Third-Party Attacks on the Rise
Criminal gangs are exploiting a new “side door” into organizations via connected third-party applications including everything from calendars to creative
Cybersecurity Experts Question ‘Cyber Scam Warning’ Effectiveness – January 19th
The concern of official cyber scam warnings potentially being ineffective was raised by cybersecurity firms, Praxis Labs, eSentire, stemming from
JP Morgan Chase Combats 45 Billion Cyber Attacks Daily –
On Wednesday, January 17th, JPMorgan Chase's asset and wealth management division head, Mary Callahan Erdoes, said during the World Economic
Geopolitical tensions fuel botnet boom
Recent weeks have seen an exponential rise in malicious botnets performing reconnaissance scanning to scout out victims. According to researchers
CISA and FBI Release IOCs Associated with Androxgh0st Malware –
The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) released a joint cybersecurity advisory (CSA)
77% of CEOs Believe AI More Risk Than Reward in
Despite the hype of AI in cybersecurity, a PwC survey revealed that 77% of CEOs still believe AI increases the
‘Hacktivists’ target environmental services
Politically-motivated hacking, known as ‘hacktivism’, is now on the rise across large sections of the globe. Politically motivated groups are
FNF hack exposes 1.3m customer details
US real estate financial services fat cat, Fidelity National Financial (FNF), has revealed details of a cybersecurity breach that occurred
Ukrainian Hacks Accounts to Mine $2M in Crypto – January
A now arrested Ukrainian-based hacker infiltrated cloud-computing accounts to create over 1M virtual servers to mine $2M worth of cryptocurrencies,
Microsoft’s GitHub: A Growing Platform for Delivering Malicious Payloads –
A Recorded Future report discloses that Microsoft-owned GitHub is a growing and lucrative platform for threat actors to effectively deliver
British Library breach highlights new threat
The British Library, which houses about 14 million books plus manuscripts and items dating back to 2000 BC, was forced
Ukrainian Hacking Group Dismantles Russian Telco – January 11th
A source informed Reuters that the Ukrainian spy agency-backed "Blackjack" hacking group successfully deleted 20TB of data from M9 Telecom,
SEC X Account Hacked to Push Bitcoin ETFs – January
The Securities and Exchange Commission (SEC) confirmed through a spokesperson and social media announcements that the agency's X (formerly Twitter)
Turkish Cyber Espionage Group Targeting Dutch Orgs – January 9th
Hunt & Hackett uncovered information on “Sea Turtle”, a Turkish-affiliated cyber espionage group that shifted focus to target Netherlands-based organizations.
Blockchains lose $1.8 billion to cybercrime
Web 3.0, the blockchain version of the traditional internet that hosts decentralized blockchain crypto-currencies, lost over US$1.8 billion in 2023
Cyberattack Shuts Down loanDepot IT Systems – January 8th
In response to complaints regarding its payment portal, loanDepot informed its customers that they fell victim to a cyberattack that
Google to Test Third-Party Cookies Restrictions by End of 2024
As part of Google's "Privacy Sandbox" initiative, Google Chrome plans to test removing third-party cookies for 1% of its users
CISA Warns Google Chrome Users of Open Source Vulnerabilities –
In an announcement addressed to US Federal Agencies, the Cybersecurity and Infrastructure Security Agency (CISA) warned Google Chrome users of
$80M in Crypto Stolen from Orbit Chain Cyberattack – January
Orbit Chain revealed to its users that as a result of a cyber attack, $84.5M worth of Ethereum and DAI
Researchers Uncover a Tesla Autopilot Exploit – January 2nd
Researchers from the Technische Universität Berlin managed to hack into Tesla's autopilot system, granting them access to internal hardware and
Cyberattack Halts Albanian Parliament Data System – December 29th
Albania's Parliament announced it was hit by a cyberattack targeting its data system, resulting in halting the Parliament's services. The
H2 2023 Dominated by AI Malicious Activity and Android Spyware
According to an ESET report, the threat landscape of the second half of 2023 was dominated by AI-generated malicious activity
62% of Top Ransomware Groups Activated Remote Attacks in 2023
According to Sophos' latest report, 62% of the most active ransomware groups in the world deliberately enable remote encryption for
‘GTA V’ Source Code Leaked on Telegram Channel – December
Links to Rockstar Games’ 'GTA V' source code were posted on a Telegram group, later posted on Discord servers and
November’s Ransomware Leak Victims Reach Record High – December 25th
A record-high 484 ransomware victims were posted on publicly available sites in November 2023, according to a Corvus Insurance report.
Mr. Cooper breach exposes 14m victims’ data
US mortgage service provider Mr. Cooper has disclosed a breach to the U.S. Securities and Exchange Commission (SEC) affecting over
US White House Issues Executive Order to Improve Nation’s Cybersecurity
On December 21st, the U.S. White House issued Executive Order (EO) 14028, "Executive Order on Improving the Nation's Cybersecurity," which
3,500 Cybercriminals Arrested by Law Enforcement – December 21st
Over 3,500 cybercriminals were arrested and $300M worth of assets were seized by Europol, the South Korean government, along with
Financial Sector Sees Most Cyberattacks in 2023 – December 20th
Based on a Netwrix survey, the financial sector in 2023 experienced the most cyberattacks among any other sector in 2023.
‘Predatory Sparrow’ Cyberattack Shuts Down 70% of Iran’s Gas Stations
Threat actor group Gonjeshke Darande, which translates to “Predatory Sparrow” claimed the cyberattacks against Iranian petrol stations, rail networks, and
Pope calls for global AI regulation in 2024
The New Year is set to start with a call to regulate artificial intelligence (AI) coming from a man whose
MongoDB’s Data Breach Confirmed – December 18th
MongoDB revealed a data breach exposing customer metadata and sensitive information in an email announcement to their customers. The email,
Newsquest Media Group Discloses Cyberattack – December 15th
The UK's Newsquest Media Group reported a cyberattack that disrupted the company's websites and apps to the UK National Cyber
The UK is at ‘High Risk’ of Ransomware Attacks –
The Joint Committee on National Security Strategy (JCNSS) published a report "A hostage to fortune: ransomware and UK National Security,"
Ukraine’s Largest Telecom Crippled by Russian Cyberattack – December 13th
Kyivstar, Ukraine's largest telecom provider announced it was hit by a devastating cyberattack, disrupting internet access for over 26 million
Fraudulent LinkedIn Profiles Targeting Saudi Workers for Corporate Data Leaks
Revealed in a presentation at last month's Black Hat Middle East and Africa conference, was a corporate information leak tactic
AutoSpill Attack May Lead to Stolen Android Credentials – December
Researchers from the International Institute of Information Technology (IIIT) presented a new attack named 'AutoSpill' that enables attackers to steal