#networkbreach

Microsoft SharePoint RCE bug exploited to breach corporate network

November 2, 2024 by Xynik

November 2, 2024 at 07:40PM A Microsoft SharePoint vulnerability (CVE-2024-38094) is being actively exploited for unauthorized network access. Attackers exploited this RCE flaw to compromise systems, disable security measures, and conduct lateral movement within networks. Rapid7’s report highlights an ongoing threat, urging administrators to apply updates from July 2024 promptly to mitigate risks. **Meeting Takeaways** … Read more

Chinese cyberspies reportedly breached Verizon, AT&T, Lumen

October 7, 2024 by Xynik

October 7, 2024 at 01:24PM Chinese cyberspies breached US broadband networks at Verizon, AT&T, and Lumen Technologies, potentially compromising wiretapping systems used for court-ordered surveillance. The snoops may have accessed systems that share domestic data with law enforcement, and the FBI is investigating. The breach is connected to previous Chinese hacking efforts, with concerns raised … Read more

MoneyGram: No evidence ransomware is behind recent cyberattack

October 6, 2024 by Xynik

October 6, 2024 at 11:50AM MoneyGram suffered a cyberattack causing a five-day system outage in September. While customers suspected ransomware, MoneyGram denies evidence of it. Investigation with external cybersecurity experts and law enforcement confirmed no ransomware involvement, with systems now operational. The attack, initiated through social engineering on the company’s internal help desk, was blocked … Read more

CannonDesign confirms Avos Locker ransomware data breach

August 20, 2024 by Xynik

August 20, 2024 at 06:50PM Cannon Corporation, operating as CannonDesign, has notified over 13,000 clients of a data breach where hackers stole data in early 2023. The breach included unauthorized network access and data theft. Despite discovering the breach in January 2023, the investigation was completed in May 2024, revealing compromised personal information. The ransomware … Read more

Rite Aid says June data breach impacts 2.2 million people

July 16, 2024 by Xynik

July 16, 2024 at 10:58AM Rite Aid, the third-largest US drugstore chain, suffered a data breach affecting 2.2 million customers’ personal information. The breach, detected on June 6, involved purchase-related data such as names, addresses, and driver’s license numbers, but not Social Security, financial, or health information. The ransomware gang RansomHub claimed responsibility and threatened … Read more

Russian indicted for selling access to US corporate networks

May 28, 2024 by Xynik

May 28, 2024 at 02:39PM Evgeniy Doroshenko, a Russian national, has been indicted in the U.S. for wire and computer fraud. He allegedly acted as an “initial access broker,” gaining unauthorized entry to corporate networks and selling access on Russian-language cybercrime forums. The charges carry a maximum of 20 years imprisonment and a $250,000 fine … Read more

Hackers Could Exploit Google Workspace and Cloud Platform for Ransomware Attacks

November 16, 2023 by Xynik

November 16, 2023 at 07:00AM Novel attack methods targeting Google Workspace and the Google Cloud Platform have been demonstrated, posing risks of ransomware, data exfiltration, and password recovery attacks. Threat actors could exploit vulnerabilities in Google Credential Provider for Windows (GCPW) to gain access to machines and bypass multi-factor authentication protections. These attacks highlight the … Read more

Clorox CISO flushes self after multi-million-dollar cyberattack

November 15, 2023 by Xynik

November 15, 2023 at 07:46PM The chief security officer of Clorox, Amy Bogac, has left her position following a corporate network breach that cost the company hundreds of millions of dollars. In separate news, ransomware group AlphV has claimed to have breached digital lending firm MeridianLink and filed a complaint against the company with the … Read more

PJ&A says cyberattack exposed data of nearly 9 million patients

November 15, 2023 by Xynik

November 15, 2023 at 11:17AM PJ&A, a medical transcription service provider, experienced a cyberattack in March 2023 that exposed the personal information of approximately 9 million patients. The breach included sensitive data such as full names, dates of birth, medical records, social security numbers, and more. PJ&A began notifying affected individuals on October 31, 2023. … Read more

HelloKitty ransomware now exploiting Apache ActiveMQ flaw in attacks

November 2, 2023 by Xynik

November 2, 2023 at 12:23PM HelloKitty ransomware is exploiting a critical Apache ActiveMQ flaw to breach networks and encrypt devices. The flaw allows attackers to execute arbitrary shell commands. Despite a security update being released, there are still thousands of internet-exposed servers using a vulnerable version. Rapid7 reported instances of threat actors exploiting the flaw … Read more