Skip to Content

German Infrastructure DDoSed

The websites of some German airports, financial institutions, and government agencies were targeted with distributed denial-of-service (DDoS) attacks earlier this week. The attacks are believed to be the work of Russian hacktivists. Germany’s Federal office for Information Security (BSI) says that some websites were made unavailable, but there were no service disruptions. Note DDoS attacks …

Read More about German Infrastructure DDoSed

FAA Statement on NOTAM Outage (January 19, 2023)

In a January 19 statement, the US Federal Aviation Administration (FAA) said that according to a preliminary review, “contract personnel unintentionally deleted files while working to correct synchronization between the live primary database and a backup database. The agency has so far found no evidence of a cyber-attack or malicious intent.” The statement also notes …

Read More about FAA Statement on NOTAM Outage (January 19, 2023)

Some MSI Motherboards Do Not Have Secure Boot Enabled by Default

Security researcher Dawid Potocki discovered that more than 300 motherboard models from MSI do not implement the Secure Boot feature by default, which means that they will allow any bootloader, signed or unsigned, to run. According to an MSI Reddit post, the company says they “preemptively set Secure Boot as Enabled and ‘Always Execute’ as …

Read More about Some MSI Motherboards Do Not Have Secure Boot Enabled by Default

Ransomware Attacks: Strategies for Prevention and Recovery

This article could start by reviewing the college that closed permanently after a ransomware attack or the large school district that suffered an incident during a recent holiday weekend. Or it could focus on how critical infrastructure—such as water treatment plants, pipelines, and meat processing plants—are increasingly under attack. We could even comment on the …

Read More about Ransomware Attacks: Strategies for Prevention and Recovery

Royal Mail Still Working to Recover from Cyberattack

Royal Mail, which suffered a ransomware attack earlier this month, is slowly recovering from the incident. Initially, the attack disrupted the UK postal service company’s operations, rendering it unable to ship overseas. Earlier this week, Royal Mail said that it has “resumed the export of letters which do not require a customs declaration to all …

Read More about Royal Mail Still Working to Recover from Cyberattack

Iowa School District Cancelled Classes After Cyberattack

A cyberattack compelled the Des Moines (Iowa) Public School District to cancel classes earlier this week. The attack also rendered the district’s Internet and network services unavailable. According to an update from the school district, access to Infinite Campus and to phones has been restored; they planned to resume classes on Thursday, January 12. Note …

Read More about Iowa School District Cancelled Classes After Cyberattack

Cloud-based Digital Records Management Service Cott Systems Discloses Cyberattack

Updated on 2023-01-04: Cloud-based Records Management Service Discloses Cyberattack Cloud-based digital records management company Cott Systems has notified customers that it suffered an “organized cyberattack” in late December. Cott disconnected its servers to isolate the infection. As a result, many local governments across the US have been forced to turn to manual processes for birth …

Read More about Cloud-based Digital Records Management Service Cott Systems Discloses Cyberattack

The Guardian is Still Working to Recover From Cyber Incident

Updated on 2023-01-04: The Guardian is Still Working to Recover From Cyber Incident UK news publication The Guardian is still working to recover from a “serious network disruption” due to what is likely a ransomware attack that began on December 21. Two weeks after the fact, employees are being told to continue to work from …

Read More about The Guardian is Still Working to Recover From Cyber Incident

Cybersecurity and Infosec News Headlines Update on 2023-01-10

Updated on 2023-01-11 SF BART ransomware The San Francisco Bay Area Rapid Transit (BART) is investigating an intrusion of its IT network after the Vice Society ransomware gang claimed to have compromised the agency via a blog post on their dark web leak site. The agency’s spokesperson told The Record that “no BART services or …

Read More about Cybersecurity and Infosec News Headlines Update on 2023-01-10

Comcast Xfinity accounts hacked by credential stuffing attacks bypassed 2FA security

Updated on 2022-12-29: Comcast Xfinity account hacks Several Comcast Xfinity customers said they had their accounts hacked. The accounts were then used to reset passwords and bypass 2FA accounts on cryptocurrency portals like Gemini and Coinbase. @Xfinity How was it that users with 2FA had email password resets sent to Yopmail accounts after midnight. WTH, …

Read More about Comcast Xfinity accounts hacked by credential stuffing attacks bypassed 2FA security

STEPPY#KAVACH APT Targeting India Government

Updated on 2022-12-29: STEPPY#KAVACH APT Securonix has a report out on a spear-phishing campaign linked to the STEPPY#KAVACH APT that targeted Indian government officials. Securonix researchers described STEPPY#KAVACH as having “many common TTPs with the SideCopy/APT36 threat actors” that were previously linked to the Pakistan government. Overview Indian government officials were targeted in a new …

Read More about STEPPY#KAVACH APT Targeting India Government

T-Mobile hacker sentenced

Updated on 2022-12-22: T-Mobile hacker sentenced Argishti Khudaverdyan, the owner of a T-Mobile retail who hacked into T-Mobile’s main network as part of a larger phone-unlocking scheme, was sentenced last week to 10 years in prison. Read more: Former Mobile Phone Store Owner Sentenced to 10 Years in Federal Prison for Multimillion-Dollar Scheme to Illegally …

Read More about T-Mobile hacker sentenced

LockBit Ransomware Gang Gives Decryptor to Toronto Children’s Hospital

Updated on 2023-01-05: SickKids ransomware attack The LockBit ransomware gang has apologized for its attack on the Sick Kids Hospital chain and released a free decrypter to help the victim recover files without paying. Updated on 2023-01-02 LockBit apologized for the attack on SickKids, Canada, and released a free decryptor for the hospital. It claimed …

Read More about LockBit Ransomware Gang Gives Decryptor to Toronto Children’s Hospital

Cyber Criminals are Using Business eMail Compromise (BEC) to Steal from Food Supply Chain

Updated on 2022-12-22: FBI warns about BEC attacks on food industry The FBI also issued another security advisory last week, warning about BEC attacks on the food industry where criminal groups have redirected shipments of food and ingredients rather than redirecting and stealing a company’s bank funds. Updated on 2022-12-16 The FBI, the FDA OCI, …

Read More about Cyber Criminals are Using Business eMail Compromise (BEC) to Steal from Food Supply Chain
Ads Blocker Image Powered by Code Help Pro

Ads Blocker Detected!!!

This site depends on revenue from ad impressions to survive. If you find this site valuable, please consider disabling your ad blocker.