December 5, 2024 at 08:29AM A new Android remote access trojan (RAT) named DroidBot targets 77 banks and exchanges, primarily in Europe, with plans to expand to Latin America. It features advanced capabilities like keylogging and overlay attacks, distributed via fake security apps. Offered as malware-as-a-service, affiliates can manage infected devices for various malicious actions. … Read more
December 5, 2024 at 08:15AM Europol announced the dismantling of the Manson Market cybercrime marketplace and associated phishing websites by law enforcement in Germany and other European countries. Investigations revealed thousands of users bought stolen financial data. Authorities seized over 50 servers and arrested key suspects. This follows other recent takedowns of online criminal networks. … Read more
December 5, 2024 at 07:31AM Cisco has released patches for a significant vulnerability in NX-OS bootloader software (CVE-2024-20397) that could let attackers bypass image signature verification. Affecting over 100 models, the flaw requires physical access for exploitation. Cisco advises immediate updates, although no known exploits are reported. Discontinued devices will not receive patches. **Meeting Takeaways: … Read more
December 5, 2024 at 07:31AM NHS trusts in Wirral and Liverpool are recovering from separate cyberattacks. NHS Wirral downgraded its incident status; systems are still being restored, causing longer wait times. Alder Hey Children’s Hospital confirmed a data breach, with attackers posting personal information online, while investigations are ongoing. Ransom payments are not anticipated. **Meeting … Read more
December 5, 2024 at 07:24AM Vulnerability Management (VM) is becoming inadequate as cybersecurity challenges evolve, necessitating a shift to Exposure Management (EM). By incorporating business context, organizations can prioritize risks, optimize resources, and align security with strategic goals. Effective metrics can engage leadership and transition cybersecurity from a cost center to a business enabler. ### … Read more
December 5, 2024 at 07:01AM Chemonics International has notified over 260,000 individuals about a data breach compromising personal information, including names, addresses, and Social Security numbers. Discovered on December 15, 2023, investigators found attackers had accessed data from May 2023 to January 2024. Chemonics is offering 24 months of free identity protection services. ### Meeting … Read more
December 5, 2024 at 06:32AM System Two Security launched a threat detection solution utilizing generative AI and secured $7 million in seed funding. Founded by Robert Fly and Prasanth Ganesan, the company aims to streamline security rule creation without needing access to existing tools. Early access for testing is available for interested organizations. ### Meeting … Read more
December 5, 2024 at 06:24AM A suspected Chinese threat actor targeted a large U.S. organization between April and August 2024, compromising multiple computers and potentially exfiltrating email data. The attack used tactics, such as DLL side-loading and open-source tools. Previous links to another Chinese hacking group were also noted. Specific intrusion details remain unclear. **Meeting … Read more
December 5, 2024 at 06:17AM BT Group confirmed an attempted attack by the Black Basta ransomware group on its BT Conferencing unit. The incident affected specific platform elements, which were quickly isolated, with no impact on live services. Black Basta claims to have stolen around 500 GB of outdated data, prompting an ongoing investigation. ### … Read more
December 5, 2024 at 06:03AM A White House official revealed that a Chinese hacking campaign has impacted at least eight U.S. telecom firms and multiple nations, targeting private communications of Americans, including officials. While no classified information was compromised, ongoing cybersecurity risks remain. The Chinese embassy denies involvement, urging the U.S. to stop its cyberattacks. … Read more