Infosecurity News

New MoonPeak RAT Linked to North Korean Threat Group UAT-5394
The MoonPeak RAT as used by UAT-5394 showed a possible connection to North Korean threat Kimsuky

Critical LiteSpeed Cache Plugin Flaw Exposes WordPress Sites
The LiteSpeed Cache flaw may expose millions of WordPress sites to severe security risks

Australia Calls Off Clearview AI Investigation Despite Lack of Compliance
Australia’s data protection watchdog has decided to stop its investigation into US facial recognition company Clearview AI

Oregon Zoo Warns Over 100,000 Customers of Payment Card Compromise
Oregon Zoo revealed that an unauthorized actor potentially obtained payment card information used in transactions over six months

CISA to Get New Headquarters as $524M Contract Awarded
The building, located in Washington, DC, will be the new home of the US Cybersecurity and Infrastructure Security

Healthcare Hit by a Fifth of Ransomware Incidents
Healthcare has been the most targeted sector according to Barracuda analysis of 200 reported ransomware incidents from August 2023 to July 2024

Most Ransomware Attacks Now Happen at Night
Malwarebytes report warns security teams to be on high alert for ransomware attacks at night

Microchip Technology Says IT Incident Impacted Operations
US chip firm Microchip reveals operational disruption stemming from cyber incident

Novel Phishing Method Used in Android/iOS Financial Fraud Campaigns
ESET detected a new phishing technique using progressive web applications (PWAs) as part of a large-scale mobile financial scam

New DNS-Based Backdoor Threat Discovered at Taiwanese University
The Msupedge backdoor communicates with a command-and-control server by using DNS traffic

Iranian Group TA453 Launches Phishing Attacks with BlackSmith
TA453, also known as Charming Kitten, launched a targeted phishing attack using PowerShell malware BlackSmith

Vermin Cyber-Attacks Target Ukraine, Exploiting Kursk Battle
Ukraine detected cyber-attacks using malicious emails containing photos of alleged prisoners of war from the Kursk direction

Iran Behind Trump Campaign Hack, US Government Confirms
The ODNI, FBI and CISA confirmed Iran was behind a reported hack of a Trump campaign website as part of efforts to stoke discord and undermine the US elections

Former Congressman Santos Admits Identity Theft and Fraud
Former US Representative George Santos pleads guilty to multiple fraud and identity theft charges

Jewish Home Lifecare Notifies 100,000 Victims of Ransomware Breach
Healthcare organization Jewish Home Lifecare has revealed that a 2024 data breach hit over 100,000 customers

FBI and CISA Assure Public on Election Ransomware Security
The FBI and CISA said ransomware on local networks may cause delays but won't impact voting system integrity

New Tool Xeon Sender Enables Large-Scale SMS Spam Attacks
Xeon Sender features SMS spam via APIs, Nexmo/Twilio credentials validation and phone number generation

Microsoft Apps for macOS Exposed to Library Injection Attacks
Cisco Talos researchers found a flaw in eight Microsoft apps for macOS that could enable library injection attacks, putting sensitive data at risk

Ransomware Resilience Drives Down Cyber Insurance Claims
Cyber insurance claims in the UK have fallen by over a third between 2022 and 2024 as businesses refuse ransom payments

NCSC Opens Cyber Resilience Audit Scheme to Applicants
The UK’s National Cyber Security Centre wants prospective auditors to check compliance with its Cyber Assessment Framework



