December 5, 2024 at 05:55AM BT is investigating a ransomware attack by the Black Basta group, which claims to have stolen 500 GB of sensitive data. The group threatens to leak the data unless a ransom is paid. BT affirmed that only specific elements of its Conferencing platform were affected, and services remain operational. ### … Read more
December 5, 2024 at 04:11AM The UK Cyber Team Competition invites industry sponsorship to support young cyber talent aged 18-25, addressing a skills gap in UK businesses. The initiative includes partnership options with various benefits, aiming to cultivate future cyber professionals and enhance the UK’s security infrastructure. The competition starts on November 30, 2024. ### … Read more
December 5, 2024 at 03:48AM The Russian cyber-espionage group Turla is hijacking the infrastructure of Pakistani threat actor Storm-0156 to conduct covert attacks on compromised networks, particularly targeting Afghan and Indian government entities. This tactic, observed since late 2022, allows Turla to stealthily deploy malware while complicating attribution efforts. **Meeting Takeaways** 1. **Turla’s Activities:** – … Read more
December 5, 2024 at 03:34AM Stoli Group’s US subsidiaries, Stoli USA and Kentucky Owl, filed for bankruptcy due to over $84 million in debt, worsened by an August ransomware attack disrupting operations and compliance. Factors include soft alcohol demand post-COVID-19 and ongoing legal battles with Russia over vodka trademarks. Reorganization aims to protect creditor interests. … Read more
December 5, 2024 at 03:30AM The China-linked group MirrorFace has launched a spear-phishing campaign targeting individuals in Japan since June 2024, delivering backdoors NOOPDOOR and ANEL. This marks the return of ANEL, previously used by APT10. The attacks leverage malicious OneDrive links and various infection vectors, focusing on national security and international relations themes. ### … Read more
December 5, 2024 at 02:38AM Trend Micro researchers uncovered the Earth Minotaur group utilizing the MOONSHINE exploit kit, targeting vulnerabilities in instant messaging apps, particularly against Tibetan and Uyghur communities. They discovered an Android backdoor, DarkNimbus, which also runs on Windows. MOONSHINE has evolved since 2019, with over 55 identified servers by 2024. ### Meeting … Read more
December 5, 2024 at 02:07AM Operation Serengeti, a collaboration among Interpol, Afripol, and authorities in 19 African countries, led to over 1,000 arrests linked to cybercrimes costing $192 million. Despite this success, experts warn that cybercriminals may quickly adapt, emphasizing the need for stronger legal frameworks and increased cybersecurity education to combat ongoing threats. ### … Read more
December 5, 2024 at 01:18AM The U.K. National Crime Agency led Operation Destabilise, disrupting Russian money laundering networks, resulting in 84 arrests and the seizure of £20 million ($25.4 million). The U.S. Treasury sanctioned several individuals linked to these networks, which facilitated sanctions evasion and organized crime across multiple regions, including the U.K. and South … Read more
December 5, 2024 at 01:18AM The U.S. CISA has added several vulnerabilities to its KEV catalog, including severe issues in Zyxel and I-O DATA products, with active exploitation reported. Recommendations for remediation by December 25, 2024, are urged for federal agencies. Meanwhile, I-O DATA advises users to enhance security until patches are released. **Meeting Takeaways … Read more
December 4, 2024 at 11:13PM AI adoption is increasing among organizations for productivity and new business opportunities, but security often lags behind. The article outlines AI security risks, including prompt injection and model theft, suggesting best practices to mitigate these risks, such as configuring sensitive information filters and disabling public access to AI resources. ### … Read more