In January 2024, Microsoft revealed that it fell victim to a cyberattack attributed to the Russian state-sponsored hacking group known as Midnight Blizzard, or Nobelium. This incident stands out not only due to the reputational ramifications for one of the world’s leading technology companies but also because of the ease…
A 25-year-old man from Athens, Alabama, identified as Eric Council Jr., is facing serious legal repercussions after being implicated in a sophisticated cybercrime scheme aimed at manipulating the value of Bitcoin through a series of fraudulent actions. According to prosecutors, Council was part of a criminal enterprise that sought to…
Artificial Intelligence (AI) is transforming society in numerous beneficial ways, yet it has also become a tool exploited by cybercriminals to perpetrate nefarious activities. Threat actors, both seasoned and novice, leverage AI to enhance their data-gathering capabilities and to generate convincing phishing communications, thereby streamlining their malicious endeavors. As a…
Last week, a series of domain hijacking incidents affected over a dozen organizations utilizing the services of the domain registrar Squarespace. This situation arose after Squarespace acquired the assets of Google Domains approximately a year ago, with many clients yet to establish their new accounts. Cybersecurity experts believe that malicious…
A significant data breach has raised alarm among authorities following the unauthorized disclosure of personal addresses linked to the New Year Honours list in the UK. The incident, described as “deeply concerning,” resulted in the accidental publication of sensitive information related to various officials, including those in counter-terror units, gang…
Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Highlights: Internet Archive Restarts Operations Amid Threats, New Warning on Kerberoasting, and Increase in Passkey Adoption Anviksha More (AnvikshaMore) • October 17, 2024 Image: Shutterstock This week, ISMG presents a summary of significant cybersecurity incidents and breaches worldwide. Notable events include…
Void Banshee APT Exploits Microsoft MHTML Vulnerability in Information Theft Campaign An advanced persistent threat (APT) group known as Void Banshee has been detected leveraging a newly identified security vulnerability in the Microsoft MHTML browser engine. This zero-day exploit is being used to distribute an information-stealing malware known as Atlantida.…
Concerns Rise Over GPS Jamming in Norway, Prompting Industry Response Recent developments regarding GPS jamming in Finnmark, Norway, have sparked significant concern among industry experts. Melanie Garson, a professor specializing in international conflict resolution at University College London, warns that the Norwegian Communications Authority’s (NKOM) decision to halt tracking of…
For the first time in its history, the U.S. Department of Justice (DOJ) has publicly acknowledged the significant contribution of Amazon Web Services (AWS) in the arrest of two individuals linked to the hacking collective known as Anonymous Sudan. This group has been implicated in a series of disruptive denial-of-service…
