InfoSecBulletin Cybersecurity for mankind
Maxar Space Systems has verified a major data breach that exposed particular information of current and former workers. The breach in mid-October 2024 raised major cybersecurity concern after a hacker used a Hong Kong IP address to attack the company’s systems immorally.
Maxar said, they discovered the breach on ‘October 11, 2024, and took stern action to prevent the unauthorized access to the system in future.”
CVE-2024-51503
Trend Micro released updates for Deep Security Agent RCE
Apple Releases Patch for two Actively Exploited Zero-Day
Maxar Space Data Leak, Company admit, Investigation ongoing!
GitHub CLI Vulnerability Could Allow RCE
“Sarcoma” ransomware group
Hacker to disclose “Popular Life Insurance” 36 GB of stolen data
BugHunt 2024: A Milestone Cyber security Competition held at Dhaka
TP-Link DHCP Vulnerability Allow Attackers Takeover Routers Remotely
WSJ reports
T-Mobile hacked in massive breach of telecom networks
Palo Alto Networks Confirms critical RCE zero-day actively exploited
CISA, FBI Warns
Hacker compromised multiple teleco network at US
What information was involved:
The system had these types of personal data:
Home address
Social security number
Business contact information
Gender
Employee number
Job title,
Hiring date
Role start date
Termination date etc
These files did not contain any bank account information or dates of birth.
Maxar has informed law enforcement agencies and is coordinating with them to probe the breach. The company hired a cybersecurity establishment to help fix the vulnerabilities that caused the breach.
Maxar informed affected individualities in a letter about available defensive measures. Current workers can enroll in IDShield for identity protection, while former workers can use IDX for identity monitoring services.
The company advised current and former workers to keep an eye on their fiscal accounts for unusual exertion, report any suspected identity theft to law enforcement, and consider placing a security snap on their credit lines to cover against unauthorized access.
The hacker used a Hong Kong IP address, raising enterprises about the transnational nature and geopolitical counter accusations of the cyberattack. Cybersecurity experts praise Maxar for its quick response to minimize farther damage after the data breach, pressing the significance of translucency and nippy action. The disquisition is ongoing, and further details about the breach and necessary cybersecurity advancements for Maxar are anticipated in the coming weeks.
