Summary: The content discusses the conviction of a 24-year-old leader of an international robbery crew that kidnapped and terrorized wealthy victims in order to steal cryptocurrency tokens, resulting in the …
Category: Cyber Security News
Summary: This blog post discusses a new campaign that is distributing a stealer targeting Mac users via malicious Google ads for the Arc browser.
Threat Actor: Rodrigo4 | Rodrigo4 Victim: …
Summary: This content discusses the XenoRAT malware, its association with a North Korean hacking group, and its targeting of the gaming community.
Threat Actor: North Korean hacking group | Kimsuky …
Summary: The healthcare sector receives a high security rating but is vulnerable to supply chain cyber risk, according to SecurityScorecard.
Threat Actor: Ransomware groups | ransomware groups Victim: Healthcare organizations …
Summary: The article discusses how companies are investing in cyber defense in order to qualify for cyber insurance, and highlights the gaps that still exist between recovery costs and the …
Summary: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three known exploited vulnerabilities to its catalog, including a code injection flaw in GeoServer and a use-after-free vulnerability in …
Summary: The content discusses the indictment of a 22-year-old Russian, Amin Timovich Stigal, for allegedly attacking Ukrainian government computers and destroying critical infrastructure systems in the “WhisperGate” wiper attack.
Threat …
Summary: BlackBerry detected and stopped 3.1 million cyberattacks in the first quarter of 2024, with a significant increase in malicious hashes compared to the previous reporting period.
Threat Actor: N/A…
Date Reported: 2024-06-25 Country: United Kingdom (GBR) Victim: Shoe Zone | shoezone.com Additional Information :
The shoe retailer Shoe Zone has been targeted in a cyber attack, but immediate measures…Date Reported: 2024-06-27 Country: CAN | Canada Victim: Co-op | coop.ca Additional Information:
A cyberattack has led to the closure of several Co-op locations, including gas stations and stores, after…Summary: This content discusses the unpatchable vulnerabilities found in temperature monitors made by Proges Plus and used in hospitals.
Threat Actor: No specific threat actor mentioned. Victim: Hospitals using temperature …
Summary: The Vanna AI library is vulnerable to remote code execution (RCE) due to a prompt injection vulnerability.
Threat Actor: Unknown | Vanna AI Victim: Users of Vanna AI | …
Summary: This blog post discusses a newly discovered type of jailbreak attack called Skeleton Key that can subvert the intended behavior of generative AI models.
Threat Actor: N/A
Victim: N/A…
Summary: The California Privacy Protection Agency (CPPA) has signed a partnership agreement with France’s Commission Nationale de l’Informatique et des Libertés (CNIL) to conduct joint research on data privacy issues …
Date Reported: 2024-06-27 Country: Croatia (HRV) Victim: KBC Zagreb | KBC Zagreb | kbc-zagreb.hr Additional Information:
The University Hospital Centre Zagreb (KBC Zagreb) was targeted in a cyber attack during…Summary: This content discusses a critical SQL injection vulnerability in Fortra FileCatalyst Workflow (CVE-2024-5276) and the availability of a proof-of-concept exploit online.
Threat Actor: N/A
Victim: Enterprise admins using Fortra …
Summary: A novel malware strain called Snowblind is targeting banking customers in Southeast Asia, using a technique that disables Android banking apps’ ability to detect malicious modifications, leading to financial …
Summary: This content discusses the alleged deliberate infection of South Korean telco KT’s customers with malware due to their excessive use of peer-to-peer downloading tools, resulting in a large number …
Summary: This content discusses the increasing number of malicious packages found in public, open-source repositories and the threat they pose to IT environments.
Threat Actor: Malicious actors | malicious actors …
Summary: This content discusses the issue of secrets being exposed in source code, even after they have been removed, and highlights the potential risks and challenges associated with this.
Threat …
Summary: This content discusses multiple vulnerabilities in ADOdb, a PHP database abstraction layer library, and emphasizes the importance of updating the library to mitigate potential security risks.
Threat Actor: N/A…
Summary: This content discusses how cyberespionage groups are using ransomware as a tactic to make attack attribution more challenging, distract defenders, or for a financial reward as a secondary goal …
Summary: Four Vietnamese nationals belonging to the cybercrime group FIN9 have been charged for conducting cyberattacks on US companies, resulting in over $71 million in losses.
Threat Actor: FIN9 | …
Summary: This content discusses the extradition of a fraudster from Ukraine to the United States who is facing charges of wire fraud and fraudulent use of an unauthorized access device.…
Summary: French law enforcement authorities have shut down the Coco chat website, which was involved in facilitating various criminal activities, including cybercrime, child sexual abuse, rapes, and homicides.
Threat Actor: …
Summary: Five men have been convicted for operating Jetflicks, one of the largest unauthorized streaming services in the US, which generated millions of dollars in subscription revenue by streaming and …
Summary: The European Council has imposed sanctions on individuals involved in cyberattacks on critical infrastructure, including those linked to the malware strains ‘Conti’ and ‘Trickbot’. The US Department of Justice …
Date Reported: 2024-06-01 Country: Canada Victim: Pharmascience | pharmascience.com Additional Information :
Canadian pharmaceutical company, Pharmascience, has recently fallen victim to a cyberattack. The company has not disclosed the extent…Summary: This content discusses a vulnerability in a vendor’s product and provides a business recommendation for addressing the issue.
Threat Actor: N/A
Victim: N/A
Key Point :
The vendor, Siemens,…Summary: The polyfill.io domain, which provides JavaScript code to add functionality to older browsers, has been compromised and is now infecting websites with malware.
Threat Actor: Chinese organization | Chinese …
Summary: This content discusses the collaboration between UK and US law enforcement agencies to combat the Qilin ransomware gang, which has targeted the global healthcare industry. The article also highlights …
Summary: The Medusa banking trojan for Android has resurfaced in campaigns targeting several countries, using more compact variants with fewer permissions and new features to initiate transactions directly from compromised …
Summary: Apple has released a firmware update for AirPods to address an authentication issue that could allow unauthorized access to the headphones, potentially enabling eavesdropping on private conversations.
Threat Actor: …
Date Reported: 2024-06-22 Country: POL | Poland Victim: Agata Meble | agatameble.pl Additional Information :
The popular Polish furniture chain, Agata Meble, has fallen victim to a cyberattack. A security…Summary: This content provides an overview of Zeek, an open-source network analysis framework that operates as a versatile sensor to monitor network traffic and generate comprehensive logs and output for …
Summary: The Cybersecurity and Infrastructure Security Agency (CISA) has notified organizations of potential data exposure after an unidentified threat actor accessed CISA’s Chemical Security Assessment Tool. While no evidence of …
Summary: This content discusses two new vulnerabilities in MOVEit Transfer and MOVEit Gateway, which can be exploited by threat actors to bypass SFTP authentication and gain unauthorized access.
Threat Actor: …
Summary: This content discusses the Russia-linked threat actor group UAC-0184 targeting Ukraine with the XWorm remote access trojan (RAT) through the use of Python-related files.
Threat Actor: UAC-0184 | UAC-0184 …
Date Reported: 2024-06-18 Country: USA Victim: Hudson School District | sau81.org Additional Information:
The Hudson School District in the USA has fallen victim to a cyberattack that has disrupted its…Date Reported: 2024-06-24 Country: USA Victim: Acadian Ambulance | acadianambulance.com Additional Information:
Acadian Ambulance, an ambulance company, has fallen victim to a cyberattack that has disrupted its computer systems. Despite…Date Reported: 2024-06-25 Country: CAN | Canada Victim: Cowichan Valley School District | sd79.bc.ca Additional Information:
The Cowichan Valley School District in British Columbia has fallen victim to a cyberattack.…Date Reported: 2024-06-22 Country: South Africa (ZAF) Victim: National Health Laboratory Service (NHLS) | nhls.ac.za Additional Information:
The National Health Laboratory Service (NHLS) in South Africa has fallen victim to…Date Reported: 2024-06-23 Country: Iceland Victim: Morgunblaðið | mbl.is Additional Information :
A cyberattack targeted the Icelandic newspaper Morgunblaðið and its radio station K100, causing significant disruptions. The publisher, Árvakur,…Date Reported: 2024-06-24 Country: France Victim: Mairie de Fleury-les-Aubrais | Fleury-les-Aubrais City Hall | fleurylesaubrais.fr Additional Information :
The Fleury-les-Aubrais City Hall has been targeted in a major cyber attack.…Summary: Four Vietnamese nationals with ties to the FIN9 cybercrime group have been indicted in the U.S. for conducting phishing campaigns and supply chain compromises to steal millions of dollars …
Summary: The FBI is warning of cybercriminals posing as law firms and lawyers that offer cryptocurrency recovery services to victims of investment scams and steal funds and personal information.
Threat …
Summary: The Thales 2024 Cloud Security Study reveals that nearly half of organizations have experienced a cloud data breach, with human error and misconfigurations being the top root cause.
Threat …
Summary: This content discusses the SnailLoad bug and its potential impact on internet connections.
Threat Actor: SnailLoad | SnailLoad Victim: Internet connections | Internet connections
Key Point:
Most internet connections…Summary: P2PInfect, a dormant peer-to-peer malware botnet, has recently become active and is deploying a ransomware module and a cryptominer in attacks on Redis servers.
Threat Actor: P2PInfect | P2PInfect …
Summary: This blog discusses SpyMax, an Android RAT that targets Telegram users, and highlights its capabilities and impact on user privacy and data integrity.
Threat Actor: SpyMax | SpyMax Victim: …