November 21, 2024 at 07:15AM Threat actors linked to North Korea are impersonating U.S. tech companies to evade sanctions and fund weapons programs. Using forged identities, they secure jobs and funnel earnings back to the DPRK. The U.S. seized numerous fraudulent websites as part of efforts to counter these illicit operations. ### Meeting Takeaways: Malware … Read more
November 21, 2024 at 03:48AM Ford is investigating allegations of a data breach involving 44,000 customer records leaked on a hacking forum. Initially, claims of the breach raised concerns over potentially sensitive information. However, Ford later clarified that no breach occurred within its systems; the issue related to a third-party supplier and involved public dealer … Read more
November 20, 2024 at 02:29PM The U.S. Justice Department has charged five members of the Scattered Spider cybercrime gang with wire fraud and identity theft, accused of stealing over $11 million from cryptocurrency wallets through SMS phishing. This loosely organized group employs varied tactics and has connections to other hacking collectives and ransomware gangs. ### … Read more
November 19, 2024 at 03:15PM Ford is investigating a potential data breach involving 44,000 customer records allegedly leaked by a hacker on a forum. The records, which include identifiable information, could facilitate phishing attacks. The company is currently assessing the situation, acknowledging the seriousness of the claims, and advising caution regarding unsolicited communications. ### Meeting … Read more
November 16, 2024 at 12:53PM T-Mobile confirmed it was hacked amid a series of telecom breaches by Chinese state-sponsored group Salt Typhoon, targeting private communications and call records. Although T-Mobile stated that its systems were not significantly impacted, the U.S. government noted that customer data was stolen across multiple telecommunications companies. This marks T-Mobile’s ninth … Read more
November 15, 2024 at 06:58AM Threat actors have seized over 70,000 domains, targeting well-known brands and government entities due to inadequate domain ownership verification. This highlights vulnerabilities in domain management and the risks associated with lax security measures. The information was reported by SecurityWeek. **Meeting Takeaways:** 1. **Incident Overview:** Over 70,000 domains have been hijacked … Read more
November 13, 2024 at 05:36PM The Cybersecurity and Infrastructure Security Agency’s report reveals that zero-day vulnerabilities were the most exploited in 2023, a shift from 2022. Key exploits stemmed from Citrix and Cisco. CISA recommends organizations enhance defenses with EDR, web application firewalls, and network tools to mitigate ongoing risks. ### Meeting Takeaways 1. **CISA … Read more
November 11, 2024 at 04:18AM Trend Micro, in collaboration with various Japanese organizations, analyzed SEO malware relationships and their role in fake e-commerce scams. They identified distinct threat actor groups using specific and multiple malware families, showcasing how these malwares share infrastructure to optimize SEO poisoning attacks. Findings were presented at the 2024 IEEE Conference. … Read more
November 6, 2024 at 02:04PM Nokia is investigating a potential cyberattack by the group IntelBroker, which claims to have stolen internal data. So far, Nokia reports no evidence of system breaches. The incident highlights risks from third-party contractors accessing sensitive data. Experts suggest enhancing identity management to prevent similar breaches in the future. ### Meeting … Read more
November 5, 2024 at 03:58PM Hackers known as “Hellcat” claim to have stolen over 40GB of sensitive data from Schneider Electric, demanding a $125,000 ransom. They breached the company’s Jira system and threatened to release the data if their demands are unmet. Schneider Electric is investigating, acknowledging unauthorized access but not confirming the theft. ### … Read more