IT Security Newsletter

IT Security Newsletter - 11/12/2024

Written by Cadre | Tue, Nov 12, 2024

Massive troves of Amazon, HSBC employee data leaked

A threat actor who goes by the online moniker "Nam3L3ss" has leaked employee data belonging to a number of corporations - including Amazon, 3M, HSBC and HP - ostensibly compromised during the May 2023 MOVEit hack by the Cl0p ransomware gang, which affected British Airways, the BBC, Aer Lingus, Boots. Zellis, and others. "The stolen data, which dates back to May 2023, includes employee directories from 25 major organizations," Alon Gal, CTO of cybercrime intelligence company Hudson Rock, shared. READ MORE...

200,000 SelectBlinds customers have their card details skimmed in malware attack

SelectBlinds, a popular online retailer of blinds and shades, has disclosed a security breach that has impacted 206,238 of its customers. Hackers successfully managed to embed malware onto the company's website, capable of stealing sensitive information, including credit card details, names, addresses, phone numbers, and login credentials. In breach notification documents, SelectBlinds described how it discovered malware on its website's checkout page. READ MORE...

Grocery giant Ahold Delhaize's US operations disrupted by cyberattack

Ahold Delhaize said in a Friday statement that it had "detected a cybersecurity issue within its U.S. network" and was investigating with help from outside experts, but did not indicate what might have impacted its online infrastructure. The company said it took some systems down and notified authorities about the incident. Hannaford's e-commerce services remained unavailable Monday morning, continuing an outage that began last week. READ MORE...

HIBP notifies 57 million people of Hot Topic data breach

Have I Been Pwned warns that an alleged data breach exposed the personal information of 56,904,909 accounts for Hot Topic, Box Lunch, and Torrid customers. Hot Topic is an American retail chain specializing in counterculture-related clothing, accessories, and licensed music merchandise. The company operates over 640 stores across the United States and Canada, primarily located in shopping malls, and has a vast customer base. READ MORE...

IP Spoofing Attack Tried to Disrupt Tor Network

A coordinated IP spoofing attack attempted to disrupt the Tor anonymity network, according to the Tor Project and relay operators. The Tor Project said the attack started on October 20, when Tor directory authorities, the critical components responsible for managing and maintaining the list of Tor relays, started getting complaints alleging that their servers had been conducting port scanning. READ MORE...

SAP Patches High-Severity Vulnerability in Web Dispatcher

Enterprise software maker SAP on Tuesday announced the release of eight new and two updated security notes as part of its November 2024 security updates. Marked as 'high priority', the second most severe rating in SAP's playbook, the most important of these notes resolves a high-severity vulnerability in Web Dispatcher, the appliance that distributes incoming requests to the adequate SAP instances. READ MORE...

North Korean-linked hackers were caught experimenting with new macOS malware

Hackers associated with North Korea were discovered embedding malware inside macOS applications built with an open-source software development kit, according to researchers at Jamf, a company that makes software geared toward mobile device management. The research, released Tuesday, details malware discovered in late October by researchers on VirusTotal, a popular online file analysis tool. While the code was malicious, the online scanning platform gave the samples a clean bill of health. READ MORE...

New Ymir ransomware partners with RustyStealer in attacks

A new ransomware family called 'Ymir' has been spotted in the wild, encrypting systems that were previously compromised by the RustyStealer infostealer malware. RustyStealer is a known malware family first documented in 2021, but its appearance with ransomware demonstrates another example of the recent trend of cybercrime operations working together. BleepingComputer has confirmed that the ransomware operation launchedin July 2024, when it started attacking companies worldwide. READ MORE...

DNA testing company vanishes along with its customers' genetic data

A DNA testing company that promised clients insights into their genetic disposition has suddenly disappeared. The BBC reports it tried several methods to reach the company but failed in this effort. London offices are closed, nobody answers the phone, and clients are no longer capable of accessing their online records. All the company's social media accounts haven't been updated since 2023 at the latest. READ MORE...

What Listening to My Father Taught Me About Cybersecurity

As a teenager, I commented to my father that not everyone gives good advice. In fact, some people give just plain bad advice. My father told me that while I didn't have to take everyone's advice, I needed to listen to what everyone was saying to me. Knowing whose advice to take versus whose advice to leave is a skill that most people spend a lifetime honing. One thing is for sure, though: There is no shortage of advice, information, and distraction. READ MORE...

  • ...in 1954, Ellis Island closes after processing more than 12,000,000 immigrants to the United States.
  • ...in 1961, gymnast and five-time Olympic medalist Nadia Comaneci, the first competitor to be awarded a perfect score of 10.0, is born in Onesti, Romania.
  • ...in 1980, the space probe Voyager I makes its closest approach to Saturn and takes the first images of its rings.
  • ...in 1990, English computer scientist Tim Berners-Lee publishes a formal proposal for the World Wide Web.