September 23, 2024 at 03:30AM Threat actors linked to North Korea have been using poisoned Python packages to distribute a new malware called PondRAT, part of an ongoing campaign. The attacks are part of an operation known as Operation Dream Job and aim to compromise supply chain vendors and their customers. The attackers have been … Read more
September 21, 2024 at 10:19AM Ukraine restricts government officials, military, and critical infrastructure workers from using Telegram due to national security concerns. The ban was announced by the National Coordination Centre for Cybersecurity, citing the app’s use by the enemy for cyber attacks and intelligence gathering. Personal phones and official duties are exempt from the … Read more
September 19, 2024 at 12:21PM Cybersecurity company Huntress has identified threat actors targeting the construction sector by infiltrating the FOUNDATION Accounting Software. Attackers use brute force to exploit default credentials, gaining access to plumbing, HVAC, concrete, and related sub-industries. To mitigate risk, it’s advised to rotate default credentials, avoid exposing the application over the public … Read more
September 19, 2024 at 08:36AM Hackers demand $6 million in bitcoin from Seattle-Tacoma airport for stolen documents, but the airport refuses to pay. The FBI is investigating while the airport works to recover from the ransomware attack. Data was encrypted, affecting operations. The hacker group Rhysida is linked to the attack, and similar breaches have … Read more
September 18, 2024 at 06:06AM Russian antimalware company Doctor Web detected and prevented a cyberattack targeting its resources on September 14. The firm disconnected its resources to check for compromise, temporarily suspending its virus databases. Despite the attack, no Dr.Web users were affected. The company had been monitoring the attacker’s movements and has brought its … Read more
September 17, 2024 at 12:55PM Ransomware group Rhysida claims to have stolen over 3 TB of data from Port of Seattle, including personal information, and is auctioning it for 100 Bitcoin. The Port confirmed the ransomware attack and its refusal to pay the ransom. While services are being restored, the timeline for full recovery remains … Read more
September 16, 2024 at 10:39AM Germany’s CDU party is still grappling with restoring member data months after a cyberattack. The hacking has caused concerns about the party’s ability to select representatives for the upcoming federal election. Although the details have not been fully disclosed, the attack has raised concerns about cybersecurity and potential international involvement. … Read more
September 16, 2024 at 07:39AM Access Sports Medicine & Orthopaedics discovered unauthorized access to personal and health information of over 88,000 individuals due to a cyberattack. The compromised data includes names, Social Security numbers, and medical information. While no evidence of misuse has been found, fraud protection services have been offered. The attack was claimed … Read more
September 13, 2024 at 03:56PM Fortinet confirms data compromise by hacker “Fortibitch” leaking 440GB of data via BreachForums. The breach impacted less than 0.3% of its customers worldwide. CloudSEK observed leaked customer, financial, and HR data. Incident highlights cloud data exposure risks. Experts suggest rethinking cloud security with multifactor authentication, monitoring, and encryption. The incident … Read more
September 13, 2024 at 11:27AM Kawasaki Motors Europe is recovering from a cyberattack by the RansomHub ransomware gang. The attack targeted its EU headquarters, resulting in temporary server isolation. KME is cleaning suspicious material and estimates restoring 90% of its server infrastructure by next week. RansomHub threatens to publish stolen data if its demands aren’t … Read more