Blue Yonder ransomware termites claim credit

December 8, 2024 at 10:10PM The Termite ransomware gang claimed responsibility for a ransomware attack on Blue Yonder, stealing 680GB of data. Blue Yonder’s operations were disrupted, affecting clients like Starbucks and UK grocery chains. Additionally, a Nigerian scammer received eight years in prison for a business email compromise scheme that stole over $6 million. … Read more

Russia-Linked Turla Exploits Pakistani Hackers’ Servers to Target Afghan and Indian Entities

December 4, 2024 at 12:54PM The Russia-linked APT group Turla has infiltrated the command-and-control servers of the Pakistan-based Storm-0156 hacking group since December 2022. Turla utilizes this access to deploy custom malware against Afghan government networks, demonstrating a tactic of leveraging others’ infrastructure for intelligence gathering, complicating attribution and enhancing their operational reach. ### Meeting … Read more

BootKitty UEFI malware exploits LogoFAIL to infect Linux systems

December 2, 2024 at 01:08PM The ‘Bootkitty’ UEFI bootkit, the first malware targeting Linux systems, exploits CVE-2023-40238 (known as ‘LogoFAIL’) to infect computers with vulnerable UEFI firmware. This discovery highlights a significant security threat for Linux users. **Meeting Notes Takeaways:** 1. **Introduction of ‘Bootkitty’:** A new UEFI bootkit known as ‘Bootkitty’ has been identified, targeting … Read more

Russian spies may have moved in next door to target your network

November 24, 2024 at 08:37PM Volexity reported a “nearest neighbor attack” by Kremlin-backed hackers APT28, compromising networks via neighboring organizations’ Wi-Fi without MFA. Cisco warns of an expiring internal certificate risking device management. Microsoft seized 240 phishing sites linked to a suspect. Helldown ransomware targets Linux, and Jupyter Notebooks are hijacked for illegal sports streaming. … Read more

MITRE Updates List of 25 Most Dangerous Software Vulnerabilities

November 21, 2024 at 08:45AM MITRE has updated its CWE Top 25 Most Dangerous Software Weaknesses list, highlighting cross-site scripting (XSS) as the most critical vulnerability. The announcement was featured in a post on SecurityWeek. **Meeting Notes Takeaways:** 1. **Update Release:** MITRE has published an updated list of the CWE Top 25 Most Dangerous Software … Read more

VMware Discloses Exploitation of Hard-to-Fix vCenter Server Flaw

November 18, 2024 at 01:31PM VMware’s critical CVE-2024-38812 vulnerability in vCenter Server has been exploited in the wild, prompting urgent updates from the company. Initially reported at a Chinese hacking contest, the flaw allows remote code execution. Past patches failed to fully resolve the issue, emphasizing the need for customers to apply fixes urgently. Here … Read more

Teen serial swatter-for-hire busted, pleads guilty, could face 20 years

November 17, 2024 at 07:42PM A teenager, Alan Filion, pleaded guilty to making over 375 fake threats, known as “swatting.” Facing up to 20 years in prison, he conducted these calls targeting institutions and individuals to extort money. Meanwhile, cybersecurity updates reveal ongoing vulnerabilities in Metabase and D-Link devices, alongside rising online scams tracked by … Read more

SAP Patches High-Severity Vulnerability in Web Dispatcher

November 12, 2024 at 08:24AM On November 2024 patch day, SAP released eight security notes, notably addressing a high-severity vulnerability in Web Dispatcher. This update highlights their ongoing efforts to enhance security measures. The information was reported by SecurityWeek. **Meeting Takeaways:** 1. **New Security Notes Released**: SAP has issued a total of eight new security … Read more

Form I-9 Compliance Data Breach Impacts Over 190,000 People

November 12, 2024 at 07:47AM Form I-9 Compliance has experienced a significant data breach, affecting 190,000 individuals. The ramifications of this incident continue to expand, highlighting serious security concerns. **Meeting Notes Takeaways:** 1. **Data Breach Overview**: A data breach involving Form I-9 Compliance has occurred. 2. **Affected Individuals**: The breach has impacted approximately 190,000 individuals. … Read more

Amazon Employee Data Leaked by Hacker

November 12, 2024 at 06:56AM Amazon has confirmed that employee data was compromised due to a MOVEit hack that occurred last year. This incident highlights vulnerabilities associated with data security and the risks of cyberattacks on large organizations. **Meeting Notes Takeaways:** 1. **Incident Confirmation**: Amazon has acknowledged that certain employee data was compromised due to … Read more