Security
Caesars ransom attack linked to MGM, tens of millions paid to hackers
New sources are naming Caesars Entertainment as the first victim to be hit by a massive cyberattack on the Las Vegas strip – making MGM Resorts the second.
Read more about Caesars ransom attack linked to MGM, tens of millions paid to hackers
China-linked malware spotted in national power grid
A national grid in an undisclosed Asian country was compromised for up to six months earlier this year, a study says. Evidence suggests a threat actor was using Chinese-linked malware called ShadowPad Trojan.
Read more about China-linked malware spotted in national power grid
MGM cyberattack claimed by ALPHV/BlackCat ransom gang
New information has surfaced claiming the ALPHV/BlackCat ransomware group is responsible for Monday’s debilitating cyber attack on the Las Vegas-based MGM Resorts Internationa. With rumors about a large ransom payment swirling, some insiders say MGM may not even be able to pay its employees come Friday.
Read more about MGM cyberattack claimed by ALPHV/BlackCat ransom gang
Ethereum’s Buterin says X account hacked in T-Mobile SIM swap
Ethereum co-founder Vitalik Buterin said someone “socially engineered” T-Mobile to take over his phone number, which was enough to hack into his X (Twitter) account.
Read more about Ethereum’s Buterin says X account hacked in T-Mobile SIM swap
IBM: Janssen health database breached in cyber incident
IBM announces that an unauthorized party breached the patient healthcare database it manages for the Johnson & Johnson-owned Janssen CarePath platform.
Read more about IBM: Janssen health database breached in cyber incident
LADbible Group leaks internal data
LADBible group, a popular viral media publisher, has leaked employee email addresses, links to its social media, a list of advertisers, and data on articles, among other information of high value to attackers.
Read more about LADbible Group leaks internal data
Large companies unprepared for cyberattacks, boards say
Board members in Singapore, Canada, and Japan feel their organizations are most exposed, according to a new report from cybersecurity company Proofpoint.
Read more about Large companies unprepared for cyberattacks, boards say
Flaw in AtlasVPN Linux clients discovered, update released
A simple code snippet in a webpage could disconnect instances of AtlasVPN’s Linux Client, exposing a user’s IP address. The zero-day flaw was discovered and shared by a user on Reddit, the company has released a patch.
Read more about Flaw in AtlasVPN Linux clients discovered, update released
Layoffs list extended by Malwarebytes, Fortinet, Veriff, SecureWorks
Thousands of employees have been cut from at least 46 cybersecurity companies in 2023. The streak is extended by Malwarebytes, announcing a second round of layoffs.
Read more about Layoffs list extended by Malwarebytes, Fortinet, Veriff, SecureWorks
Unraveling EternalBlue: inside the WannaCry’s enabler
WannaCry and NotPetya, probably two most damaging cyberattacks in recent history, were both only made possible because of EternalBlue. Here is how the NSA-developed cyber monster works, and how you should defend against it.
Read more about Unraveling EternalBlue: inside the WannaCry’s enabler
Topgolf Callaway Brands hacked, over a million golfers exposed
Over a million customers of Topgolf Callaway Brands, an American sports equipment manufacturing company that operates a chain of golf centers, have had their personal information leaked and will be asked to change passwords.
Read more about Topgolf Callaway Brands hacked, over a million golfers exposed
North Korean malicious package targets Windows
A malicious campaign targeting MacOS, Linux, and Windows systems has been attributed to the North Korean threat group Lazarus.
Read more about North Korean malicious package targets Windows
Russia’s spies using new crude malware to target Android devices in Ukraine
The Russian military intelligence service GRU can access compromised Android devices with a new malware dubbed Infamous Chisel. Spotted and described by Ukraine’s security agency, the technical details of the malicious campaign were published by the National Cyber Security Centre (NCSC) in the UK and international partners.
Read more about Russia’s spies using new crude malware to target Android devices in Ukraine
Chinese spies target Android users with fake Signal, Telegram apps
Two separate Chinese spy campaigns involving fake Signal and Telegram messaging apps targeting US and European Android users were discovered by ESET security researchers.
Read more about Chinese spies target Android users with fake Signal, Telegram apps
Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization
The National Safety Council has leaked nearly 10,000 emails and passwords of their members, exposing 2000 companies, including governmental organizations and big corporations.
Read more about Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization
GDPR used by new ransom gang to extort victims
The EU’s General Data Protection Regulation (GDPR) is being leveraged by a new ransomware group to pressure victims into paying up.
Read more about GDPR used by new ransom gang to extort victims
QakBot malware platform taken down by FBI
The US Department of Justice (DoJ) says QakBot, a decades-old malware platform with ties to Russia, has been dismantled by the FBI with the help of international law enforcement.
Read more about QakBot malware platform taken down by FBI
Just three malware loaders used in 80% of attacks
Three malware loaders, QakBot, SocGholish, and Raspberry Robin, wreak havoc in 80% of incidents, according to the threat researchers of IT security firm ReliaQuest.
Read more about Just three malware loaders used in 80% of attacks
Dangerous new Telegram bot automates scamming with no skill required
Hordes of wannabe scammers without any IT knowledge now have a new tool at their disposal. Attackers, referring to their victims as “mammoths,” were themselves labeled as “Neanderthals” by ESET researchers for the level of skills required to use the new Telegram bot.
Read more about Dangerous new Telegram bot automates scamming with no skill required
Multi-hospital ransom attack in US claimed by Rhysida gang
The early August ransomware attack on California-based Prospect Medical Holdings (PMH) – a multi-state conglomerate of over a dozen major hospitals and more than 150 outpatient facilities – has been claimed by the Rhysida ransom group.
Read more about Multi-hospital ransom attack in US claimed by Rhysida gang
