Tuesday , December 24 2024

infosecbulletin

Ukraine targeted by 60% of Russian phishing attacks in 2023: Google

Google’s Threat Analysis Group (TAG) has been monitoring and disrupting Russian state-backed cyberattacks targeting Ukraine’s critical infrastructure in 2023. Google reports that from January to March 2023, Ukraine received roughly 60% of the phishing attacks originating from Russia, making it the most prominent target. In most cases, the campaign goals …

Read More »

Aristopharma victim of cyber attack; CERT warning

BGD e-Gov Cert, the government’s cyber issue watchdog, has issued a warning about cyber attacks in the country. The agency released a report on Friday (April 21) called “Situational Alerts on Cyber ​​Threats.” The published report mentions measures to ensure cyber security of critical information infrastructure, banks, financial institutions, health …

Read More »

Multinational bank leaks passports and credit card numbers

ICICI Bank leaked millions of records with sensitive data, including financial information and personal documents of the bank’s clients. ICICI Bank, an Indian multinational valued at more than $76 billion, has more than 5,000 branches across India and is present in at least another 15 countries worldwide. A misconfiguration of …

Read More »

Over 1M records from NBI, PNP, other agencies leaked in massive data breach

MANILA, Philippines —A staggering 1,279,437 records belonging to law enforcement agencies, including sensitive police employee information, have been compromised in an unprecedented data breach, as revealed by a report from the leading cybersecurity research company VPNMentor on Tuesday. The massive data hack, which exposed 817.54 gigabytes of both applicant and …

Read More »

Trade of Stolen ChatGPT Premium Accounts on Dark Web, Lifetime Access for $24.99

Since the launch of OpenAI’s ChatGPT, the security risk the chatbot poses has been a major topic of discussion among cybersecurity experts. However, the AI chatbot has yet again com]e under the scanner after a report revealed the trade of stolen ChatGPT premium accounts on the dark web. According to …

Read More »

Hackers Attacked German Branch of Russian Oil Giant Rosneft

Rosneft is a Russian-based Oil refinery that specializes in exploration, extraction, production, refining, transport, and sale of petroleum, natural gas, and petroleum products. The German branch of Rosneft faced a cyberattack. The Legion group “Anonymous” published a statement that they were responsible for the attack and denoted that they have extracted over …

Read More »

ChatGPT Account Take Over Vulnerability Let Hackers Gain User’s Online Account

A renowned security analyst and bug hunter, Nagli (@naglinagli), recently uncovered a critical security vulnerability in ChatGPT. With just a single click, a threat actor could easily exploit the vulnerability and gain complete control of any ChatGPT user’s account. As a result, opening the doors to sensitive data let attackers …

Read More »

Report finds 82% of open-source software components ‘inherently risky’

Today, software supply chain security management company Lineaje, released a new report titled “What’s in Your Open-Source Software?” that found 82% of open-source software components are “inherently risky” due to a mix of vulnerabilities, security issues, code quality or maintainability concerns. The report highlighted that while more than 70% of software in the …

Read More »

LockBit Ransomware Expands Attack Spectrum to Mac Devices

LockBit ransomware gang is reportedly developing a new version of malware that can encrypt files on Apple macOS, as revealed by MalwareHunterTeam. This would be the first instance of malware targeting Mac devices, as LockBit has previously focused on Linux and Windows devices. The ransomware group is known for its RaaS (ransomware-as-a-service) operation, lending ransomware …

Read More »