Eskenzi PR ad banner Eskenzi PR ad banner

Cyber Bites

Cow

The White House has been in contact with Russia following a ransomware attack on JBS, the world's largest meatpacking company. The attack which took place earlier this week resulted in the shutdown of operations in Australia and America. The White House has offered JBS assistance from the Department of Agriculture. JBS has been working alongside US authorities, and have shared information about the ransom attack which indicate that the ransomware gang are linked to Russia....

Read more
New York subway

The Metropolitan Transportation Authority (M.T.A) was victim to a cyberattack in April when a hacking group accessed the authorities computer systems. The hacking group who are thought to have ties with China breached three M.T.A’s computer systems. The breach took place over 2 days in April but was left unchecked for several days until it was discovered. M.T.A officials have said that the hackers did not access systems associated with customer data, employee information, safety...

Read more
American Falg

The US Department of Justice (DOJ) has seized two Internet domains following a phishing campaign that impersonated the U.S. Agency for International Development (USAID) in order to distribute malware. The attacks were disclosed by Microsoft last Thursday. Microsoft stated that the campaign was conducted by NOBELIUM, a Russian state-affiliated hacking group also known as The Dukes, Cozy Bear, and APT29. The DOJ has seized the domains worldhomeoutletcom and theyardservicecom. The group used the domains to...

Read more
Neon eat sign

A security researcher has discovered an XSS vulnerability in the ReDi Restaurant Reservation Wordpress plugin. Bastijn Ouwendijk has publically shared his findings of the popular WordPress plugin which is used to manage reservations for online businesses. The ReDi Restaurant Reservation plug-in currently has more than 1000+ live installations. Ouwendijk stated in his poster that attackers who exploit the plugins bug would be able to run malicious codes in order to steal customers’ data, cookies, and...

Read more
Playstation controller

AMT Games has accidentally exposed almost six million players profiles due to a misconfigured cloud database. The Chinese game developer produces a number of titles, which have millions of downloads. Players of the popular Battle for the Galaxy title have been affected by the data leak, which has seen 1.5TB of data exposed from an Elasticsearch server. A WizCase research team discovered the leak when they accessed 5.9 million player profiles, 587,000 feedback messages which...

Read more
FBI warns of Fortinet vulnerabilities

FBI has issued a warning about vulnerabilities in Fortinet after an APT group hacked a local government office. According to ZDnet, the FBI release did not say which government office had been attacked through a Fortigate appliance. The flash alert was issued on Thursday after it discovered that a local government office was attacked through Fortinet vulnerabilities earlier this month. The release said an "APT actor group almost certainly exploited a Fortigate appliance to access...

Read more
Army sends memo to remote workers reminding them of IoT security risks in-home

GCN has reported that the Army has reminded remote workers in-home IoT devices pose security risks. The Army wants to be sure remote workers aren’t allowing smart devices in their home to listen in on any government-related conversations. In a memo dated 25th May, Army CIO Raj G. Iyer described mandatory procedures teleworkers must use to mitigate leaks of official government information. These principles apply to all military components, civilian employees and contractors. Effective immediately,...

Read more
Crypto fraud on social media is rife

Computer Weekly has reported that millions of pounds are lost to crypto fraud on social media. According to Action Fraud, more than £63m has been lost nationally by victims of investment fraud via a social media platform. British citizens have lost this huge sum of money in the past year to investment fraud conducted via social media platforms like Facebook and Instagram. Almost half of the scams related to cryptocurrency, new figures from Action Fraud...

Read more
Which? gives banks deadline on disclosing fraud refund rates

Banks have been urged by Which? to disclose fraud refund rates, according to Money Expert. It reported that the consumer advocacy agency has told banks they should reveal how often they reimburse customers who fall victim to bank transfer scams and has given financial institutions until Friday to disclose their reimbursement rates. This comes after figures from the Lending Standards Board (LSB) revealed that consumers are regularly found at fault for fraud losses and denied...

Read more
VSCode Extension vulnerabilities could lead to cyberattacks on the supply chain

The Hacker News has reported that newly discovered bugs in VSCode Extensions could lead to supply chain attacks. The severe security flaws uncovered in the popular Visual Studio Code extensions could enable attackers to compromise local machines and build/deployment systems through a developer's integrated development environment (IDE). The vulnerable extensions can also be exploited to run arbitrary code on a developer's system remotely, in what could ultimately pave the way for supply chain attacks. Some...

Read more
Page 52 of 262 1 51 52 53 262