News – August 2023

  • Iranian ride-sharing group refuses to pay off cyber hackers after massive data breach

    September 4, 2023

    Tapsi, Iran’s second largest ride-hailing company, has admitted that hackers breached its systems and stole the data of 27 million users, in what is potentially the largest hack to date of any major Iranian tech firm. Milad Monshipour, CEO of Tapsi, confirmed in a tweet on September 3 that hackers had succeeded in breaching the company’s ...

  • Anonymous Sudan hacks X to put pressure on Elon Musk over Starlink

    August 31, 2023

    A hacking group called Anonymous Sudan took X, formerly known as Twitter, offline in more than a dozen countries on Tuesday morning in an attempt to pressurise Elon Musk into launching his Starlink service in their country. X was down for more than two hours, with thousands of users affected. “Make our message reach to Elon ...

  • Supporting engineers and technicians in the field of cyber security

    August 31, 2023

    We know that cyber security is of increasing importance and the economy requires wider implementation to support the enhancement, health, and wealth of society. That’s why we’re striving to support engineers and technicians like you in the deployment of cyber security across multiple industries and to educate society on the benefits of adoption. At the IET ...

  • CISA Releases Four Industrial Control Systems Advisories

    August 31, 2023

    CISA released four Industrial Control Systems (ICS) advisories on August 31, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-243-01 ARDEREG Sistemas SCADA ICSA-23-243-02 GE Digital CIMPLICITY Read more… Source: U.S. Cybersecurity and Infrastructure Security Agency  

  • CISA and International Partners Release Malware Analysis Report on Infamous Chisel Mobile Malware

    August 31, 2023

    Today, the United Kingdom’s National Cyber Security Centre (NCSC-UK), the United States’ Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI), New Zealand’s National Cyber Security Centre (NCSC-NZ), the Canadian Centre for Cyber Security (CCCS), and the Australian Signals Directorate (ASD) published a joint Malware Analysis Report (MAR), ...

  • SapphireStealer: Open-source information stealer enables credential and data theft

    August 31, 2023

    SapphireStealer, an open-source information stealer, has been observed across public malware repositories with increasing frequency since its initial public release in December 2022. Information-stealing malware like SapphireStealer can be used to obtain sensitive information, including corporate credentials, which are often resold to other threat actors who leverage the access for additional attacks, including operations related ...

  • New hierarchy, heightened threat: Classiscam’s sustained global campaign

    August 31, 2023

    Classiscam was initially launched as a relatively straightforward scam operation. Cybercriminals created fake ads on marketplaces and classified sites, and leveraged social engineering techniques to trick users into “buying” the falsely-advertised goods or services, whether by transferring money directly to the scammers or by debiting money from the victim’s bank card. Over time, Classiscam schemes have ...

  • Secret Selfies: Can Phones Take Pictures and Videos of You Without Your Knowledge?

    August 31, 2023

    It’s a longstanding question: can your phone really take selfies without your knowledge? The answer is yes, but with a pretty big asterisk next to it. And that asterisk is known as spyware. Spyware can use your phone for snooping in several ways, including using your camera to take pictures and videos. What exactly is spyware? ...

  • UK: National Grid plots ‘honeypots’ to catch hackers as cyber attacks ramp up

    August 30, 2023

    National Grid is to set “honeypots” and plant false documents online as part of efforts to counter a surge in cyber attackers. The Grid has advertised a contract worth more than a million pounds to secure advanced cyber “deception” technology to help improve its digital defences. The London-listed infrastructure provider, which runs Britain’s electricity network and ...

  • CISA and FBI Publish Joint Advisory on QakBot Infrastructure

    August 30, 2023

    Today, the Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory (CSA), Identification and Disruption of QakBot Infrastructure, to help organizations detect and protect against newly identified QakBot-related activity and malware. QakBot—also known as Qbot, Quackbot, Pinkslipbot, and TA570—is responsible for thousands of malware infections globally. Originally used ...