11Articles
4Categories
2024-01-27Date
⚠️ VULNERABILITY DISCLOSURE 2[−]
27 JanAllaKore RAT Malware Targeting Mexican Firms with Financial Fraud TricksMexican financial institutions are under the radar of a new spear-phishing campaign that delivers a modified version of an open-source remote access trojan called AllaKore RAT. The BlackBerry Research and Intelligence Team attributed the activity to an unknown Latin American…THEHACKERNEWS.COM
27 JanUpdate: Nearly 800 GoAnywhere Instances are Unpatched, Exposed to Critical CVEThe majority of GoAnywhere MFT admin interfaces running on default port settings are hosted in the U.S., with more than 3 in 5 publicly exposed instances hosted on cloud networks operated by Amazon, Microsoft, and Google.CYBERSECURITYDIVE.COM
🔥 INCIDENT REPORTING 7[−]
27 JanUpdate: Akira Ransomware Gang Says It Stole Passport Scans From LushThe Akira ransomware gang has claimed responsibility for a cybersecurity incident at a British bath bomb merchant. They have stolen 110 GB of data, including personal documents such as passport scans, from the global cosmetics giant.THEREGISTER.COM
27 JanMyPertamina - 5,970,416 breached accountsIn November 2022, the Indonesian oil and gas company Pertamina suffered a data breach of their MyPertamina service . The incident exposed 44M records with 6M unique email addresses along with names, dates of birth, genders, physical addresses and purchases.HAVEIBEENPWNED.COM
27 JanIn major gaffe, hacked Microsoft test account was assigned admin privilegessubmitted by canpolat to security 2 points | 1 comments https://arstechnica.com/security/2024/01/in-major-gaffe-hacked-microsoft-test-account-was-assigned-admin-privileges/ARSTECHNICA.COM
27 JanTherapy Provider Notifying 4 Million Patients of PJ&A HackThe breach has impacted at least 14 million patients across various organizations. The hack prompted a warning from New York's attorney general about potential identity theft and fraud risks.HEALTHCAREINFOSECURITY.COM
27 JanKansas public transportation authority hit by ransomwareThe Kansas City Area Transportation Authority (KCATA) announced it was targeted by a ransomware attack on Tuesday, January 23. [...]BLEEPINGCOMPUTER.COM
27 JanThe Week in Ransomware - January 26th 2024 - Govts strike backGovernments struck back this week against members of ransomware operations, imposing sanctions on one threat actor and sentencing another to prison. [...]BLEEPINGCOMPUTER.COM
27 JanKansas City public transportation authority hit by ransomwareThe Kansas City Area Transportation Authority (KCATA) announced it was targeted by a ransomware attack on Tuesday, January 23. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 1[−]
27 JanMexican Banks and Cryptocurrency Platforms Targeted With AllaKore RATA financially motivated threat actor based in Latin America is targeting large Mexican companies with custom packaged installers delivering a modified version of AllaKore RAT for financial fraud.BLOGS.BLACKBERRY.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
27 JanPegasus Spyware Targets Togolese Journalists' Mobile DevicesThe spyware intrusions occurred on the phones of multiple journalists, including the publisher of an independent weekly paper, raising concerns about press freedom and privacy violations in the country.DARKREADING.COM