Cyber Security

A ransomware infection targeting cloud IT provider Ongoing Operations has caused disruptions for approximately 60 credit unions across the United States, impacting services they rely on from the affected vendor. The National Credit Union Administration (NCUA), responsible for regulating and insuring these financial organizations, confirmed the incident, emphasizing that member deposits in affected federally insured...

An unidentified threat actor is distributing a new backdoor called "Agent Racoon" to target organizations in the Middle East, Africa, and the U.S., according to Palo Alto Networks Unit 42 researcher Chema Garcia. Agent Racoon, crafted using the .NET framework, utilizes the domain name service (DNS) protocol to establish a covert channel and execute various...

The U.S. Department of Justice (DoJ) declared the guilt of Vladimir Dunaev, a 40-year-old Russian national, in connection with his involvement in creating and deploying the TrickBot malware. Dunaev, apprehended in South Korea in September 2021 and extradited to the U.S., was found to have developed browser modifications and malicious tools that facilitated credential harvesting,...

Cybersecurity experts have unveiled a sophisticated Android malware named FjordPhantom, detected in Southeast Asian countries like Indonesia, Thailand, and Vietnam since early September 2023. Oslo-based mobile app security firm Promon revealed that the malware primarily spreads through messaging services, utilizing a blend of app-based malware and social engineering to deceive banking customers. It employs email,...

Suffolk County's computer team recently alerted administrators within its network about a data breach, stemming from a security incident involving the Okta computer security application utilized since last year. The breach prompted the county to initiate precautionary measures and notify its administrators of potential new cyber threats. A spokesperson for Suffolk County informed Patch that...

A recent report from Zimperium has unveiled an Android malware campaign designed to infiltrate Iranian banks, showcasing expanded capabilities and enhanced evasion strategies to evade detection. The report highlights over 200 malicious apps linked to this operation, where threat actors have executed phishing attacks against specific financial institutions in Iran. Initially detected in late July 2023,...

Arctic Wolf researchers have detected a CACTUS ransomware campaign exploiting security vulnerabilities within Qlik Sense, a cloud analytics and business intelligence platform. This marks the first instance where CACTUS ransomware attackers have leveraged these vulnerabilities for initial access. The attacks, witnessed across multiple instances by the cybersecurity company, likely exploit three disclosed flaws within the...

A recently released report unveils a concerning reality within UK football clubs, highlighting a substantial vulnerability to cyber threats stemming from outdated approaches to cybersecurity. The comprehensive study conducted by NCC Group, in collaboration with the University of Oxford's Oxford Researchers Strategy Consultancy and Phoenix Sport and Media Group (PSMG), underlines a critical need...

The notorious Rhysida ransomware group recently claimed a successful hack on King Edward VII’s Hospital in London, an esteemed provider of specialized medical care with a rich history dating back to its founding by King Edward VII in 1899. The ransomware group added the hospital to its list of victims on a Tor leak site,...

The LockBit 3.0 ransomware group executed a successful encryption of files and purportedly exfiltrated data from Fawry, an Egyptian e-payment provider, triggering concerns about compromised customer information. Public awareness of the breach emerged when LockBit showcased a sample of allegedly stolen data from Fawry's infrastructure on its dedicated leak site on November 8. Following this...

The Qilin ransomware group has claimed responsibility for a cyberattack on Yanfeng Automotive Interiors (Yanfeng), a leading global automotive parts supplier with over 57,000 employees across 240 locations. Yanfeng, specializing in interior components, holds a pivotal role in the supply chain of automotive giants like General Motors, Volkswagen Group, Ford, Stellantis, BMW, Daimler AG, Toyota,...

Japan's Space Exploration Agency (JAXA) confronted a cyber incident, with Chief Cabinet Secretary Matsuno confirming suspicions of an unauthorized breach into its network, particularly its Active Directory system. As a precautionary measure, JAXA shut down a portion of its network, including the intranet, seeking assistance to assess the extent of the breach. Secretary Matsuno assured...

Approximately 270,000 patients in southwestern Ontario find themselves embroiled in a legal battle as a $480-million class-action lawsuit emerges following a cybersecurity breach. The lawsuit, initiated by a patient of Sarnia’s Bluewater Health, alleges a breach of privacy rights, resulting in severe mental distress and loss of dignity among affected individuals. Lawyer Mireille Dahab from...

Legislation pivotal to the future of traditional public schools in Pennsylvania, particularly in Clarion County, remains in a state of inertia despite its approval by the state House months ago. This deadlock jeopardizes the financial stability of local school districts, casting a shadow over the educational landscape. Dr. John Kimmel, Superintendent of Union School District,...

On November 29th, the UK House of Commons moved the proposed UK Data Protection and Digital Information Bill closer to passage, sidestepping a recommitment vote following the introduction of government-backed amendments. The bill, initiated on March 8th, aims to reform the UK General Data Protection Regulation (GDPR) and Data Protection Act 2018, with recent...