Fulton County Government Systems Shut Down by Cyber Attack
The office of Fulton County, GA, USA’s District Attorney announced that it lost access to phones, the court system website, and the tax filing system due to a cyber attack.
The Fulton County Board of Commissioners Chairman Robb Pitts stated on a news briefing that the government systems could be shut down until February 5th, and will continue to investigate the cyber attack together with the FBI.
Schneider Electric Confirms Data Breach from Ransomware Attack
Schneider Electric announced that they were hit by a ransomware attack on January 17th, resulting in a data breach exposing their customer’s information. The ‘Cactus’ ransomware group claimed the ransomware attack.
Schneider has since informed the affected customers of the breach, which include Hilton, Pepsico, and Walmart. The attack also caused Schneider to shut down several division-specific systems.
Chinese Hackers Exploit Ivanti VPN Flaws
Volexity revealed that Chinese nation-state threat actors labeled as ‘UNC5221’ exploited the vulnerabilities of the Ivanti VPN since early December 2023.
Threat actors exploiting the critical Ivanti VPN vulnerabilities ‘CVE-2023-46805’ (CVSS score: 8.2) and ‘CVE-2024-21887’ (CVSS score: 9.1) could potentially deliver a Rust-based payload called ‘KrustyLoader’ used to remotely manipulate systems.
