InfoSecBulletin Cybersecurity for mankind
The rising number of attacks targeting cryptocurrency businesses underscores the urgent requirement for enhanced security measures. Once, Mixin suffered a devastating loss of assets amounting to $200 million when it fell victim to a cyberattack targeting its cloud service provider.
National Student Clearinghouse recently experienced a troubling data breach that has affected numerous schools throughout the United States. Recently, the government of Bermuda fell victim to a cyberattack, which has been traced back to Russian threat actors.
Here’s everything you need to know:
- Mixin, a cryptocurrency business based in Hong Kong, recently fell victim to a massive $200 million asset theft. This significant loss occurred when malicious threat actors targeted their cloud service provider, causing the temporary suspension of deposit and withdrawal services.
- A new TA866 campaign has been unveiled by researchers. This campaign strategically utilizes a fresh strain of Python malware in order to specifically target users who speak the Tatar language. This malware possesses the ability to capture screenshots and then effortlessly transmit them to a remote server through FTP.
- ESET has recently detected a novel backdoor malware, known as Deadglyph, that has been deployed in a sophisticated cyberespionage campaign against a government agency located in the Middle East. The malware has been linked to a UAE state-sponsored group named Stealth Falcon.
- A new attack campaign has been uncovered by Securonix Threat Research, targeting Ukraine’s military. This sophisticated operation, carried out by the notorious threat group UAC-0154, involves the use of malware-laced lure files disguised as UAV service manuals.
- Palo Alto Network’s Unit 42 published a new report on the Gelsemium APT group. They revealed that this group conducted a cyberespionage campaign against a Southeast Asian government. The campaign lasted for a impressive six-month period from 2022 to 2023.
