November 3, 2024November 5, 2024 ~ The Cyber Beat ~ Leave a comment Georgia Says U.S., Election Disinformation Likely Coming From Russian Troll FarmsU.S. Blames Russia Over Video Falsely Alleging Fraudulent Voting in State of GeorgiaChina’s Typhoon Hacks Ahead of U.S. Election Spurred by Elite CompetitionCyber Threats and the Election: What You Need to KnowSophos Warns Chinese Hackers Are Becoming StealthierMicrosoft Warns of Chinese Botnet Exploiting Router Flaws for Credential TheftU.S. and Israel Warn of Iranian Threat Actor’s New TradecraftKrebs: Booking.com Phishers May Leave You With ReservationsThey’re Giving Scammers All Their Money. The Kids Can’t Stop Them.6 IT Contractors Arrested for Defrauding Uncle Sam Out of MillionsDDoS Site Dstat.cc Seized and Two Suspects Arrested in GermanyFlorida Man Accused of Hacking Disney World Menus, Changing Font to WingdingsHack Nintendo’s Alarm Clock to Show Cat Pics? Let’s-A-Go!ChatGPT-4o Can Be Used for Autonomous Voice-Based ScamsOpenAI’s New ChatGPT Search Chrome Extension Feels Like a Search HijackerLA Housing Authority Confirms Breach Claimed by Cactus RansomwareSan Joaquin County Superior Court (CA) Suffering From Tech Outages After CyberattackRansomware Attack Hits German Pharmaceutical Wholesaler AEP, Disrupts Medicine SuppliesYoung People’s Data Feared Stolen in Cyberattack on French Government ContractorSaint Xavier University Notifies Over 200k People of Recent Data BreachMiddlesbrough Council Website Restored After Online AttackA Devon School ‘Blackmailed’ by Hackers in Cyber-AttackLastPass Warns of Fake Support Centers Trying to Steal Customer DataAn Okta Login Bug Bypassed Checking Passwords on Some Long UsernamesMicrosoft SharePoint RCE Bug Exploited to Breach Corporate NetworkZero-Click Flaw Exposes Potentially Millions of Popular Storage Devices to AttackCISA Warns of Critical Software Vulnerabilities in Industrial DevicesMicrosoft Delays Windows Copilot+ Recall Release Over Privacy ConcernsFederal Agency Investigating How Meta Uses Consumer Financial Data for Advertising