Ease the Burden with AI-Driven Threat Intelligence Reporting

June 24, 2024 at 07:30AM Cybersixgill’s threat experts highlight critical threats and the challenges faced by cybersecurity professionals in managing increasing workloads amidst limited budgets, inadequate staffing, and growing attack surfaces. The shortage of skilled professionals and the time-consuming nature of producing reports are major obstacles. Cybersixgill’s IQ Report Generator offers a solution, providing rapid, … Read more

Levi’s and more affected in pants-dropping week of data breaches

June 24, 2024 at 06:43AM Several major data breaches occurred in the US last week, including legendary denim dealer Levi’s admitting to a credential stuffing attack affecting over 72,000 customers. Additionally, the breach at debt collector Financial Business and Consumer Solutions (FBCS) has expanded to over 3.4 million affected individuals. Moreover, medical device manufacturer LivaNova … Read more

Hacker Claims Theft of 30M User Records From Australia Ticketing Company TEG

June 24, 2024 at 05:39AM Threat actors claimed to have stolen information on millions of Ticketek users after a data breach on the cloud-based platform. User account details, but not payment information, may have been compromised. The incident seems linked to the Snowflake campaign, and a hacker claimed to offer information on 30 million customers. … Read more

Japan’s Space Agency Was Hit by Multiple Cyberattacks, but Officials Say No Sensitive Data Was Taken

June 24, 2024 at 05:39AM Japan’s space agency, JAXA, has faced cyberattacks since late last year. The attacks did not compromise sensitive information about rockets, satellites, or national security. The agency has taken preventive measures and is collaborating with the government’s cybersecurity team to enhance its defenses. The attacks have not affected the Defense Ministry … Read more

Meta and SQL Server make strange bedfellows on a couch of cyber-pain

June 24, 2024 at 04:38AM The IT world’s diverse issues converge on the importance of software and services supply chain integrity. Despite its critical role, end-of-life database software receives inadequate attention, contrasting with the prominent AI and cybercrime coverage. Parallels are drawn with the food standards regulatory system, advocating for a similar approach to software … Read more

RedJuliett Cyber Espionage Campaign Hits 75 Taiwanese Organizations

June 24, 2024 at 04:24AM Between November 2023 and April 2024, a China-linked state-sponsored threat actor named RedJuliett conducted a cyber espionage campaign targeting government, academic, and diplomatic organizations in Taiwan. They utilized various techniques, including deploying web shells and exploiting vulnerabilities, with a focus on collecting intelligence related to Taiwan’s economic policy and diplomatic … Read more

Techie took out a call center – and almost their career – with a cut and paste error

June 24, 2024 at 03:38AM “Who, Me?” shares reader stories about encountering worse days at work. This week, Hugh inadvertently shared inappropriate jokes with 300 sales agents due to a clipboard mishap, leading to an uproar. Management was given an unusual explanation, attributing the error to a former admin’s downloads. Despite this, the incident actually … Read more

Facial Recognition Startup Clearview AI Settles Privacy Suit

June 24, 2024 at 03:22AM Clearview AI settled a lawsuit in Illinois, potentially worth over $50 million. The unique agreement grants plaintiffs a share of the company’s value, rather than a traditional payout. Clearview can still work with federal agencies and law enforcement outside Illinois. The settlement engages potential plaintiffs nationally. However, critics say the … Read more

Multiple Threat Actors Deploying Open-Source Rafel RAT to Target Android Devices

June 24, 2024 at 01:30AM Cyber espionage groups are using an Android remote administration tool, Rafel RAT, disguised as popular apps like Instagram and WhatsApp. This tool can perform various malicious activities like data theft and device manipulation. It has been used in cyber attacks targeting high-profile entities across multiple countries. It highlights the need … Read more

Snowflake breach snowballs as more victims, perps, come forward

June 23, 2024 at 10:21PM Snowflake breach continues to expand with victims, including Ticketek and Advance Auto Parts. Hacker claims to have accessed Snowflake by compromising third parties. CDK faces ransomware attack and potential payment. Critical vulnerabilities found in Juniper Secure Analytics, CAREL Boss-Mini, Westermo L210-F2G, and RAD Data Communications SecFlow-2. Alleged Apple tools leaked. … Read more