A professional hacking team linked to the North Korean government has broken into Diehl Defence, a German company that manufactures Iris-T air defense systems, using a clever phishing campaign with fake job offers and advanced social engineering tactics, according to a report by Der Spiegel. The attack, pinned on the Kimsuky APT, combined the use of booby-trapped PDF files with spear-phishing lures offering Diehl Defence employees jobs with American defense contractors. READ MORE...
The Community Clinic of Maui in Hawaii, a nonprofit healthcare organization doing business as Malama I Ke Ola Health Center, informed authorities in the US last week that a cyberattack suffered earlier this year has resulted in a data breach impacting over 120,000 individuals. Local media reported in May that it took the Maui healthcare organization more than two weeks to reopen after experiencing "major computer problems". READ MORE...
The JPCERT Coordination Center - the first Computer Security Incident Response Team established in Japan - has compiled a list of entries in Windows event logs that could help enterprise defenders respond to human-operated ransomware attacks and potentially limit the malware's damage. "The difficult part of the initial response to a human-operated ransomware attack is identifying the attack vector," the organization pointed out. READ MORE...
The US cybersecurity agency CISA on Monday warned that years-old vulnerabilities in SAP Commerce, Gpac framework, and D-Link DIR-820 routers have been exploited in the wild. The oldest of the flaws is CVE-2019-0344 (CVSS score of 9.8), an unsafe deserialization issue in the 'virtualjdbc' extension of SAP Commerce Cloud that allows attackers to execute arbitrary code on a vulnerable system, with 'Hybris' user rights. READ MORE...