Tuesday , June 24 2025

Daily Cybersecurity update, July-8, 2023

In the realm of healthcare, an unsettling surge of data breaches has put at risk the privacy and security of numerous patient records. The sensitive information of more than 165,000 patients was compromised in a breach that impacted Henry Ford Health. The Phoenician Medical Center experienced a second breach that affected approximately 162,000 patients’ PHI. In a new campaign, FIN8 has resurfaced, this time deploying a redesigned backdoor to unleash the malicious BlackCat ransomware, putting organizations at risk once again.

Read along for more:

WhatsApp banned on all US House of Representatives devices

The U.S. House of Representatives has banned congressional staff from using WhatsApp on government devices due to security concerns, as...
Read More
WhatsApp banned on all US House of Representatives devices

Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store

Kaspersky found a new mobile malware dubbed SparkKitty in Google Play and Apple App Store apps, targeting Android and iOS....
Read More
Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store

OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems

OWASP has released its AI Testing Guide, a framework to help organizations find and fix vulnerabilities specific to AI systems....
Read More
OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems

Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform

In a major milestone for the country’s digital infrastructure, Axentec PLC has officially launched Axentec Cloud, Bangladesh’s first Tier-4 cloud...
Read More
Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform

Hackers Bypass Gmail MFA With App-Specific Password Reuse

A hacking group reportedly linked to Russian government has been discovered using a new phishing method that bypasses two-factor authentication...
Read More
Hackers Bypass Gmail MFA With App-Specific Password Reuse

Russia detects first SuperCard malware attacks via NFC

Russian cybersecurity experts discovered the first local data theft attacks using a modified version of legitimate near field communication (NFC)...
Read More
Russia detects first SuperCard malware attacks via NFC

Income Property Investments exposes 170,000+ Individuals record

Cybersecurity researcher Jeremiah Fowler discovered an unsecured database with 170,360 records belonging to a real estate company. It contained personal...
Read More
Income Property Investments exposes 170,000+ Individuals record

ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs

GreyNoise found attempts to exploit CVE-2023-28771, a vulnerability in Zyxel's IKE affecting UDP port 500. The attack centers around CVE-2023-28771,...
Read More
ALERT (CVE: 2023-28771)  Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs

CISA Flags Active Exploits in Apple iOS and TP-Link Routers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently included two high-risk vulnerabilities in its Known Exploited Vulnerabilities (KEV)...
Read More
CISA Flags Active Exploits in Apple iOS and TP-Link Routers

10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online

SafetyDetectives’ Cybersecurity Team discovered a public post on a clear web forum in which a threat actor claimed to have...
Read More
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online

Henry Ford Health in Detroit experienced a data breach caused by an email phishing scam. This unfortunate incident has put at risk the personal information of approximately 168,000 patients. The compromised data consists of personal information such as name, gender, date of birth, lab results, and medical record numbers.

The Phoenician Medical Center of Arizona recently revealed a significant cybersecurity breach that resulted in the disruption of multiple IT systems. The breach affected the privacy and security of 162,500 patient files. These files contained sensitive information like state identification numbers, medical record numbers, diagnosis details, and treatment information.

VirusTotal unintentionally revealed the names and email addresses of 5,600 individuals from prominent defense and intelligence agencies worldwide, including those from the U.S. Cyber Command, the NSA, Pentagon, FBI, and military branches are all involved in enhancing national security.

A non-password-protected database was found exposing 2.3 million records from multiple dating apps, including explicit images and personal information. Most of the records are related to the 419 Dating – Chat & Flirt platform.

Symantec observed the financially-motivated FIN8 threat group using a reworked version of the Sardonic backdoor to deliver the BlackCat ransomware.

CISA has published an informative factsheet that offers valuable resources and expert advice aimed at empowering network defenders, cybersecurity professionals, and incident response analysts. With these free tools and guidance, they can effectively mitigate the dangers of information exposure, data theft, as well as encryption and extortion attacks.

Rapid7 has issued a warning regarding the active exploitation of two vulnerabilities in Adobe ColdFusion. These vulnerabilities allow hackers to bypass authentication and gain control over servers by executing remote commands to install malicious webshells.

Researchers have recently discovered evidence of a new ransomware operation called NoEscape, which appears to be a revamped version of the previously discontinued Avaddon ransomware. The latter had shut down and issued decryption keys in 2021.

Malicious actors have been found exploiting Android’s WebAPK feature to deceive users into unknowingly installing harmful web applications that can compromise their personal data. The attack starts with victims receiving text messages prompting them to update a mobile banking app.

Netcraft, a leading provider of cybercrime detection and disruption services based in Britain, has recently received a substantial $100 million investment from Spectrum Equity. This significant funding will fuel Netcraft’s rapid growth and ambitious plans for global expansion.

Check Also

Daily Security Update Dated: 18.12.2024

Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data …

Leave a Reply

Your email address will not be published. Required fields are marked *