News – July 2024

July 29, 2024

Detectives investigating criminality linked to the PSNI data breach have arrested a 54-year-old man. Data relating to all 9,483 PSNI officers and staff was mistakenly included in a spreadsheet published online last August in response to a freedom of information request. The list included the surname and first initial of every employee, their rank or grade, ...

July 28, 2024

Malaysia will require social media services to apply for a license if they have more than 8 millon users in the country from August 1, in an attempt to combat increasing cyber offences, said the government. The Malaysian Communications and Multimedia Commission said in a statement on Saturday that the license was in line with cabinet’s ...

July 28, 2024

Bangladesh has restored mobile internet, 11 days after a nationwide blackout was imposed to contain deadly protests over quotas in government jobs. The South Asian nation’s 4G mobile internet services resumed on Sunday, hours after Zunaid Ahmed Palak, the state minister for telecommunications and information communication technology, made the announcement. Read more… Source: AL Jazeera News Sign up for ...

July 28, 2024

The disruptions occurred early Wednesday, hitting several — but not all — internet operators. Authorities suggested the damage to the cables was intentional. The prosecutor’s office opened a preliminary investigation on charges of “damaging goods of a nature of harming the fundamental interests of the nation,” as well as “obstruction of an automatic data processing system” ...

July 26, 2024

Automation 360 Robotic Process Automation suite v21-v32 is vulnerable to unauthenticated Server-Side Request Forgery (SSRF). SSRF occurs when the server can be induced to perform arbitrary requests on behalf of an attacker. An attacker with unauthenticated access to the Automation 360 Control Room HTTPS service (port 443) or HTTP service (port 80) can trigger arbitrary web ...

July 25, 2024

Authorities have warned organisations to take extra measures to protect their IT systems after a spike in cyber-attacks in Guernsey. The Office of the Data Protection Authority (ODPA) said some Microsoft 365 systems had been compromised by phishing attacks, where someone is tricked into giving out information over email. It warned criminals were becoming increasingly adept ...

July 25, 2024

On July 25, 2024, the United States Department of Justice (DOJ) indicted an individual linked to the North Korean threat actor that Microsoft tracks as Onyx Sleet. Microsoft Threat Intelligence collaborated with the Federal Bureau of Investigation (FBI) in tracking activity associated with Onyx Sleet. Microsoft will continue to closely monitor Onyx Sleet’s activity to assess ...

July 25, 2024

Hackers have reportedly leaked internal documents stolen from Leidos Holdings Inc., a company with a significant contract portfolio including the US Defense Department, Homeland Security, and NASA. A person with knowledge of the matter told Bloomberg News that the company believes the documents leaked by hackers were stolen during a previously disclosed breach at Diligent Corporation. ...

July 25, 2024

A little-known spyware maker based in Minnesota has been hacked, TechCrunch has learned, revealing thousands of devices around the world under its stealthy remote surveillance. A person with knowledge of the breach provided TechCrunch with a cache of files taken from the company’s servers containing detailed device activity logs from the phones, tablets, and computers that ...

July 24, 2024

The Russian banking sector was exposed to a DDoS attack planned from overseas, the VTB Bank press service told TASS. “The banking sector was exposed to the DDoS attack orchestrated from overseas. A minor share of VTB clients faced individual constraints in operations of bank apps due to the high load on the infrastructure of Internet ...