Monday , December 23 2024

Daily Cybersecurity Update, June-30, 2023

LockBit is back in the headlines as one of its sub-groups claimed to have attacked the world’s largest chip maker – TSMC. It has asked for a hefty ransom, the refusal of which would lead to the publishing of stolen data. Speaking of ransomware attacks, the University of Manchester breach also impacted over a million NHS patients, including records of patients who have suffered major trauma. Moving on to another critical news, researchers have recorded a massive surge in the exploitation of remote servers. Without much ado, here’s everything you need to know from the last 24 hours.

  1. National Hazard Agency, a LockBit ransomware sub-group, claims to have hacked Taiwan Semiconductor Manufacturing Company (TSMC) and is demanding a ransom of $70 million. The deadline for payment is August 6.
  2. A ransomware attack on the University of Manchester compromised the NHS patient data set of 1.1 million patients across 200 hospitals. The information includes NHS numbers, records of trauma patients, and the first three letters of patients’ postcodes.
  3. The number of individuals impacted by hackers exploiting vulnerabilities in the MOVEit software has surpassed 16 million. This number is expected to rise significantly. Additionally, 158 organizations have disclosed falling victim to the exploitation of the flaw by the Cl0p ransomware gang.
  4. A threat group claiming affiliation with the Wagner Group launched a cyberattack on Russian satellite communications provider Dozor-Teleport. The group leaked 700 files, including documents and images, allegedly belonging to the company.
  5. MITRE has released a list of the top 25 most dangerous vulnerabilities in software. The list was created by analyzing 43,996 CVE entries from NIST’s National Vulnerability Database (NVD).
  6. The pro-Russian crowdsourced DDoS project, named DDoSia, experienced a massive 2,400% growth in less than a year. The project now has over 10,000 participants conducting attacks on Western organizations, according to Sekoia.
  7. MIT researchers developed the Metior framework that provides a quantitative assessment of cybersecurity obfuscation schemes. The framework can help engineers evaluate the effectiveness of different security approaches.
  8. A new report by ReliaQuest recorded almost 5,000 instances of remote server exploitation, including RDPs and VPNs. This makes it the most commonly used attack technique in 2022.
  9. Network assurance firm IP Fabric raised $25 million in a Series B funding round. The round was led by One Peak, with participation from Senovo and Presto Ventures.
  10. Israel-based application security platform Nokod Security announced a $8 million seed-stage funding round. The round was led by Acrew Capital, with investment from Meron Capital and Flint Capital.

 

Critical PHP Zero-Day Vulnerability found in Craft CMS To Gain RCE

A major security flaw in Craft CMS, a popular PHP content management system, has been found, enabling unauthenticated remote code...
Read More
Critical PHP Zero-Day Vulnerability found in Craft CMS To Gain RCE

For US$2.6bn, Mastercard acquires threat intelligence firm Recorded Future

Mastercard has completed its acquisition of Recorded Future, an AI-based threat intelligence provider. Mastercard has acquired the company for $2.65...
Read More
For US$2.6bn, Mastercard acquires threat intelligence firm Recorded Future

Eight New ICS Advisories released by CISA

CISA has released eight advisories on vulnerabilities in Industrial Control Systems (ICS). These vulnerabilities affect essential software and hardware in...
Read More
Eight New ICS Advisories released by CISA

Authority Denies
Hacker claim ransomware attack on Indonesia’s state bank BRI

Bank Rakyat Indonesia (BRI), the largest state bank by assets, has assured customers that their data and funds are secure...
Read More
Authority Denies  Hacker claim ransomware attack on Indonesia’s state bank BRI

London-based company “Builder.ai” reportedly exposed 1.2 TB data

Cybersecurity researcher Jeremiah Fowler reported to Website Planet that he found a non-password-protected 1.2 TB dataset containing over 3 million...
Read More
London-based company “Builder.ai” reportedly exposed 1.2 TB data

(CVE-2024-12727, CVE-2024-12728, CVE-2024-12729)
Sophos resolved 3 critical vulnerabilities in Firewall

Sophos has fixed three separate security vulnerabilities in Sophos Firewall.  The vulnerabilities CVE-2024-12727, CVE-2024-12728, and CVE-2024-12729 present major risks, such...
Read More
(CVE-2024-12727, CVE-2024-12728, CVE-2024-12729)  Sophos resolved 3 critical vulnerabilities in Firewall

“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA

A time-demanding workshop on "Cybersecurity Awareness and Needs Analysis" was held on Thursday (December 19) at Bangladesh Bank Training Academy...
Read More
“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA

CVE-2023-48788
Kaspersky reveals active exploitation of Fortinet Vulnerability

Kaspersky's Global Emergency Response Team (GERT) found that attackers are exploiting a patched SQL injection vulnerability (CVE-2023-48788) in Fortinet FortiClient...
Read More
CVE-2023-48788  Kaspersky reveals active exploitation of Fortinet Vulnerability

U.S. Weighs Ban on Chinese-Made Router TP-Link: WSJ reports

The US government is considering banning a well-known brand of Chinese-made home internet routers TP-Link due to concerns that they...
Read More
U.S. Weighs Ban on Chinese-Made Router TP-Link:  WSJ reports

Daily Security Update Dated: 18.12.2024

Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so...
Read More
Daily Security Update Dated: 18.12.2024

Check Also

Daily Security Update Dated: 04.12.2024

Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data …

Leave a Reply

Your email address will not be published. Required fields are marked *