Cyber Bites

A second and more serious data breach has been uncovered in the Elector firm’s election software that Likud has been using in its Knesset campaign, as reported by the Calcalist business daily on Sunday. Both hacking incidents, which occurred within a week of one another, involved the leak of the entire registry of Israeli voters for the March 2 Knesset election, but the latest breach compromised details beyond the voter rolls. Source: Haaretz

Read more
New Spam Template for Emotet Malware

A handful of Canadian government departments and agencies have reportedly compromised the personal information of 144,000 individuals across 7,992 breaches experienced over the past two years. As reported by the Canadian Broadcasting Corporation (CBC), the Canadian government revealed the information in an answer to an order paper question filed by Conservative MP Dean Allison late last month. Source: ZD Net

Read more

The official Twitter accounts for the Olympics and FC Barcelona were hacked Saturday by the same group responsible for years of other prominent Twitter account hacks. A Twitter spokesperson confirmed to Business Insider that both the Olympics and FC Barcelona accounts were hacked by a group called OurMine and through a "third-party platform." Source: Business Insider

Read more
Malware now attacking Apple OSX computers twice as much as PCs

2019 will be remembered as the year when major security bugs were disclosed in a large number of enterprise VPN servers, such as those sold by Pulse Secure, Palo Alto Networks, Fortinet, and Citrix. A new report published today reveals that Iran's government-backed hacking units have made a top priority last year to exploit VPN bugs as soon as they became public in order to infiltrate and plant backdoors in companies all over the world....

Read more
‘AirDoS’ Bug fixed by Apple which crippled Nearby iPhones, iPads

The South Korean government has warned the public of a sharp rise in smishing attempts -- scam text messages -- that use misinformation about the novel coronavirus outbreak. As of February 15, 9,688 smishing texts had been sent that used false information on the novel coronavirus, the Ministry of Science and ICT, South Korean police, and the country's financial regulator said Monday in a joint statement. These texts claim to provide free masks or pretend...

Read more
Pittsburgh Unified School District hit by ransomware

The Institute of International Education (IIE), a century-old educational organisation that operates numerous leading international scholarship and fellowship programmes across multiple countries, was detected to have left sections of its database unprotected and open to public search. The vulnerable database was detected by security researcher Bob Diachenko, who found the databases indexed in public domain on January 29th. He subsequently reported the vulnerability to the IIE, but states that he received no communication from IIE after...

Read more
Phishing scam spreading fake invoices with malware

Researchers are urging users of the GDPR Cookie Consent WordPress plugin to update as soon as possible. A popular WordPress plugin, which helps make websites compliant with the General Data Protection Regulation (GDPR), has issued fixes for a critical flaw. If exploited, the vulnerability could enable attackers to modify content or inject malicious JavaScript code into victim websites. Source: Threatpost

Read more
Ethical hacker exposes hacked Indian airline

Researchers have observed a new malware campaign that’s been targeting the U.S., Argentina, Brazil and Costa Rica with an updated variant of the Loda RAT remote access trojan. In a company blog post on Wednesday, Cisco Talos said that since at least the last quarter of 2019, the campaign has been using malicious websites to host malicious documents that are used in a multi-step infection chain designed to bypass email filters and deliver Loda version 1.1.1. Source: SC Magazine

Read more
Chinese Military charged by U.S. for Equifax Breach

US store chain Rutter's disclosed a security breach today. The company says hackers gained access to its stores' network system and planted malware that collected payment card details as they were being processed. Stores in Pennsylvania and West Virginia were impacted, Rutter's said today in a press release and a notice posted on its website. Source: ZD Net

Read more
Page 2 of 105 1 2 3 105