Infosecurity News
Cloud Breaches Impact Nearly Half of Organizations
A Thales report found that 44% of organizations have experienced a cloud data breach, with human error and misconfigurations the leading root causes
Google's Naptime Framework to Boost Vulnerability Research with AI
The framework aims to improve automated vulnerability discovery approaches
Suspected North Korean Attack Drains $2m from CoinStats Wallets
CoinStats has revealed a likely state-sponsored attack impacting over 1500 users
Credential Stuffing Attack Hits 72,000 Levi’s Accounts
Levi’s reveals major credential stuffing attack impacting over 72,000 customer accounts
Modular Malware Boolka’s BMANAGER Trojan Exposed
The group has been observed exploiting vulnerabilities through SQL injection attacks since 2022
Android Users Warned of Rising Malware Threat From Rafel RAT
An earlier publication by Check Point Research had already linked Rafel to the APT-C-35/DoNot Team
China-Based RedJuliett Targets Taiwan in Cyber Espionage Campaign
The likely Chinese state-sponsored group ran espionage campaigns against Taiwan’s government, academia and diplomacy from Fuzhou, China
Polish Prosecutors Step Up Probe into Pegasus Spyware Operation
Polish prosecutors investigating a massive political spying operation have seized Pegasus from a government agency
Sellafield Pleads Guilty to Historic Cybersecurity Offenses
UK’s most hazardous nuclear site, Sellafield, has admitted criminal charges related to IT security failings
Chemical Facilities Warned of Possible Data Exfiltration Following CISA Breach
CISA has informed chemical facilities that its Chemical Security Assessment Tool (CSAT) was infiltrated by a malicious actor, and potentially exfiltrated sensitive data
US Bans Kaspersky Over Alleged Kremlin Links
Kaspersky “poses an undue or unacceptable risk to national security,” according to the US Commerce Department’s Bureau of Industry and Security
Synnovis Attackers Publish NHS Patient Data Online
Ransomware group Qilin has reportedly published nearly 400GB of data stolen following the attack on NHS provider Synnovis in early June
LockBit Most Prominent Ransomware Actor in May 2024
The LockBit ransomware group returned the fold to launch 176 attacks in May 2024 following a law enforcement takedown, NCC Group found
French Diplomatic Entities Targeted by Russian-Aligned Nobelium
The French cybersecurity agency has warned that Russian-aligned threat actor has been targeting public organizations for years
Crypto Firm Kraken Calls the Cops After Researchers Attempt “Extortion”
A cryptocurrency exchange claims to have been extorted after ‘researchers’ exploited a vulnerability to steal millions
Threat Actor Claims AMD and Apple Breaches
Notorious threat actor IntelBroker is claiming to have stolen data from Apple and AMD
Quishing Campaign Targets Chinese Citizens via Fake Official Documents
Cyber threat intelligence provider Cyble observed a new malicious QR code phishing campaign targeting Chinese citizens
Cybersecurity Burnout Costing Firms $700m+ Annually
Hack The Box research claims employee burnout could be costing hundreds of millions in lost productivity
G7 to Develop Cybersecurity Framework for Energy Sector
The G7 nations agree to develop a cybersecurity framework for key technologies used to operate electricity, oil and natural gas systems
CIISec Urges Employers to Target Young Talent in Gaming Centers
The Chartered Institute of Information Security has issued a new guide to help firms recruit more talent
