<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 7/30/2024

SHARE

Hacking

'Zeus' Hacker Group Strikes Israeli Olympic Athletes in Data Leak

The sensitive data of several Israeli athletes in the Paris Olympic Games was published on Telegram in an alleged doxing attack on Friday. The information includes blood test results and login credentials that required France's Anti-Cybercrime Office (OFAC) to seek removal of the data after it was first reported. A hacking group calling itself "Zeus" is allegedly responsible, and also purportedly leaked the military status of Israeli athletes on social media a day prior. READ MORE...


Indian APT Targeting Mediterranean Ports and Maritime Facilities

An India-aligned nation-state threat actor has been targeting ports and maritime facilities in the Indian Ocean and Mediterranean Sea in recent attacks, BlackBerry reports. The advanced persistent threat (APT) actor, tracked as SideWinder, Rattlesnake, and Razor Tiger, has been active since at least 2012, mainly targeting government, military, and businesses in Pakistan, Afghanistan, China, and Nepal, for cyberespionage. READ MORE...

Trends

Global data breach costs reach all-time high of $4.9M, IBM says

Data breaches are painfully expensive and the cost for impacted businesses has grown every year since 2020. The global average cost of a data breach is nearly $4.9 million this year, up nearly 10% from almost $4.5 million in 2023, IBM said Tuesday in its annual Cost of a Data Breach report. U.S. organizations led the world with the highest average data breach cost of almost $9.4 million, a dubious distinction it has earned for the 14th straight year. READ MORE...

Malware

Beware of fake AI tools masking very real malware threats

Generative AI (GenAI) is making waves across the world. Its popularity and widespread use has also attracted the attention of cybercriminals, leading to various cyberthreats. Yet much discussion around threats associated with tools like ChatGPT has focused on how the technology can be misused to help fraudsters create convincing phishing messages, produce malicious code or probe for vulnerabilities. READ MORE...


Android spyware 'Mandrake' hidden in apps on Google Play since 2022

A new version of the Android spyware 'Mandrake' has been found in five applications downloaded 32,000 times from Google Play, the platform's official app store. Bitdefender first documented Mandrake in 2020, with the researchers highlighting the malware's sophisticated spying capabilities and noting that it has operated in the wild since at least 2016. READ MORE...

Information Security

Some good may come out of the CrowdStrike outage

Estimated financial losses due to the recent massive IT outage triggered by the faulty CrowdStrike update are counted in billions, but the unfortunate incident is having several positive effects, as well. As CrowdStrike was forced to explain, in great detail, how they roll out updates for its Falcon Sensors, what testing they perform beforehand, and how they plan to improve the whole process to prevent similar accidents from happening in the future. READ MORE...

Exploits/Vulnerabilities

Hackers exploit VMware vulnerability that gives them hypervisor admin

Microsoft is urging users of VMware's ESXi hypervisor to take immediate action to ward off ongoing attacks by ransomware groups that give them full administrative control of the servers the product runs on. The vulnerability, tracked as CVE-2024-37085, allows attackers who have already gained limited system rights on a targeted server to gain full administrative control of the ESXi hypervisor. READ MORE...


Meta's AI safety system defeated by the space bar

Meta's machine-learning model for detecting prompt injection attacks - special prompts to make neural networks behave inappropriately - is itself vulnerable to, you guessed it, prompt injection attacks. Prompt-Guard-86M, introduced by Meta last week in conjunction with its Llama 3.1 generative model, is intended "to help developers detect and respond to prompt injection and jailbreak inputs," the social network giant said. READ MORE...


PatchNow: ServiceNow Critical RCE Bugs Under Active Exploit

A threat actor on BreachForums is claiming to have harvested email addresses and associated hashes from more than 105 ServiceNow databases after exploiting two recently disclosed critical vulnerabilities in the cloud-based IT service management platform. Researchers from Resecurity's HUNTER threat team warned late last week that the two ServiceNow vulnerabilities were being actively exploited in the wild. READ MORE...

On This Date

  • ...in 1932, Walt Disney releases his first cartoon in color -- "Flowers and Trees".
  • ...in 1947, actor and former politician Arnold Schwarzenegger is born in Thal, Austria.
  • ...in 1961, actor Laurence Fishburne ("The Matrix", "Apocalypse Now") is born in Augusta, GA.
  • ...in 1965, President Lyndon B. Johnson signs the Social Security Act of 1965, establishing Medicare and Medicaid.