BianLian’s Extortion-Focused Shift
GuidePoint’s Research and Intelligence Team (GRIT) observed a recent shift in threat actor group, BianLian to focus on extortion-only tactics.
Stemming from the most recent BianLian attack, leveraging the TeamCity vulnerability, GRIT sees this trend continuing from the threat actor group.
Seven Python Packages Built to Steal Crypto
ReversingLabs discovered seven packages on the Python Package Index (PyPI) repository, built to steal crypto wallet credentials, resulting in stolen crypto funds.
The attack campaign now dubbed “BIPClip” resulted in over seven thousand downloads, placing a significant amount of systems at risk.
27,000 Private Data Stolen from Stanford Ransomware Attack
Stanford University announced that the personal information of 27,000 individuals was stolen as a result of a September 2023 ransomware attack.
The University also disclosed that only one system was breached, namely the “Department of Public Safety” network. The data included biometric data, dates of birth, social security numbers, government IDs, passport numbers, and driver’s license numbers.
