January 11, 2024 at 12:35PM Mandiant’s investigation of the takeover of its X account revealed a successful brute-force attack due to a change in two-factor authentication policy. The use of SMS-based 2FA was removed, leaving accounts vulnerable. The compromise led to a scam pushing CLICKSINK drainer-as-a-service, highlighting the rise of such attacks targeting valuable cryptocurrency … Read more
January 11, 2024 at 11:07AM Anonymous Sudan launched a “massive cyberattack” on Sudachad, a telecommunications provider in Chad. The attack targeted critical infrastructure, leading to a collapse in Internet connectivity on Jan. 10. The group cited Chad’s support for the paramilitary group Rapid Support Forces as the motive. Sudachad holds a 20-year concession agreement for … Read more
January 11, 2024 at 10:53AM GitHub’s widespread usage in IT has made it an attractive option for threat actors to host and deliver malicious content, acting as dead drop resolvers, command-and-control, and data exfiltration points. The platform is used for various malicious activities, including payload delivery and phishing, presenting challenges for traditional security defenses. Recorded … Read more
January 11, 2024 at 10:41AM Former Microsoft product head Panos Panay has left to lead Amazon’s product division, aiming to enhance their device ecosystem, including Alexa, Echo, and Fire TV. The rising number of IoT devices presents security concerns, especially as consumer devices infiltrate commercial networks. Amazon’s plans to expand its device range could compound … Read more
January 11, 2024 at 10:41AM Chinese state-sponsored hackers are targeting government entities in the US, UK, and Australia by exploiting old vulnerabilities in Cisco routers, reports SecurityScorecard. The actors likely compromised one-third of observed vulnerable devices and may operate a much larger botnet than previously believed, as indicated by connections to government sites. The attacks … Read more
January 11, 2024 at 10:36AM Kenya’s Office of the Data Protection Commissioner released new guidance notes for data protection in education, communications, and digital credit sectors, as well as a general guide for processing health data. The Data Protection Act, enacted in 2019, has led to significant enforcement, with fines issued for violations. Awareness efforts … Read more
January 11, 2024 at 10:36AM Hospitals, being custodians of highly sensitive patient data, are prime targets for cyberattacks. The healthcare industry, a gold mine of personal data, faces an 88% likelihood of cyber assaults. Data breaches result in financial losses and reputational damage, necessitating hospitals to fortify their cybersecurity measures and cultivate a culture of … Read more
January 11, 2024 at 10:28AM Chinese nation-state attackers have been exploiting two zero-day vulnerabilities in Ivanti’s security products, particularly affecting Ivanti Connect Secure (ICS) and Policy Secure. The US Cybersecurity and Infrastructure Security Agency (CISA) has advised users to apply the current workaround. Ivanti’s patches for the vulnerabilities are staggered, and organizations are urged to … Read more
January 11, 2024 at 10:21AM Cybersecurity researchers have developed a proof-of-concept code exploiting a critical flaw in Apache OFBiz, allowing memory-resident payload execution. Despite a fix in version 18.12.11, threat actors attempt to exploit the flaw, aiming at vulnerable instances. The CVE-2023-51467 allows remote code execution, posing a serious threat despite security guardrails. Based on … Read more
January 11, 2024 at 10:21AM A new Python-based hacking tool called FBot has emerged, targeting web servers, cloud services, and SaaS platforms. It includes features for credential harvesting, hijacking AWS and PayPal accounts, and attacking SaaS accounts. Similar to other cloud hacking tools, FBot aims to hijack cloud and SaaS services and monetize stolen access. … Read more