#DigitalSecurity

Mexico’s President Says Government Is Investigating Reported Ransomware Hack of Legal Affairs Office

by

November 21, 2024 at 08:22AM Mexico’s president announced that the government is probing a reported ransomware attack on the country’s legal affairs office, highlighting the seriousness of cybersecurity threats. **Meeting Takeaways:** 1. **Investigation Initiated**: Mexico’s president has announced that the government is actively investigating a ransomware hack that affected the country’s legal affairs office. 2. … Read more

US Charges Five Alleged Scattered Spider Members

by

November 21, 2024 at 07:28AM Five individuals linked to the Scattered Spider cybercrime group have been charged with phishing and stealing millions of dollars in cryptocurrency, according to a report by SecurityWeek. **Meeting Takeaways:** 1. **Charges Filed**: The U.S. has charged five individuals alleged to be members of the Scattered Spider cybercrime group. 2. **Crimes … Read more

New Ghost Tap attack abuses NFC mobile payments to steal money

by

November 20, 2024 at 11:45AM Cybercriminals are exploiting a method called ‘Ghost Tap’ to cash out stolen credit card details via mobile payment systems, using money mules worldwide. This tactic, more sophisticated than past methods, enables remote cash outs at multiple locations, making detection difficult for financial institutions. Consumer vigilance is essential to prevent losses. … Read more

Ghost Tap: Hackers Exploiting NFCGate to Steal Funds via Mobile Payments

by

November 20, 2024 at 08:52AM Cybercriminals are exploiting a technique known as Ghost Tap, using near-field communication (NFC) to fraudulently withdraw funds from stolen credit cards linked to mobile payment services like Google Pay and Apple Pay. This method allows transactions without the physical card or phone, complicating detection for financial institutions and retailers. ### … Read more

Amazon and Audible flooded with ‘forex trading’ and warez listings

by

November 20, 2024 at 08:49AM Amazon, Amazon Music, and Audible have experienced an influx of fake listings promoting dubious forex trading sites, pirated software, and spammy links. These listings, including zero-second audio episodes, exploit the platforms for SEO manipulation. The issue highlights a broader problem of spam in digital content distribution. ### Meeting Takeaways: 1. … Read more

Name That Toon: Meeting of Minds

by

November 20, 2024 at 12:32AM A contest invites submissions for a cybersecurity-related caption about the work-from-anywhere trend, with a $25 gift card prize for the best entry. Submissions are due by December 11 via email or social media. Last month’s winner was Matthew Tompkins for his caption on the “The Big Jump” cartoon. ### Meeting … Read more

Healthcare org Equinox notifies 21K patients and staff of data theft

by

November 19, 2024 at 07:34PM Equinox, a New York health services organization, has informed over 21,000 clients and staff of a data breach involving their personal information. The LockBit ransomware gang is suspected of the incident, which occurred in April. Equinox has since secured its IT environment and is investigating the breach. ### Meeting Notes … Read more

New ‘Helldown’ Ransomware Variant Expands Attacks to VMware and Linux Systems

by

November 19, 2024 at 05:45AM Cybersecurity researchers have identified a new Linux variant of the Helldown ransomware, derived from LockBit 3.0. This group targets virtualized infrastructures, exploiting Zyxel security flaws. Helldown employs double extortion tactics, attacking various sectors. Additionally, a new ransomware, Interlock, has emerged, targeting similar sectors with advanced operations. ### Meeting Takeaways on … Read more

Bitsight to Acquire Cybersixgill for $115 Million

by

November 14, 2024 at 11:32AM Cyber risk management firm Bitsight has announced its acquisition of threat intelligence provider Cybersixgill for $115 million. This deal will enhance Bitsight’s capabilities in risk management and threat detection, providing organizations with comprehensive insights into their attack surfaces and bolstering their cybersecurity measures with real-time, AI-driven data. ### Meeting Takeaways: … Read more

US indicts Snowflake hackers who extorted $2.5 million from 3 victims

by

November 13, 2024 at 01:52PM The Department of Justice has unsealed an indictment against two suspected hackers who compromised over 165 organizations using Snowflake cloud storage services. **Meeting Notes Takeaways:** 1. **Indictment Unsealed**: The Department of Justice has publicly released the indictment against two suspected hackers. 2. **Nature of Breach**: The hackers are believed to … Read more