Cyber Watch – July 29, 2023
Welcome to Cyber Watch series for today, July 29, 2023. At DigitalXForce, our Cyber Intelligence team curates a list of the latest cybersecurity news to keep you informed of stories that matter every week.
This week’s Cyber Watch top 10 list is a compilation of stories from 50+ relevant news sources across the web – all ranked according to the risk impact. We encourage you to review these stories and take steps to protect your organization.
Unpatched Apache Tomcat Servers spread Mirai Botnet Malware
According to a recent report by SC Media, the notorious Mirai botnet has taken advantage of unpatched Apache Tomcat servers, unleashing a wave of malware mayhem. This alarming security breach emphasizes the urgency of staying up-to-date with patches to safeguard against cyber predators.
Don’t be caught off guard – protect your systems now!”
Another New AI Tool Emerges: FraudGPT
A groundbreaking AI tool, FraudGPT, is making waves in the digital landscape, custom-tailored to combat fraudulent schemes. A recent Hacker News report revealed that “armed with the power of AI, FraudGPT is a game-changer in the fight against online scams, safeguarding businesses and individuals alike.”
Stay ahead of the curve and bid farewell to fraudsters with this revolutionary defender by your side!
North Korean Hackers Bag Another $100m in Crypto Heists
North Korean hackers have struck again, this time stealing nearly $100 million in cryptocurrency from two firms. The attacks, which were carried out by the Lazarus Group, targeted the Tallinn-based payments gateway CoinsPaid and the cryptocurrency exchange Harmony.
InfoSecurity Magazine reported that the thefts are the latest in a string of successful cyberattacks by North Korean hackers, who have been using cryptocurrency to fund their country’s weapons and nuclear programs.
New SEC Rules Require U.S. Companies to Reveal Cyber Attacks Within 4 Days
In a major shift in how computer breaches are disclosed, the U.S. Securities and Exchange Commission (SEC) has approved new rules that require publicly traded companies to publicize details of a cyber attack within four days of identifying that it has a “material” impact on their finances. According to The Hacker News, the new rules go into effect on November 1, 2023.
Hackers Exploit Windows Search Feature to Execute Malware on Infected Systems
A recent Cybersecurity News report revealed that hackers are capitalizing on a sneaky exploit in Windows Search, leaving your system vulnerable to cyber intrusions. As this loophole gives attackers a backdoor entry, it’s time to act swiftly. Secure your digital fortress with updates and heightened vigilance to outsmart these cunning cyber foes. Stay safe, stay protected!
Google Restricting Internet Access To Some Employees To Reduce Cyberattack Risk
In a bid to improve its cybersecurity, Google is restricting internet access to some of its employees. The company is rolling out a pilot program that will limit access to the internet on select desktop PCs.
According to a recent CNBC report, employees who participate in the program will still be able to access internal web-based tools and Google-owned websites, but they will not be able to browse the open web or download files from unapproved sources.
The pilot program is currently being tested with a small group of employees, and Google says that it will decide whether to expand the program to more employees in the future.
Deloitte Joins Fellow Big Four MOVEit Victims PWC, EY
Deloitte, one of the Big Four accounting firms, has become the latest victim of the MOVEit ransomware attack. The attack, which was carried out by the Cl0p ransomware gang, targeted Deloitte’s MOVEit Transfer software, which is used to transfer files within and between organizations.
According to Cyber News, the attack is believed to have affected a limited number of Deloitte’s systems, and the company says that it has taken steps to contain the damage. However, the attack is a reminder of the growing threat of ransomware, and it highlights the importance of having strong cybersecurity measures in place.
The Cl0p ransomware gang has been active since 2019, and it has targeted a variety of organizations, including government agencies, healthcare providers, and businesses. The gang is known for its aggressive tactics, and it has been known to leak sensitive data if victims do not pay the ransom
Zimbra Patches Zero-Day Vulnerability Exploited in XSS Attacks
Zimbra, a popular open-source email and collaboration suite, has patched a zero-day vulnerability that was being exploited in XSS attacks. The vulnerability, which was tracked as ZDI-CAN-18987, allowed attackers to inject malicious code into Zimbra webmail pages.
According to a report by Bleeping Computer, the vulnerability was discovered by Trend Micro, and it was being exploited by a group of attackers who were targeting government agencies and educational institutions. The attackers were using the vulnerability to inject malicious code into Zimbra webmail pages, which would then be executed when users visited the pages.
CISA to Establish Network of Regional Election Advisers for 2024
The Record reported that the CISA (Cybersecurity and Infrastructure Security Agency) is building a robust network of election security advisers, geared up to safeguard the 2024 elections from cyber perils.
With a keen eye on thwarting interference and ensuring electoral integrity, this expert alliance is all set to combat digital threats and bolster democracy. Brace yourself for a thrilling showdown as these cyber defenders gear up to protect the sacred voice of the people.
It’s time to unite and secure the future of our democracy! Read on to uncover the heroes behind the screens.
BlueBravo Adapts to Target Diplomatic Entities with GraphicalProton Malware
In the cloak-and-dagger world of cyber espionage, a chilling new chapter unfolds. Meet BlueBravo, the relentless threat actor, adapting its tactics to target diplomatic entities with GraphicalProton malware. Recorded Future’s latest report exposes the sinister plot, unraveling how these sophisticated attacks have silently infiltrated diplomatic circles.
As tensions escalate, nations must unite their cyber defenses to counter this insidious digital foe. Dive into the shadowy realm of cyber warfare and discover the race against time to protect sensitive information and preserve international security.
The battle for the future has never been more intense. Are you ready to confront the faceless enemy?