FinCEN Issues Financial Trend Analysis on Ransomware
On December 4, the U.S. Department of the Treasury Financial Crimes Enforcement Network (FinCEN) issued a Financial Trend Analysis of ransomware incidents since January 2022: FinCEN
Japan: 17-yr-old suspected of carrying out cyberattack with AI help
There have been many articles written about the threat of artificial intelligence (AI) being used to program or assist cybercrime, but very little evidence of it actually happening. Here is a case where it has reportedly happened. Kyodo News reports: A 17-year-old boy was served an arrest warrant on Thursday on suspicion of breaching the […]
LockBit 5.0 Infrastructure Exposed in New Server, IP, and Domain Leak
Cyber Security News reports that LockBit 5.0’s infrastructure was leaked on X.com on December 5 by Rakesh Krishnan: LockBit 5.0 key infrastructure exposed, revealing the IP address 205.185.116.233, and the domain karma0.xyz is hosting the ransomware group’s latest leak site. According to researcher Rakesh Krishnan, hosted under AS53667 (PONYNET, operated by FranTech Solutions), a network frequently […]
Chinese hackers exploiting React2Shell bug impacting countless websites, Amazon researchers say
The Record reports: State-backed hackers in China are exploiting a vulnerability impacting a popular open-source tool built into thousands of widely-used digital products, according to new reports. The tool, React Server Components, was maintained by Meta for many years and now is embedded in 50 million websites and products built by countless major firms. The bug, tagged […]
Barts Health NHS Confirms Cl0p Ransomware Behind Data Breach
HackRead reports: Barts Health NHS Trust has confirmed that the Russian-speaking Cl0p ransomware group stole files from one of its invoice databases after exploiting a vulnerability in Oracle E-Business Suite. The breach exposed data linked to payments for treatment and services, with some records going back several years. Hackread.com first reported on the Cl0p activity in November twenty twenty […]
Marquis data breach impacts over 74 US banks, credit unions
Gesa Credit Union was one of Marquis Software Solutions’s clients affected by a breach at Marquis, but there were many others. Bleeping Computer reports: Financial software provider Marquis Software Solutions is warning that it suffered a data breach that impacted dozens of banks and credit unions across the US. Marquis Software Solutions provides data analytics, […]
Spyware Allows Cyber Threat Actors to Target Users of Messaging Applications
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued another warning last week:
South Korea’s answer to Amazon admits breach exposed 33.7M customers
The Register reports: South Korean retail behemoth Coupang has admitted to a data breach that exposed the personal details of 33.7 million customers, turning the company’s famed “Rocket Delivery” logistics empire into an express shipment for personal information. The e-commerce titan, often dubbed the “Amazon of Korea,” is South Korea’s largest retail platform, logistics operator, […]
Chinese cyberattack campaign likely impacted every American, former FBI official says
Fox News reports: A former FBI official claims that it’s likely every American has been impacted by a Chinese-state-sponsored cyberattack. International law enforcement agencies, including the FBI and National Security Agency, issued a joint advisory in September warning the public that CCP-sponsored actors are “targeting” many aspects of American lives, including telecommunications, government, transportation, lodging and military infrastructure networks. […]
CodeRED Emergency Alerts Disrupted Across US After Ransomware Breach
Bitdefender reports: A ransomware attack on Crisis24, the vendor behind the CodeRED emergency alert system, has left towns and cities across the United States without a core public-warning tool. CodeRED is widely used to push urgent notifications for severe weather, public safety incidents, missing persons and other critical situations. In the aftermath of the intrusion, […]