InfoSecBulletin Cybersecurity for mankind
Just a few days after the MOVEit Transfer flaw was disclosed, threat actors started abusing it. One of them being the Cl0p ransomware group that attacked Zellis, which, in turn, impacted multiple major organizations. Moving on from ransomware attacks, we come to unsecured databases and the resulting data exposure. This time, it is a popular online retailer—Scrubs & Beyond—and a huge trove of personal information. In other news, Verizon released its DBIR, revealing alarming statistics on the cost of ransomware attacks. Read along for more.
01
Tens of thousands of employees of British Airways, Boots, and the BBC had their personal data exposed following a breach at payroll provider Zellis, with the provincial government of Nova Scotia also affected. The attack was conducted by Lace Tempest – the group behind Cl0p ransomware.
02
Online retailer Scrubs & Beyond exposed a 400 GB database containing over 100,000 customer records, including full names, contact details, card data, and internal credentials, in plain text.
03
Uptycs researchers observed the Cyclops ransomware group offering an info-stealer that can target Windows and Linux. The group also shared a binary especially crafted to steal sensitive information.
04
CloudSEK identified 193 additional compromised apps infected with the SpinOK Android malware propagated as an advertisement SDK. Around 30 million users are estimated to be affected by it, while 43 of those apps are still active on Google Play Store.
05
According to the Verizon 2023 DBIR, the average cost of ransomware attacks has increased by over 100% in the last two years, reaching $26,000. Only 7% of cases resulted in reported losses, with victims experiencing financial damages ranging from $1 million to $2.25 million.
06
The Caribbean island of Martinique underwent a cyberattack that disrupted its internet access and other infrastructure for weeks, directly affecting residents. The Rhysida ransomware group claimed responsibility for the attack.
07
The IC3 warned that deepfakes are changing the nature of sextortion schemes, with some extortionists using the technology to create sexually explicit images or videos from otherwise benign content posted online.
08
The FBI Internet Crime Report noted that over 800,000 cybercrime-related complaints were lodged in 2022, with total losses of $10.3 billion. The complaints were related to phishing (300,497), personal data breach (58,859), and non-payment/non-delivery (51,679), among others.
09
Trend Micro uncovered a massive cryptocurrency scam involving more than a thousand websites run by a Russian-speaking threat actor named Impulse Team. The scam is an advanced fee fraud.
10
Human-centric browser security platform Keep Aware bagged $2.4 million in seed-stage funding led by LiveOak Venture Partners, with participation from Runtime Ventures and other angel investors.
