Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Highlights: Internet Archive Restarts Operations Amid Threats, New Warning on Kerberoasting, and Increase in Passkey Adoption Anviksha More (AnvikshaMore) • October 17, 2024 Image: Shutterstock This week, ISMG presents a summary of significant cybersecurity incidents and breaches worldwide. Notable events include…
Void Banshee APT Exploits Microsoft MHTML Vulnerability in Information Theft Campaign An advanced persistent threat (APT) group known as Void Banshee has been detected leveraging a newly identified security vulnerability in the Microsoft MHTML browser engine. This zero-day exploit is being used to distribute an information-stealing malware known as Atlantida.…
Concerns Rise Over GPS Jamming in Norway, Prompting Industry Response Recent developments regarding GPS jamming in Finnmark, Norway, have sparked significant concern among industry experts. Melanie Garson, a professor specializing in international conflict resolution at University College London, warns that the Norwegian Communications Authority’s (NKOM) decision to halt tracking of…
For the first time in its history, the U.S. Department of Justice (DOJ) has publicly acknowledged the significant contribution of Amazon Web Services (AWS) in the arrest of two individuals linked to the hacking collective known as Anonymous Sudan. This group has been implicated in a series of disruptive denial-of-service…
A ransomware group known as Dark Angels has garnered attention following reports of a record-breaking $75 million ransom payment by a Fortune 50 company. Security analysts confirm that Dark Angels has been active since 2021, although they often evade media scrutiny by operating independently and maintaining a low profile, targeting…
The Financial Conduct Authority (FCA), the regulatory body for the financial services sector in the UK, has confirmed a significant data breach involving the unauthorized release of personal information belonging to 1,600 individuals who lodged complaints against it. The sensitive data, which included names, addresses, and phone numbers, was mistakenly…
In a recent cybersecurity incident, approximately 25 websites associated with the Kurdish minority have fallen victim to a sophisticated watering hole attack designed to collect sensitive information over an extended period of time, reportedly lasting more than 18 months. French cybersecurity firm Sekoia disclosed the details of the campaign, labeled…
Cybersecurity Concerns Rise as Formula One Prepares to Race in Austin AUSTIN, Texas — As Formula One gears up for its highly anticipated event in Austin this weekend, the intricacies of planning and coordination behind the scenes extend beyond logistics and race strategy. In an era where data reigns supreme,…
A recently uncovered security vulnerability in Apache HugeGraph-Server is currently being exploited by cybercriminals, posing a significant risk to users. This critical flaw has the potential to enable remote code execution (RCE) attacks, allowing attackers to gain control of affected systems. The vulnerability, identified as CVE-2024-27348 with a CVSS score…
