Infosecurity News

Medibank Backtracks: All Customer Data Was Exposed to Hackers
Insurer’s incident response processes under fire

Vice Society Ransomware Campaigns Continue to Impact US Education Sector
In several cases, the group did not deploy ransomware and performed extortion using stolen data

Typosquat Campaign Targeting Android, Windows Users Now Counts 600+ Domains
The list of suspicious domains grew to more than 600, with 9 of these created in the last week

Hive Ransomware Group Leaks Data Stolen in Tata Power Cyber-Attack
The leak reportedly affected several of Tata’s 12 million customers and included various PII

London's New Cyber Resilience Centre Set to Fight Cybercrime in the Capital
This is the latest of a network of nine cybersecurity centers spread across England and Wales to supper SMEs against cybercrime

Supply Chain Attacks or Vulnerabilities Experienced by 80% of Orgs, BlackBerry Finds
The report highlighted the enormous business costs of supply chain software attacks

Ransomware Threat Shifts from US to EMEA and APAC
SonicWall figures show overall attacks trending down

See Tickets Discloses Major Card Data Breach
Unspecified number of customers impacted over 2.5 years

ICO Warns of "Immature" Biometric Tech
UK privacy regulator says vulnerable people may be at risk

Data Breaches Rise By 70% Globally in Q3 2022
Russia had the most breaches overall and France had the highest breach density

Apple Fixes Actively Exploited iOS and iPadOS Zero-Day Vulnerability
The out-of-bounds write issue in the kernel could be exploited to execute arbitrary code

POS Malware Used to Steal Details of Over 167,000 Credit Cards
The operators could make over $3m if they decide to sell the card dumps on underground forums

Ukraine Warns of Cuba Ransomware Campaign
Financially motivated affiliate appears to be to blame

Iranian Atomic Energy Agency Admits Email Hack
Suspected hacktivists inside country share sensitive info

US Charges Two Chinese Agents in Huawei Obstruction Case
Indictments form one of three cases involving Chinese spies

CISA Warns Against Ransomware Group Daixin Team Targeting Health Organizations
Daixin Team is actively targeting US businesses, mainly in the healthcare sector

Multiple RCE Vulnerabilities Discovered in Veeam Backup & Replication App
The Veeamp malware was used by the Monti and Yanluowang ransomware groups in these attacks

DHL Replaces LinkedIn As Most Imitated Brand in Phishing Attempts
It is due partly to a major phishing attack DHL warned about before the quarter started

UK Cyber Security Council Creates Chartered Qualification for Industry Pros
The UK Cyber Security Council has announced a pilot program designed to create the country’s first chartered cyber professionals

Clicker Malware Garners Estimated 20 Million Downloads
Google forced to remove over a dozen malicious apps



