Vietnamese Members of FIN9 Hacking Group Charged in US

June 24, 2024 at 09:57AM The US Department of Justice has filed charges against four Vietnamese individuals for cyberattacks that resulted in over $71 million in damages to US companies. The defendants, believed to be part of the cybercrime group FIN9, utilized phishing and other methods to compromise victim networks and steal private information and … Read more

Push Notification Fatigue Leads to LA County Health Department Data Breach

June 24, 2024 at 09:57AM The Los Angeles County Department of Health Services (DHS) revealed a data breach resulting from a push notification spamming attack on an employee’s Microsoft 365 account. Personal information may have been compromised, including names, addresses, Social Security numbers, and medical data. The DHS took immediate action to mitigate the breach … Read more

Britain’s Ministry of Defence accused of wasting £174M on ‘external advice’

June 24, 2024 at 08:58AM The UK government has faced criticism for spending £174 million on external advice for the Morpheus project, a new radio system for the armed forces. Delays and cancelled contracts have marred the program, raising concerns about the Ministry of Defence’s procurement record. The project is now unlikely to roll out … Read more

US Sanctions 12 Kaspersky Executives 

June 24, 2024 at 08:34AM The US imposed sanctions on twelve Russian individuals at Kaspersky and added several Kaspersky entities to trade restriction lists for alleged cooperation with Russian military and intelligence agencies. Despite the ban on sales in the US, Kaspersky’s CEO has not been sanctioned. Users must transition to alternative software by September … Read more

Ease the Burden with AI-Driven Threat Intelligence Reporting

June 24, 2024 at 07:30AM Cybersixgill’s threat experts highlight critical threats and the challenges faced by cybersecurity professionals in managing increasing workloads amidst limited budgets, inadequate staffing, and growing attack surfaces. The shortage of skilled professionals and the time-consuming nature of producing reports are major obstacles. Cybersixgill’s IQ Report Generator offers a solution, providing rapid, … Read more

Levi’s and more affected in pants-dropping week of data breaches

June 24, 2024 at 06:43AM Several major data breaches occurred in the US last week, including legendary denim dealer Levi’s admitting to a credential stuffing attack affecting over 72,000 customers. Additionally, the breach at debt collector Financial Business and Consumer Solutions (FBCS) has expanded to over 3.4 million affected individuals. Moreover, medical device manufacturer LivaNova … Read more

Hacker Claims Theft of 30M User Records From Australia Ticketing Company TEG

June 24, 2024 at 05:39AM Threat actors claimed to have stolen information on millions of Ticketek users after a data breach on the cloud-based platform. User account details, but not payment information, may have been compromised. The incident seems linked to the Snowflake campaign, and a hacker claimed to offer information on 30 million customers. … Read more

Japan’s Space Agency Was Hit by Multiple Cyberattacks, but Officials Say No Sensitive Data Was Taken

June 24, 2024 at 05:39AM Japan’s space agency, JAXA, has faced cyberattacks since late last year. The attacks did not compromise sensitive information about rockets, satellites, or national security. The agency has taken preventive measures and is collaborating with the government’s cybersecurity team to enhance its defenses. The attacks have not affected the Defense Ministry … Read more

Meta and SQL Server make strange bedfellows on a couch of cyber-pain

June 24, 2024 at 04:38AM The IT world’s diverse issues converge on the importance of software and services supply chain integrity. Despite its critical role, end-of-life database software receives inadequate attention, contrasting with the prominent AI and cybercrime coverage. Parallels are drawn with the food standards regulatory system, advocating for a similar approach to software … Read more

RedJuliett Cyber Espionage Campaign Hits 75 Taiwanese Organizations

June 24, 2024 at 04:24AM Between November 2023 and April 2024, a China-linked state-sponsored threat actor named RedJuliett conducted a cyber espionage campaign targeting government, academic, and diplomatic organizations in Taiwan. They utilized various techniques, including deploying web shells and exploiting vulnerabilities, with a focus on collecting intelligence related to Taiwan’s economic policy and diplomatic … Read more