InfoSecBulletin Cybersecurity for mankind
A Massachusetts city became the victim of a cyberattack that severely disrupted its network and systems. Residents have been notified. Let us introduce you to malverposting – threats delivered through social media. In one such campaign, the attacker has been exploiting Facebook Ads. Moving on, security researchers identified two ransomware operations abusing the Papercut bugs. Here is the latest from the past 24 hours.
01
The City of Lowell, Massachusetts, notified its residents of a security breach that impacted the municipality’s computer systems, impacting phones, emails, and other city systems.
02
Guardio Labs spotted a new malverposting campaign, attributed to a Vietnamese threat group, that surpassed 500,000 infections worldwide. It abuses Facebook Ads.
03
Russian hackers are attempting to inject ransomware into Ukraine‘s logistics supply chain and those of the Western countries that back Kyiv in its fight against Moscow – warned the NSA.
04
The Iranian Charming Kitten threat group (aka APT35 and Phosphorus) was found targeting victims in the U.S., the Middle East, Europe, and India with a new BellaCiao malware.
05
The Russian-speaking Nomadic Octopus was found conducting a politically-motivated surveillance operation against high-ranking government officials, public service infrastructure, and telecom providers in Tajikistan.
06
The Medusa ransomware group leaked the SSNs, birthdays, mental health records, and other sensitive information of students from the Minneapolis Public Schools district. The hack occurred in March.
07
Microsoft attributed the recent Papercut server attacks on the Cl0p and LockBit ransomware groups that are stealing corporate data from vulnerable servers.
08
The Ukrainian cyber police apprehended a citizen for selling the sensitive information and personal data of more than 300 million people from various European nations.
09
McAfee discovered 38 Minecraft-like games on the Google Play Store with hidden advertising packets, collectively dubbed HiddenAds, that were installed by at least 35 million users worldwide.
10
California-based SaaS platform Sonet[.]io emerged from stealth with $6 million in a seed funding round co-led by The Hive and WestWave Capital.
