Summary: This week’s cybersecurity news roundup highlights several significant developments, including a hack of the DOGE website and vulnerabilities exploited in the manner of malware deployment. Additionally, instances of infostealers affecting sensitive government data and the SEC’s new cyber unit were reported. The roundup provides insights on emerging threats and responses within the cybersecurity landscape.
Affected: Various organizations including DOGE, U.S. government contractors, Genea, and the SEC
Keypoints :
- Hacks reported on the DOGE website revealed major vulnerabilities allowing content manipulation by hackers.
- A MageCart malware campaign has hidden a credit card-stealing script in an
tag on a Magento ecommerce site.
- The U.S. Army soldier’s guilty plea in AT&T and Verizon hacks illustrates risks related to insider threats.
- The SEC’s new Cyber and Emerging Technologies Unit aims to strengthen protections against cyber misconduct.
- Leaked Black Basta chat logs indicate internal conflicts within the ransomware group.
- Genea is investigating a potential ransomware attack following a cyber breach.
- Zhong Stealer malware targets the cryptocurrency and fintech sectors by tricking support agents.
- Apiiro launched two open-source tools intended to mitigate malicious code in software development.