InfoSecBulletin Cybersecurity for mankind
BlackCat hacks Motel One Group and steals 24.5 million files of data. Someone on the dark web claims to have FBI credentials, but it’s unclear if they’re real. Medusa targets two companies and demands large ransoms. Here are the top 5 news highlights from the past day.
* Motel One Group was attacked by BlackCat ransomware. They stole 6 TB of data, which included 150 customer credit card records. The attackers claim to have taken 24.5 million files.
Cisco Confirms Active Exploitation Of Decade-Old WebVPN Vulnerability
TP-Link Archer Security Flaw Exposes Devices to Malicious Command Injection
IBM address multiple flaw in security verify access appliance
“Rockstar 2FA” Targets Microsoft 365 Users with AiTM Attacks
Workshop on “DDoS use cases & solutions for government & BFSI” held at BCS
Uganda confirms hack of central bank accounts, Refutes $17 Million Claim
CVE-2024-11667
Hackers actively exploiting Zyxel firewall to deploy Ransomware
Daily Security Update Dated: 29.11.2024
CIRT-in flags Critical Flaw in Oracle Agile PLM Framework
Microsoft patches four vulnerabilities in its services
* SeigedSec is reportedly selling the FBI’s Law Enforcement Enterprise Portal (LEEP) account credentials. It’s unknown how many credentials are being sold or if they are real.
* The LockBit ransomware group attacked Fauquier County Public Schools in Virginia and demanded ransom payment by October 19.
* The FBI has warned the energy industry that Chinese and Russian attackers are expected to target critical energy infrastructure more frequently because of changes in global energy supply.
* Netscout reported a significant increase in DDoS attacks in the first half of 2023. There were around 7.9 million attacks, representing a 31% surge compared to the previous year. They also noticed a resurgence in DNS water-torture attacks, with a rise of 353%.
