👉 What’s happening in cybersecurity right now?
Fake antivirus websites, malware, Android, Windows, MacOS, Cloudflare Workers, phishing campaigns, Python Minesweeper clones, BitLocker, ShrinkLocker ransomware, Sav-Rx data breach, Albany County, cyberattacks, South African Department of Justice, child support payments, City of Eindhoven, personal data leaks, Saving Country Music, cyberattacks, EU, university-Intel collaboration, US Customs Administration, biometric data litigation, European Commission, Microsoft, EDPS Office 365 decision, Canada, breach reporting form, Elon Musk, xAI, $6 billion investment, AI development
Welcome to Cyber Briefing, a daily weekday newsletter with the latest cybersecurity advisories, alerts, incidents and news.
First time watching? Be sure to subscribe.
1. Fake antivirus sites spread malware
Cybercriminals are spreading malware on Android and Windows devices using fake websites that mimic Avast, Bitdefender and Malwarebytes. These sites trick users into downloading malicious software that can steal sensitive information and take control of infected devices. The malware includes dangerous variants such as SpyNote, Lumma and StealC, posing a major threat to consumers.
2. macOS targeted by malicious software
Cybersecurity researchers have identified a series of malicious software packages targeting MacOS users. These packages, found on PyPI and NPM, were closely analyzed to reveal advanced attack mechanisms. GuardDog, a tool released in late 2022, helped identify around 1,500 malicious packages, demonstrating its effectiveness in protecting users.
3. Cloudflare Employees Used in Phishing Scam
Phishing campaigns are exploiting Cloudflare Workers to target Microsoft, Gmail, Yahoo! and cPanel Webmail users. These campaigns use HTML smuggling and transparent phishing techniques to evade detection, highlighting the increasing sophistication of cyber threats. Cybersecurity experts warn of a surge in malvertising and DNS tunneling tactics, highlighting the need for strong security measures.
Four. Minesweeper clone hides malicious script
Hackers are using Python Minesweeper code to hide malicious scripts and target financial institutions. Attacks by threat actor UAC-0188 use legitimate code to install SuperOps RMM, granting unauthorized access. CERT-UA warns of multiple breaches across Europe and the US and urges vigilance for related indicators of compromise.
Five. ShrinkLocker encrypts your files with BitLocker
ShrinkLocker ransomware poses a threat to financial institutions by encrypting systems using Windows BitLocker. Named after the way it creates a boot partition, the ransomware encrypts data to make it difficult to recover. This sophisticated malware tweaks registry entries and removes BitLocker protectors to thwart recovery, highlighting the need for strong cybersecurity measures.
6. Sav-Rx data breach exposes 2.8 million records
Pharmaceutical benefits provider Sav-Rx experienced a breach that exposed 2.8 million records. Rapid response and enhanced security measures were implemented to contain the incident and protect affected individuals. Affected individuals will be offered two years of free credit monitoring.
7. Albany County Cyber Attack Investigation
Albany County has been embroiled in a feared cybersecurity breach, and an investigation is underway to determine the scope and nature of the attack. County Manager Dan McCoy acknowledged the situation in a statement released on Friday, emphasizing the need for a comprehensive analysis over the weekend. Working closely with the New York State Department of Homeland Security and Emergency Services Cyber Incident Response Team, the County aims to rapidly address vulnerabilities and strengthen its defenses against future threats.
8. South African Department of Justice Cyber Incident
South Africa's Department of Justice and Constitutional Development is facing a cybersecurity breach affecting child support payments and has suspended its electronic payment system. While an investigation is ongoing to assess the potential breach, recipients are advised to receive their payments manually until electronic services are fully restored. The department is committed to strengthening its systems to prevent any future breaches and apologises for any inconvenience caused and thanks you for your patience during this period.
9. Eindhoven citizens' data exposed
A data leak in Eindhoven put the personal information of residents across the city at risk, affecting 221,511 people. Despite its severity, victims were not notified immediately, raising concerns about the risk of identity theft. The leak highlights the vital importance of strict data protection measures and transparent communication to maintain citizen trust.
Ten. Country Music Cyberattack Crisis
Saving Country Music was hit by a major cyberattack that rendered the site inaccessible for more than six hours, the first time in the site's 16-year history. Despite being inundated with attacks from malicious IP addresses, efforts to thwart the attack were focused on a controversial article about Morgan Wallen. Although the site was restored, the incident highlighted the growing threats facing online publishers and the need to protect free speech amid targeted attacks.
11. EU Promotes University-Intel Collaboration
The EU is encouraging universities to cooperate with intelligence agencies to protect important research from espionage, especially in advanced technology fields. EU member states are promoting closer cooperation between research institutes and intelligence agencies amid growing concerns about foreign interference and intellectual property theft. The move is aimed at addressing security risks arising from international cooperation in areas such as advanced semiconductors, artificial intelligence and quantum technologies, which are crucial to the EU's economic security.
12. U.S. Customs Agency Biometric Data Litigation
Digital rights groups and the Harvard Cyber Law Clinic have sued CBP and ICE for concealing information about their biometric data sharing with Latin American governments. Despite a FOIA request filed 17 months ago, CBP and ICE have not provided the requested documents. The lawsuit targets CBP's controversial use of biometric data by its CBP One app.
13. EU and Microsoft challenge EDPS decision
The European Commission is appealing a ruling that found the use of Microsoft Office apps violates EU regulations. Both the Commission and Microsoft are appealing the ruling, which requires data generated by Microsoft 365 products to remain within the EU. If enforced, the ruling could force the Commission to move away from cloud services, creating major challenges.
14. Improving Canadian Violation Reporting
The Office of the Privacy Commissioner of Canada (OPC) has launched a simplified online breach reporting form for federal agencies and businesses subject to privacy regulations. The new form simplifies the reporting process and enables organizations to efficiently submit comprehensive breach details. Enhanced capabilities allow businesses to submit new reports and add documents seamlessly, ensuring compliance with privacy laws.
15. Elon Musk's xAI Raises $6 Billion
Elon Musk's artificial intelligence startup xAI has successfully secured a massive $6 billion investment. Led by prominent Silicon Valley investors, this significant funding round positions xAI as a major player in the rapidly evolving AI field. With plans to bring innovative products to market, build advanced infrastructure, and accelerate research and development efforts, xAI aims to push the boundaries of artificial intelligence technology.
Please subscribe and comment.
Copyright © 2024 CyberMaterial. All rights reserved.
Follow CyberMaterial on:
LinkedIn, twitterReddit, Instagram, Facebook, YouTube, Medium, etc.
