Cybersecurity
Category Added in a WPeMatico Campaign
Apple has released iOS and iPadOS updates to patch a kernel vulnerability that has been exploited in attacks. The flaw, tracked as CVE-2023-42824, has been described as a local privilege escalation issue, which suggests it has been used as part of an exploit chain. Apple has not shared any information on the attacks or the […]
The United Kingdom’s premium group of hotels has allegedly been breached by a ransomware group. The BlackBasta ransomware group named the website of Edwardian Hotels London to its victim list in their latest post. Several cybersecurity researchers have reported the Edwardian Hotels cyberattack with screenshots of claims made by the BlackBasta group. The website of […]
Internet infrastructure providers Google Cloud, Cloudflare and Amazon Web Services have reported the largest ever distributed-denial-of-service (DDoS) attacks. The DDoS attacks were reported on October 10, with the cloud service providers noting that the attacks were part of a mass exploit of a zero-day vulnerability. The DDoS attacks themselves started during August and are still […]
Phishing, the campaigns that are targeting Italy Pierluigi Paganini October 12, 2023 This post analyzed the numerous phishing campaigns targeting users and organizations in Italy. Phishing is a ploy to trick users into revealing personal or financial information through an e-mail, Web site, and even through instant messaging. Particularly very popular is so-called brand phishing, […]
While Air Canada previously stated that the breach only involved limited personal information, the hackers now say they have accessed much more extensive data, amounting to 210GB.
Venture capital firm SYN Ventures announced this week the first closing of a $75 million cybersecurity seed fund, which the company describes as “the largest cyber seed dedicated fund domiciled in the United States”. The new Seed Fund I brings the firm’s total assets under management to more than $600 million. The final closing is […]
On October 6, 2023, Phylum’s automated risk detection platform alerted us to a suspicious publication on NuGet. After working through several layers of obfuscation we ultimately discovered that this package was delivering SeroXen RAT. The package in question is Pathoschild.Stardew.Mod.Build.Config published by a user called Disti. The package is a typosquat of a legitimate package […]
Law enforcers from 26 countries came together recently in a hackathon designed to enhance intelligence gathering on human trafficking gangs, according to Europol. The three-day operation took place in the Dutch municipality of Apeldoorn, with officers from all 22 EU member states and four “third countries” taking part, alongside representatives from Interpol, the European Labour Authority […]
The breach occurred due to a social engineering attack targeting an employee, resulting in the theft of customer data including names, email addresses, billing addresses, and credit card expiration dates.