News – August 2023


  • Discord.io gets taken down after massive data breach

    August 15, 2023

    Discord.io, a third-party service that helps people generate custom invites for their Discord channels, has been hacked, and information on some 760,000 members stolen. The service has since suspended its operations, and the attacker explained that this is actually a ransom attack – with a twist. As seen on BleepingComputer, a user going by the name ...

  • New widespread IoT compromise could affect millions of logic controller chips

    August 15, 2023

    Microsoft security researcher Vladimir Tokarev demonstrated an interesting attack on the industrial internet of things automation software called Codesys. Tokarev, who showed the exploit last week at the annual BlackHat security conference in Las Vegas, used a miniature elevator model to demonstrate how the attack could crash its cab. The software – and more importantly, its ...

  • UK: Victims and witnesses personal data leaked by Norfolk and Suffolk police

    August 15, 2023

    A total of 1,230 people, including victims of crime and witnesses, have had their data breached by Norfolk and Suffolk police forces. The constabularies said the personal information was included in Freedom of Information (FOI) responses due to a “technical issue”. They said the data was hidden from anyone opening the files but should not have ...

  • CISA Releases Two Industrial Control Systems Advisories

    August 15, 2023

    CISA released two Industrial Control Systems (ICS) advisories on August 15, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-227-01 Schneider Electric EcoStruxure Control Expert, Process Expert, Modicon Read more… Source:  U.S. Cybersecurity and Infrastructure Security Agency  

  • China identifies the culprits behind cyberattack on Wuhan Earthquake Monitoring Center

    August 14, 2023

    New progress has been made on an investigation into a cyberattack incident targeting the Wuhan Earthquake Monitoring Center affiliated to the city’s Emergency Management Bureau, after a joint investigation team formed by the National Computer Virus Emergency Response Center (CVERC) and Chinese cybersecurity company 360 discovered malicious backdoor software that exhibits characteristics of US intelligence ...

  • Clorox says certain business operations disrupted in cyber attack

    August 14, 2023

    Clorox said on Monday it had taken certain systems offline after unauthorized activity disrupted some business operations. It said it was implementing workarounds for certain offline operations in order to continue servicing its customers and had engaged third-party cybersecurity experts to support its investigation and recovery efforts. Read more… Source: MSN News  

  • Bangladesh Bank warns banks and financial institutions against cyber attacks

    August 12, 2023

    The Bangladesh Bank has issued out a comprehensive 11-point instruction in a situational alert, urging all banks and financial institutions to bolster their cyber defences. This move comes on the heels of a recent cyber threat targeting the country’s cyber sphere, with potential implications for critical state information infrastructure (CII), including banking, healthcare, and government operations. Read ...

  • Russian and Chinese cyber attack on Foreign Office was kept secret from public

    August 12, 2023

    Hackers from Russia and China infiltrated the Foreign Office’s emails and internal messages without the public’s knowledge, it has been revealed. The major security breach meant cyber attackers were able to see the day-to-day business of the government department in 2021. The cyber attacks were enabled because a Foreign Office staff member ‘probably accidentally’ downloaded malware ...

  • Connecticut city loses $6 million in multiple cyber attacks on public school district, manages to recoup half

    August 11, 2023

    The city of New Haven lost more than $6 million in multiple cyberattacks on its public school district earlier this summer and has so far managed to recoup about half of the money, officials announced Thursday. The thefts, which occurred in June and involved hackers impersonating the city’s chief operating officer and private vendors in emails, ...

  • 5 arrested in Poland for running bulletproof hosting service for cybercrime gangs

    August 11, 2023

    This week, the Polish Central Cybercrime Bureau (Centralne Biuro Zwalczania Cyberprzestępczości) under the supervision of the Regional Prosecutor’s Office in Katowice (Prokuratura Regionalna w Katowicach) took action against LolekHosted.net, a bulletproof hosting service used by criminals to launch cyber-attacks across the world. Five of its administrators were arrested, and all of its servers seized, rendering LolekHosted.net ...