News – August 2024

August 21, 2024

Users of FlightAware, the world’s largest flight-tracking platform, are being prompted to change their login credentials following a reported “data security incident.” According to FlightAware, the breach may have leaked sensitive customer information. The problem was discovered on 25 July, but it’s possible that it’s been ongoing since January 2021. Company officials say they believe it ...

August 21, 2024

Last week, a cybercriminal using the handle ZeroSevenGroup dumped 240GB of data on the infamous stolen data site BreachForums, that they said came from a hack on the US branch of car manufacturer Toyota. ZeroSevenGroup claims the dump includes customer and employee data. Toyota told BleepingComputer that a breach at a third party had led to the ...

August 21, 2024

The Federal Investigation Agency (FIA) has arrested and booked a Lahore resident for allegedly sharing fake information that incited the recent riots across the UK, it emerged on Wednesday. More than a week after the kingdom witnessed widespread riots in the aftermath of the fatal stabbing of three young girls in Southport, law enforcement agencies began ...

August 20, 2024

The sale and purchase of unauthorized access to compromised enterprise networks has become a linchpin for cybercriminal operations, particularly in facilitating ransomware attacks. Underground forums are sharing guidelines on breaching networks and selling the access they obtain, leaving the exploitation to other malicious actors. On underground criminal forums, these transactions allow actors with complementary skills to ...

August 20, 2024

Information technology is developing at a rapid pace, with completely new areas emerging, such as DevOps and DevSecOps – and we’re striving to keep up. However, in some projects, you may encounter systems built on rather outdated principles. Such systems must be approached with care, since a single mistake can lead to data loss and ...

August 20, 2024

The BVI Electricity Corporation (BVIEC) announced on Monday, August 19, that it had fallen victim to a cyberattack. The power company stated that the attack has impacted both their internal and external operations. While the full details of the cyberattack have not been disclosed, BVIEC has assured the public that they are working closely with experts ...

August 20, 2024

Texas Attorney General Ken Paxton has sued General Motors (GM) for the unlawful collection and sale of over 1.5 million Texans’ private driving data to insurance companies without their knowledge or consent. In June, the Attorney General (AG) announced he had opened an investigation into several car manufacturers over allegations that the companies had improperly collected ...

August 20, 2024

Malwarebytes’ 2024 State of Ransomware report published today (20 August) shows a surge in malicious activity on US and UK businesses. The “ThreatDown 2024 State of Ransomware” report reveals an alarming increase in ransomware attacks over the past year. In the US there has been a 63% increase in ransomware attacks on organisations and businesses, with ...

August 20, 2024

The co-defendant of British tech tycoon Mike Lynch – who is currently missing in Italy – has died after being hit by a car. Stephen Chamberlain, 52, was Mr Lynch’s co-defendant in his US fraud trial in which both men were acquitted following the $11bn (£8.64bn) sale of the software giant Autonomy. Mr Chamberlain was the ...

August 19, 2024

BlindEagle, also known as “APT-C-36”, is an APT actor recognized for employing straightforward yet impactful attack techniques and methodologies. The group is known for their persistent campaigns targeting entities and individuals in Colombia, Ecuador, Chile, Panama and other countries in Latin America. They have been targeting entities in multiple sectors, including governmental institutions, financial companies, energy ...