January 19, 2024 at 07:23PM Microsoft disclosed a breach in corporate email accounts, with data stolen by the Russian state-sponsored hacking group Midnight Blizzard. The attack was detected on January 12th, and it was found that Nobelium accessed the accounts through a password spray attack in November 2023. The investigation is ongoing, and Microsoft is … Read more
January 19, 2024 at 07:15PM Chinese cyberspies have been exploiting a VMware security vulnerability, CVE-2023-34048, allowing them to hijack vulnerable servers. Meanwhile, a Moscow-backed group breached a small percentage of Microsoft corporate email accounts. Additionally, CISA issued an emergency directive to mitigate Ivanti Connect Secure zero-days, likely targeted by Chinese nation-state attackers. Persistent concerns exist … Read more
January 19, 2024 at 07:08PM Microsoft confirmed a breach of corporate email accounts by Russian state-sponsored group Midnight Blizzard. The attack, detected on January 12th, 2023, was initiated via a password spray attack in November 2023. Access was gained to leadership team and legal department emails for over a month, enabling theft of emails and … Read more
January 19, 2024 at 06:26PM Conor Brian Fitzpatrick sentenced to 20 years of supervised release in the Eastern District of Virginia for operating the BreachForums hacking forum, involved in the sale and leaking of personal data for millions worldwide. Also pleaded guilty to multiple charges including child pornography possession. Court showed leniency on sentencing, with … Read more
January 19, 2024 at 05:24PM In 2024, CISOs are facing increased personal and legal responsibility for data breaches, particularly due to new SEC regulations. To protect themselves, they should create a system record, define “materiality,” speak to the board in financial terms, participate in cyber insurance negotiations, and monitor emerging privacy threats. Managing third-party risks … Read more
January 19, 2024 at 04:48PM TeamViewer is widely used by organizations for remote support and access. However, attackers have exploited it for ransomware deployment. Huntress reported two failed attempts involving initial access via TeamViewer. Past incidents also show TeamViewer’s misuse. TeamViewer has security measures, but incidents often result from weak security practices. The company recommends … Read more
January 19, 2024 at 04:25PM Five individuals have been accused of a scheme involving over $7 million in fraudulent work expense claims submitted to an IT consultancy. The alleged embezzlement scheme comprised of no-show jobs, false timesheets, and disguising personal expenses as business expenses. They now face charges of wire fraud, wire fraud conspiracy, tax … Read more
January 19, 2024 at 04:05PM Apparel conglomerate VF Corporation experienced a data breach in December, compromising personal data of 35.5 million customers. The breach caused disruptions to its operations and led to website slowdowns and order cancellations. The company confirmed minor residual impacts and ongoing investigations but assured that sensitive information like Social Security numbers … Read more
January 19, 2024 at 03:28PM Many Payoneer users in Argentina woke up to find their 2FA-protected accounts hacked, with funds stolen after receiving SMS OTP codes while sleeping. Suspected hacking methods include a potential Movistar data leak or a breached SMS provider. Payoneer has not provided specific answers but acknowledged the fraud and advised users … Read more
January 19, 2024 at 03:00PM A critical vulnerability, CVE-2023-35082, in Ivanti Endpoint Manager Mobile (EPMM) with a CVSS score of 9.8 has been added to CISA’s Known Exploited Vulnerabilities Catalog. It allows an authentication bypass and patch bypass for another high-risk vulnerability, CVE-2023-35078. Rapid7 reports a potential threat actor exploitation, with all versions of Invanti … Read more