Tuesday , September 10 2024

Daily Cybersecurity Update, June 27, 2023

Local government bodies across the U.S. are facing the wrath of growing cyber intrusions. The latest such victim is a Texan city that suffered a data breach affecting half a million government files. Meanwhile, the Cl0p ransomware continued to claim more victims of MOVEit Transfer zero-day exploitation, this time including two industrial control system providers. A new study revealed a significant spike in BEC attacks against European firms as compared to their American counterparts in the last year. Read on to find out the top cybersecurity happenings from the last 24 hours.

  • SiegedSec hacker group breaches Fort Worth government website. The SiegedSec hacker group has breached a website containing government information from the city of Fort Worth, Texas. They gained access to around 500,000 files that included work orders, employee lists, invoices, police reports, emails between employees and contractors, internal documents, camera footage, and more.
  • Cl0p ransomware group adds five new victims to dark web leak site. The Cl0p ransomware group has added five new victims to its dark web leak site, including Schneider Electric and Siemens Energy. The other listed victims are Werum (Körber Pharma), UCLA, and Abbvie. The group is exploiting the recently disclosed MOVEit Transfer vulnerability to target its victims.
  • Activision Blizzard servers hit by DDoS attack. Activision Blizzard’s servers were hit by a DDoS attack on Sunday, causing disruption to popular online games such as Call of Duty: Warzone and World of Warcraft. The attack lasted for over 10 hours and was only mitigated late on Sunday.
  • Anatsa Android banking trojan distributed via Google Play Store. The Anatsa Android banking trojan is being distributed via the Google Play Store. The trojan collects financial information and performs on-device fraud, making it difficult for banking anti-fraud systems to detect it.
  • European organizations experience higher volume and frequency of BEC attacks. According to Abnormal Security, European organizations experienced a higher volume and frequency of BEC attacks compared to those in the U.S., between June 2022 and May 2023. BEC attacks in Europe increased by 10 times, while it just doubled in the U.S.
  • Europol takes down EncroChat, encrypted messaging platform used by organized crime groups. Europol announced the takedown of EncroChat, an encrypted messaging platform used by organized crime groups. The operation led to the arrests of 6,558 individuals worldwide and the confiscation of $985 million in illicit criminal proceeds.
  • Companies with ties to the U.S. government or defense sector are more likely to be targeted by cybercriminals. A study by the American Enterprise Institute found that companies with ties to the U.S. government or defense sector are more likely to be targeted by cybercriminals. The study also found that highly profitable companies, those holding abundant cash, and organizations that spend generously on advertising are also more likely to be targeted.
  • Researchers discover new side-channel attack that can recover secret keys from a device. Researchers from Ben-Gurion University of the Negev and Cornell University have discovered a new side-channel attack that can recover secret keys from a device by analyzing video footage of its power LED.
  • CalypsoAI raises $23 million in funding to build out LLM security solutions. CalypsoAI has raised $23 million in a Series A-1 funding round to build out its Large Language Model (LLM) security solutions. The round, led by Paladin Capital Group, featured investment from Lockheed Martin Ventures, Hakluyt Capital, and Expeditions Fund.
  • Identity verification company Socure acquires document verification start-up Berbix. Identity verification company Socure has announced its acquisition of the document verification start-up, Berbix, in a deal worth $70 million. The acquisition will enable Socure to detect fake identities more accurately.

Hacker to exploite GeoServer Vulnerability to Deploy Malware

Researchers at Fortinet unveiled hackers to exploit GeoServer RCE vulnerability deploying malware relating to the vulnerability tracked as “CVE-2024-36401, has...
Read More
Hacker to exploite GeoServer Vulnerability to Deploy Malware

IMB unveils multiple vulnerabilities in it’s webMethods Integration

Multiple vulnerabilities have been published by IBM in its webMethods Integration Server which cloud allow attackers to execute arbitrary commands...
Read More
IMB unveils multiple vulnerabilities in it’s webMethods Integration

Progress LoadMaster exposed to a critical 10/10 vulnerability

Progress Software released an emergency fix for a critical vulnerability (10/10) in its Loadmaster and LoadMaster Multi-Tenant Hypervisor products, which...
Read More
Progress LoadMaster exposed to a critical 10/10 vulnerability

Cisco released security updates for two critical security flaws

CISCO released security updates for two critical security flaws impacting its smart Licensing Utility that could allow unauthenticated, remote attackers...
Read More
Cisco released security updates for two critical security flaws

OpenBAS: Cutting-edge breach and attack simulation platform

OpenBAS is a platform that helps organizations to plan, schedule, and conduct crisis exercises, adversary simulations, and breach simulations. OpenBAS...
Read More
OpenBAS: Cutting-edge breach and attack simulation platform

Critical Security Flaws Patched in Zyxel Networking Devices

Zyxel has released software updates to fix a serious security issue in certain access point (AP) and security router versions....
Read More
Critical Security Flaws Patched in Zyxel Networking Devices

CVE-2024-38811: CEV In VMware Fusion Unveiled

VMware released a security advisory for a major vulnerability in the VMware Fusion product. This vulnerability could be exploited by...
Read More
CVE-2024-38811: CEV In VMware Fusion Unveiled

CERT-IN Warns Vulnerabilities in Palo Alto Networks applications

Indian Computer Emergency Response Team (CERT-IN) issued advisories about multiple vulnerabilities in various Palo Alto Networks applications. Attackers could exploit...
Read More
CERT-IN Warns Vulnerabilities in Palo Alto Networks applications

How Malaysia’s Data Centre Industry Poised for Growth

Malaysia is quickly becoming a leading choice for investing in data centers. It aims to generate RM3.6 billion (US$781 million)...
Read More
How Malaysia’s Data Centre Industry Poised for Growth

RansomHub exfiltrated data over 210 victims: US alert

US authorities have issued a cybersecurity advisory about a ransomware group called RansomHub. The group is thought to have stolen data...
Read More
RansomHub exfiltrated data over 210 victims: US alert

Check Also

DAILY CYBER KEY

Daily Cybersecurity update, May 27, 2024

Infosecbulletin’s daily cyber security update is a daily basis security updates across the globe. This …

Leave a Reply

Your email address will not be published. Required fields are marked *