November 21, 2024 at 03:48AM Ford is investigating allegations of a data breach involving 44,000 customer records leaked on a hacking forum. Initially, claims of the breach raised concerns over potentially sensitive information. However, Ford later clarified that no breach occurred within its systems; the issue related to a third-party supplier and involved public dealer … Read more
November 21, 2024 at 01:48AM Threat hunters report an updated Python NodeStealer targeting Facebook Ads Manager and web browser credit card data. Developed by Vietnamese actors, it uses advanced techniques for data exfiltration, including avoiding detection in Vietnam. Recent phishing campaigns deploy I2Parcae RAT via ClickFix techniques, endangering users’ security and financial stability. ### Meeting … Read more
November 20, 2024 at 10:07PM SecurityWeek provides a range of cybersecurity news and resources, including webcasts, virtual events, and conferences focused on themes like malware, data breaches, ransomware, and more. They offer a daily briefing newsletter for updates and insights, and a platform for connecting key cybersecurity professionals and discussions. ### Meeting Takeaways: 1. **SecurityWeek … Read more
November 20, 2024 at 09:24PM A data breach at a French hospital compromised medical records of 750,000 patients, linked to a hacker known as ‘nears’. The threat actor claims access to over 1.5 million patient records and is selling access to multiple hospitals’ systems. Exposed data includes personal and medical information, raising phishing risks. ### … Read more
November 20, 2024 at 08:37PM The US Department of Justice has indicted five individuals linked to the cyber gang Scattered Spider, accused of stealing millions in cryptocurrency through SMS phishing and social engineering. The group also targeted MGM Resorts and Caesars Entertainment. Arrests were made in the US and Spain, with serious charges facing the … Read more
November 20, 2024 at 06:55PM Senator Richard Blumenthal warned that U.S. tech companies’ ties to China pose national security risks during a hearing on cybersecurity threats. CrowdStrike revealed its findings on Liminal Panda, a Beijing-backed cyber-espionage group targeting telecommunications networks. Blumenthal criticized companies like SpaceX and Apple for prioritizing profits over American security. ### Meeting … Read more
November 20, 2024 at 04:30PM A recent Dark Reading survey reveals that 91% of cybersecurity professionals believe AI and machine learning have enhanced their security operations. Key benefits include improved threat detection, reduced false positives, and increased efficiency. These tools are positively impacting enterprise security, streamlining processes, and improving response times for security teams. ### … Read more
November 20, 2024 at 03:58PM Finastra confirmed a cybersecurity incident involving compromised credentials on November 7, 2024, with a threat actor selling stolen data. An investigation shows no evidence of broader breaches beyond their Secure File Transfer Platform. The impact assessment is ongoing, and affected clients will be contacted directly. Finastra previously faced a ransomware … Read more
November 20, 2024 at 03:43PM MITRE released its annual list of the top 25 common software weaknesses, highlighting vulnerabilities behind 31,000 disclosures from June 2023 to June 2024. These flaws can be exploited by attackers to gain control over systems or steal data. Organizations are encouraged to prioritize addressing these vulnerabilities in their security strategies. … Read more
November 20, 2024 at 03:43PM Ford is investigating claims of a data breach involving 44,000 customer records leaked by hackers on a forum. Initially serious, the investigation revealed it involved a third-party supplier and public dealer addresses. Ford confirmed there was no breach of its systems, and the matter is reportedly resolved. **Meeting Notes Takeaways:** … Read more