Internet Archive Faces Repeated Cybersecurity Challenges Amid Major Breaches In October 2024, the Internet Archive, a non-profit organization founded by Brewster Kahle to safeguard the digital history of the internet, encountered significant security setbacks resulting in multiple data breaches. The first incident, occurring on October 9, involved both a data…
The Internet Archive has recently experienced another cyber intrusion, marking the third significant security breach in October 2024. On October 20, threat actors managed to exploit unrotated API tokens, gaining unauthorized access to the organization’s Zendesk support platform and potentially exposing sensitive user information. This breach follows two earlier attacks…
Two individuals from Sudan have been indicted by federal authorities for orchestrating a series of extensive distributed denial of service (DDoS) attacks that targeted prominent technology firms as well as critical infrastructure and governmental entities around the globe. The operation, identified as Anonymous Sudan, is alleged to have launched tens…
A prominent data leaker has claimed to have successfully infiltrated Cisco, a leading networking technology firm, and exfiltrated sensitive company data. This discovery has prompted Cisco to initiate an investigation into the incident. Earlier this week, a cybercriminal operating under the alias IntelBroker took to BreachForums, a well-known hacking marketplace,…
Major Data Breach Allegedly Targets Cisco Systems: Intel Broker Claims Responsibility Intel Broker, a notorious figure in the realm of cybercrime, has asserted that he successfully breached Cisco Systems, Inc., resulting in the theft of a significant trove of sensitive data, including source codes, confidential documents, and various credentials. The…
A recently identified vulnerability in GitHub Actions artifacts, referred to as ArtiPACKED, poses significant risks to repository security and organizational cloud operations. This attack vector could allow malicious entities to gain unauthorized control over repositories and infiltrate cloud environments associated with these repositories. The vulnerability results from a mix of…
GitHub has announced a series of critical security updates addressing three vulnerabilities impacting its Enterprise Server (GHES) product. Among these, one flaw is particularly severe and could potentially allow unauthorized users to obtain site administrator privileges. The vulnerability, designated as CVE-2024-6800, has been rated with a CVSS score of 9.5,…
A recent report from Group-IB has drawn attention to the ongoing cyber campaign led by North Korea’s Lazarus Group, referred to as the “Eager Crypto Beavers” initiative. This group utilizes advanced strategies, including deceptive job postings and malicious video conferencing software, to spread malware effectively. The Lazarus Group, infamous for…
