InfoSecBulletin Cybersecurity for mankind
It’s almost never a good sign when you see an announcement stating, “We are currently experiencing some computer system issues.” It is most definitely, probably, a cyberattack. Such is the case of a South Carolina county that got hit by a ransomware attack. South Korean institutions are in peril as a Chinese threat group has been attacking them. Dating app users be careful as two such websites had confidential user information stolen. Read along for more.
01
Spartanburg County, South Carolina, suffered a ransomware attack that impacted its computer systems and phone numbers. Investigation into the incident is ongoing.
02
South Korean education, diplomatic, political, and construction firms are being targeted by the China-aligned Tonto Team, which is using a file related to anti-malware products to execute its malicious attacks.
03
Hardenhuish School, located in Wiltshire, U.K, informed the parents and guardians of its 1,623 students of a ransomware attack that took down its websites and systems. No other details have been released.
04
Threat actors are selling a new macOS info-stealer, dubbed Atomic, via private Telegram channels. The malware can target over 50 cryptocurrency extensions.
05
Google banned 173,000 developer accounts in 2022 to prevent malware operations and fraud rings from infecting Android users’ devices with malicious apps – revealed its “bad apps” yearly report.
06
Attackers stole email addresses, direct messages, passwords, IP addresses, and other personal details from users of dating websites, CityJerks and TruckerSucker.
07
An ongoing Magecart campaign was found leveraging realistic-looking fake payment screens for the online website of a Parisian travel accessory store and injecting the Kritec skimmer.
08
NYSARC Columbia County Chapter (COARC) confirmed a July 2022 ransomware attack that potentially compromised SSNs, financial data, medical and student information, and other sensitive data.
09
Google has launched a new tool, Spin[.]AI App Risk Assessment, for Workspace admins and security teams to assess the potential security threats of Chrome extensions.
10
Cybersecurity company AaDya Security raised $5 million in Series A funding round led by Left Lane Capital, with participation from 645 Ventures, Gaingels, and others.
