News – July 2023


  • Major cyber attack at Scottish university as police and government called in

    July 7, 2023

    The University of the West of Scotland (UWS) said it is working with experts from the national cyber security centre, Police Scotland and the Scottish Government after its website was shut down for several days. A message on the site displays a message warning it is “currently down” for maintenance and apologises for any inconvenience. Read more… Source: ...

  • The five-day job: A BlackByte ransomware intrusion case study

    July 6, 2023

    As ransomware attacks continue to grow in number and sophistication, threat actors can quickly impact business operations if organizations are not well prepared. In a recent investigation by Microsoft Incident Response (previously known as Microsoft Detection and Response Team – DART) of an intrusion, they found that the threat actor progressed through the full attack ...

  • Charges filed in cyber attack on East Bay water treatment plant

    July 6, 2023

    A 53-year-old Tracy man is facing federal criminal charges in connection with an alleged attack on the computer systems of a Discovery Bay water treatment plant more than two years ago, according to the U.S. Attorney’s Office. Rambler Gallo was a full-time employee of a private Massachusetts-based company that contracted with Discovery Bay to operate the ...

  • France set to allow police to spy on suspects through remote phone access

    July 6, 2023

    Part of a wider justice reform bill, the spying provision has been attacked by the left and rights defenders as an authoritarian snoopers’ charter, though Justice Minister Eric Dupond-Moretti insists it would affect only “dozens of cases a year”. Covering laptops, cars and other connected objects as well as phones, the measure would allow geolocation of ...

  • The growth of commercial spyware based intelligence providers without legal or ethical supervision

    July 6, 2023

    Attackers have long used commercial products developed by legitimate companies to compromise targeted devices. These products are known as commercial spyware. Commercial spyware operations mainly target mobile platforms with zero- or one-click zero-day exploits to deliver spyware. This threat initially came to light with the leaks of HackingTeam back in 2015, but gained new notoriety with public reporting ...

  • CISA and Partners Release Joint Cybersecurity Advisory on Newly Identified Truebot Malware Variants

    July 6, 2023

    Today, the Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigations (FBI), the Multi-State Information Sharing and Analysis Center (MS-ISAC), and the Canadian Centre for Cyber Security (CCCS) released a joint Cybersecurity Advisory (CSA), Increased Truebot Activity Infects U.S. and Canada Based Networks, to help organizations detect and protect against newly identified Truebot malware ...

  • Australian horse riding organisations caught up in cyber attack impacting 10,000 people

    July 6, 2023

    Cyber criminals have targeted yet another Australian small business by stealing and leaking the data of 10,000 people. Last month, the data of a little-known company called Event Secretary was published on an online forum. Unfortunately, Event Secretary was the platform that several major Australian horse riding organisations used to book and enter into equestrian competitions ...

  • Japan’s biggest port hit by suspected cyberattack, operations halted

    July 5, 2023

    The Port of Nagoya, Japan’s largest port by total cargo throughput and responsible for handling some of Toyota Motor Corp.’s car exports, has suffered a crippling system glitch, with the port operator saying Wednesday it suspects a cyberattack. As of noon, the port in central Japan remained unable to load and unload containers from trailers. Police ...

  • ChatGPT Shared Links and Information Protection: Risks and Measures Organizations Must Understand

    July 5, 2023

    Since its initial release in late 2022, the AI-powered text generation tool known as ChatGPT has been experiencing rapid adoption rates from both organizations and individual users. However, its latest feature, known as Shared Links, comes with the potential risk of unintentional disclosure of confidential information. In this article, Trend Micro researchers will examine these risks ...

  • Thousands of Fortinet firewalls are unpatched against this serious security bug, so patch now

    July 4, 2023

    Hundreds of thousands of FortiGate firewalls are yet to be patched against a flaw being actively used in the wild, experts have revealed. Cybersecurity researchers from Bishop Fox recently used the Shodan.io search engine for internet-connected devices to look for servers with HTTPS responses that suggested the software was outdated. The results brought back almost 490,000 ...