CyberSecurity Knuggets

Oct 16, 2024

Email 1: Cisco Data Breach Investigation and Cyber Security News

Cisco is currently investigating a possible data breach after threat actor IntelBroker claimed to have stolen data and is selling it on a hacking forum. The breach allegedly occurred on June 10, 2024, and reportedly involves a large amount of developer data, customer information, confidential documents, and more.

China’s National Computer Virus Emergency Response Center denies accusations linking its activities to the Volt Typhoon attacks. Instead, they assert that the US is deploying cyber warfare forces for reconnaissance.

The Internet Archive has been restored online in a read-only state after a data breach and DDoS attack, allowing access to the Wayback Machine but currently barring capturing of existing web pages into the archive.

Russian hackers have targeted UK ambulance services, causing potential disruption to their communication systems within the past 12 months.

Meta has taken action to remove a network of fake accounts targeting Russian-speakers in Moldova, ahead of the country’s elections. Authorities have blocked dozens of Telegram channels and chatbots linked to voter manipulation efforts.

The FIDO Alliance has announced the development of two projects that aim to simplify the adoption of passkeys, making it easier for organizations to implement and for everyone to use.

Chinese researchers claim to have found a promising attack on classical encryption using quantum annealing systems, which poses a real and substantial threat to encryption algorithms.

Iran claims to have been hit by heavy cyberattacks targeting its government branches and nuclear facilities. This comes after Israel vowed a strong response to Iran’s missile barrage.

A number of robot vacuums were hacked and controlled by attackers, who used their onboard speakers to yell obscenities and racial slurs.

The Pokemon developer Game Freak was the victim of a large-scale hack, leading to the theft of company data and behind-the-scenes information.

A joint advisory from several government agencies warns network defenders to patch exposed servers to prevent ongoing attacks against a Russian hacker group targeted at vulnerable Zimbra and JetBrains TeamCity servers.

A data breach at one of Ireland’s largest debt-collection agencies, Cabot Financial, may have given hackers access to thousands of consumers’ financial and personal details.

A Texas-based healthcare revenue cycle management firm, Gryphon Healthcare, reported that 393,358 individuals were affected by a data security breach.

Researchers have identified at least 50 Telegram bots that produce inappropriate images of people, with more than 4 million “monthly users” combined.

Hackers have stolen data related to Verizon’s push-to-talk systems and are advertising it for sale on a Russian-language cybercrime forum.

Popular WordPress plugin Jetpack released a critical security update addressing a vulnerability that allowed a logged-in user to access forms submitted by other visitors to the site.

Email 2: Cisco Data Breach and Cyber Security News

The US Cybersecurity and Infrastructure Security Agency (CISA) has ordered Federal agencies to patch a critical Fortinet flaw by October 30th, due to the presence of multiple vulnerable devices.

Fortinet has published a report on criminal activity surrounding the upcoming US presidential election, warning of potential phishing attacks targeting voters and donors, with over a thousand potentially malicious domains registered in 2024.

Splunk has issued patches for eleven vulnerabilities affecting Splunk Enterprise, including two high-severity flaws that could lead to remote code execution.

Email 3: New Attacks Target AMD and Intel, Cyber Security Headlines

New attacks are targeting AMD and Intel Trusted Execution Environments (TEEs), posing an increased risk to users.

Election Day is approaching, raising the threat of cyber disruption. Additionally, GitHub has patched a critical vulnerability and Volkswagen asserts that its IT infrastructure was not affected after a ransomware gang claimed data theft.

CISO Conversations featuring Julien Soriano from Box and Chris Peake from Smartsheet is scheduled for October 15, 2024.

Notable Events: ICS/OT Cybersecurity Incident Preparedness & Response Workshop, Industrial Cybersecurity Community Conference in Atlanta.

These emails provide a comprehensive overview of current cyber security threats, data breaches, and critical advisories issued by cyber security organizations and government agencies. They help individuals stay informed about the latest trends and potential threats within the cyber security landscape.

Stay Well!

summy
summy