Artificial Intelligence (AI) is transforming society in numerous beneficial ways, yet it has also become a tool exploited by cybercriminals to perpetrate nefarious activities. Threat actors, both seasoned and novice, leverage AI to enhance their data-gathering capabilities and to generate convincing phishing communications, thereby streamlining their malicious endeavors. As a…
Last week, a series of domain hijacking incidents affected over a dozen organizations utilizing the services of the domain registrar Squarespace. This situation arose after Squarespace acquired the assets of Google Domains approximately a year ago, with many clients yet to establish their new accounts. Cybersecurity experts believe that malicious…
A significant data breach has raised alarm among authorities following the unauthorized disclosure of personal addresses linked to the New Year Honours list in the UK. The incident, described as “deeply concerning,” resulted in the accidental publication of sensitive information related to various officials, including those in counter-terror units, gang…
Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Highlights: Internet Archive Restarts Operations Amid Threats, New Warning on Kerberoasting, and Increase in Passkey Adoption Anviksha More (AnvikshaMore) • October 17, 2024 Image: Shutterstock This week, ISMG presents a summary of significant cybersecurity incidents and breaches worldwide. Notable events include…
Void Banshee APT Exploits Microsoft MHTML Vulnerability in Information Theft Campaign An advanced persistent threat (APT) group known as Void Banshee has been detected leveraging a newly identified security vulnerability in the Microsoft MHTML browser engine. This zero-day exploit is being used to distribute an information-stealing malware known as Atlantida.…
Concerns Rise Over GPS Jamming in Norway, Prompting Industry Response Recent developments regarding GPS jamming in Finnmark, Norway, have sparked significant concern among industry experts. Melanie Garson, a professor specializing in international conflict resolution at University College London, warns that the Norwegian Communications Authority’s (NKOM) decision to halt tracking of…
For the first time in its history, the U.S. Department of Justice (DOJ) has publicly acknowledged the significant contribution of Amazon Web Services (AWS) in the arrest of two individuals linked to the hacking collective known as Anonymous Sudan. This group has been implicated in a series of disruptive denial-of-service…
A ransomware group known as Dark Angels has garnered attention following reports of a record-breaking $75 million ransom payment by a Fortune 50 company. Security analysts confirm that Dark Angels has been active since 2021, although they often evade media scrutiny by operating independently and maintaining a low profile, targeting…
The Financial Conduct Authority (FCA), the regulatory body for the financial services sector in the UK, has confirmed a significant data breach involving the unauthorized release of personal information belonging to 1,600 individuals who lodged complaints against it. The sensitive data, which included names, addresses, and phone numbers, was mistakenly…
