InfoSecBulletin Cybersecurity for mankind
Ransomware groups claimed the highest number of attacks in May, but experts believe the claims might be exaggerated.
Last month, ransomware gangs posted 450 victims to their extortion sites, which is an increase compared to the 328 victims in April. The highest number of attacks ever recorded was 484, posted by groups in July 2023.
CVE-2024-51503
Trend Micro released updates for Deep Security Agent RCE
Apple Releases Patch for two Actively Exploited Zero-Day
Maxar Space Data Leak, Company admit, Investigation ongoing!
GitHub CLI Vulnerability Could Allow RCE
“Sarcoma” ransomware group
Hacker to disclose “Popular Life Insurance” 36 GB of stolen data
BugHunt 2024: A Milestone Cyber security Competition held at Dhaka
TP-Link DHCP Vulnerability Allow Attackers Takeover Routers Remotely
WSJ reports
T-Mobile hacked in massive breach of telecom networks
Palo Alto Networks Confirms critical RCE zero-day actively exploited
CISA, FBI Warns
Hacker compromised multiple teleco network at US
Over a third of last month’s attacks were linked to LockBit, a group that had its website seized by law enforcement in February. Some leaders of the group claim that the takedown did not completely stop their activities, and LockBit is still operating.
LockBit has claimed to have attacked many organizations lately. However, cybersecurity experts doubt these claims and believe it’s a public relations strategy to reassure partners that their operations are running smoothly.
Allan Liska, a ransomware expert from Recorded Future, tracks and analyzes data from extortion sites, government agencies, news reports, and hacking forums. Many attacks listed on the site seem to be duplicates or old attacks that were never posted on the extortion site to begin with.
“The problem is that it is often difficult to determine what is real and what is made up as a way for LockBit to save face… Criminals are, to put it gently, unreliable narrators when it comes to victim reporting.”
