<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 9/11/2023

SHARE

Breaches

Dymocks Booksellers suffers data breach impacting 836k customers

Dymocks Booksellers is warning customers their personal information was exposed in a data breach after the company's database was shared on hacking forums. Dymocks is a bookstore chain operating 65 stores in Australia, New Zealand, and Hong Kong, and also an online shop that sells printed books, e-books, stationery supplies, games, and digital media. The company was informed that its customer data was stolen on September 6th, 2023, by security researcher Troy Hunt. READ MORE...


Associated Press warns that AP Stylebook data breach led to phishing attack

The Associated Press is warning of a data breach impacting AP Stylebook customers where the attackers used the stolen data to conduct targeted phishing attacks. The AP Stylebook is a commonly used guide on grammar, punctuation, and writing style for journalists, magazines, and newsrooms worldwide. This week, the Associated press warns that an old third-party-managed AP Stylebook site that was no longer in use was hacked between July 16 and July 22, 2023, allowing the data for 224 customers to be stolen. READ MORE...

Hacking

FBI Blames North Korean Hackers for $41 Million Online Casino Heist

The FBI says that the North Korea-linked hacking group Lazarus is responsible for the theft of $41 million in cryptocurrency from online casino and betting platform Stake[.]com. The incident occurred on September 4, when the Australian-Curaçaoan online platform Stake[.]com announced that hackers had stolen funds from its Ethereum (ETH) and Binance Smart Chain (BSC) hot wallets. READ MORE...


After Microsoft and X, Hackers Launch DDoS Attack on Telegram

The hacker group Anonymous Sudan has launched a distributed denial-of-service (DDoS) attack against Telegram in retaliation to the messaging platform's decision to suspend their primary account, threat intelligence firm SOCRadar reports. Claiming to be a hacktivist group motivated by political and religious causes, Anonymous Sudan has orchestrated DDoS attacks against organizations in Australia, Denmark, France, Germany, India, Israel, Sweden, and the UK. READ MORE...

Information Security

Overcoming the Rising Threat of Session Hijacking

From passkeys to multifactor authentication (MFA), most businesses are embracing solutions that protect sensitive information to minimize their attack surface and enhance cybersecurity posture. While these approaches are a step in the right direction, security teams should recognize they may not be enough to fully secure user data. As enterprises deploy new ways to protect their networks, cybercriminals are simultaneously evolving tactics to bypass these defenses. READ MORE...

Exploits/Vulnerabilities

Email forwarding flaws enable attackers to impersonate high-profile domains

Sending an email with a forged address is easier than previously thought, due to flaws in the process that allows email forwarding, according to a research team led by computer scientists at the University of California San Diego. The issues researchers uncovered have a broad impact, affecting the integrity of emails sent from tens of thousands of domains, including those representing organizations in the U.S. government. READ MORE...


Critical Security Bug Opens Cisco BroadWorks to Complete Takeover

A critical security vulnerability in Cisco's BroadWorks unified collaboration and messaging platform could pave the way for complete takeover of the platform, and the theft of a raft of sensitive data. BroadWorks is an all-in-one unified communications as a service (UCaaS) platform that includes VoIP calling, instant messaging, video calling, WebEx integration, and more. It's one of Cisco's flagship offerings and enjoys dominant market share. READ MORE...

On This Date

  • ...in 1789. Alexander Hamilton is appointed the first United States Secretary of the Treasury.
  • ...in 1941, ground is broken for the construction of the Pentagon.
  • ...in 1985, Pete Rose becomes the all time MLB hits leader after getting his 4192nd hit.
  • ...in 2001, agents of the al-Qaeda terrorist group hijack and crash three commercial airliners into the World Trade Center and Pentagon in a coordinated set of attacks.