InfoSecBulletin Cybersecurity for mankind
The International Monetary Fund (IMF) recently experienced a cyber incident, which was detected on February 16, 2024.
After further investigation with help from cybersecurity experts, the breach was identified, and steps were taken to fix it.
CISA Flags Craft CMS Code Injection Flaw Amid Active Attacks
B1ack’s Stash Releases 1 Million Credit Cards on a Deep Web Forum
Cisco Confirms
Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks
AWS Key Hunter
Test this free automated tool to hunt for exposed AWS secrets
Check Point Flaw Used to Deploy ShadowPad and Ransomware
CVE-2024-12284
Citrix Issues Security Update for NetScaler Console
CISA and FBI ALERT
Ghost ransomware to breach organizations in 70 countries
Hacker chains multiple vulns to attack Palo Alto Firewall
150 Gov.t Portal affected
Black-Hat SEO Poisoning Indian “.gov.in, .ac.in” domain
CVE-2018-19410 Exposes 600 PRTG Instances in Bangladesh
The investigation found that 11 IMF email accounts were hacked. The affected accounts have been made secure again. So far, there is no evidence of any other accounts being compromised. The investigation into this incident is still ongoing.
The IMF takes prevention of, and defense against, cyber incidents very seriously and, like all organizations, operates under the assumption that cyber incidents will unfortunately occur. The IMF has a robust cybersecurity program in place to respond quickly and effectively to such incidents.
In response to questions about who was behind the attack and what information was accessed, a spokesperson told media: “For security reasons, we cannot disclose further details. We cannot confirm attribution.”
The IMF is a global lender that provides extensive financial support to governments worldwide. The organization faced a similar cybersecurity incident in 2011.
