CyberSecurity Newsletter

                January 1, 2024

            CyberSecurity Newsletter

                 January 1st 2024

            In this week’s news: Hospitals seek a court order to remove breach data from a cloud storage company, healthcare patients receive blackmail email based on breached data, Mortgage company Mr Cooper hacked, An incredibly advanced iPhone hack, Dev’s crypto wallet emptied in a job interview, GTA5 source code leaked, and a new wave of hacktivism grows.

Thanks for reading Bagheera’s Newsletter! Subscribe for free to receive new posts and support my work.

Two not-for-profit hospitals in New York are seeking a court order to retrieve data stolen in an August ransomware attack and now stored on the servers of a Boston cloud storage company:
https://www.bleepingcomputer.com/news/security/hospitals-ask-courts-to-force-cloud-storage-firm-to-return-stolen-data/
Integris Health patients in Oklahoma are receiving blackmail emails stating that their data was stolen in a cyberattack on the healthcare network, and if they did not pay an extortion demand, the data would be sold to other threat actors:
https://www.bleepingcomputer.com/news/security/integris-health-patients-get-extortion-emails-after-cyberattack/
The U.S. Department of Defense released a draft of a long-awaited proposed rule for the Cybersecurity Maturity Model Certification program that aims to simplify compliance, enhance public-private coordination and better protect sensitive information from cyber threats:
https://www.govinfosecurity.com/new-cmmc-rule-offers-tiered-security-levels-for-contractors-a-23974
Mortgage giant Mr Cooper has just disclosed that the information of nearly 14.7 million people was accessed in an October 2023 cyberattack:
https://www.digitaljournal.com/tech-science/major-mortgage-provider-struck-by-cyberattack/article
4-year campaign backdoored iPhones using possibly advanced exploits. “Triangulation”—the name Kaspersky gave to both the malware and the campaign that installed it—exploited four critical zero-day vulnerabilities:
https://arstechnica.com/security/2023/12/exploit-used-in-mass-iphone-infection-campaign-targeted-secret-hardware-feature/

"Triangulation" iPhone spyware used Apple hardware exploits unknown to almost everyone | TechSpot
A new report from Kaspersky's security team outlines all the currently known details of "Triangulation," arguably the most sophisticated iOS spyware ever discovered. The most intriguing detail...

Blockchain dev's wallet emptied in "job interview" using npm package:
https://www.bleepingcomputer.com/news/security/blockchain-devs-wallet-emptied-in-job-interview-using-npm-package/
GTA 5 source code reportedly leaked online a year after Rockstar hack:
https://www.bleepingcomputer.com/news/security/gta-5-source-code-reportedly-leaked-online-a-year-after-rockstar-hack/
Multiple information-stealing malware families are abusing an undocumented Google OAuth endpoint named "MultiLogin" to restore expired authentication cookies and log into users' accounts, even if an account's password was reset:
https://www.bleepingcomputer.com/news/security/malware-abuses-google-oauth-endpoint-to-revive-cookies-hijack-accounts/
A new wave of Hacktivists is turning the surveillance state against itself:
https://therecord.media/a-new-wave-of-hacktivists-is-turning-the-surveillance-state-against-itself
Hacktivists in Belarus said on Monday they had infected the network of the country’s state-run railroad system with ransomware and would provide the decryption key only if Belarus President Alexander Lukashenko stopped aiding Russian troops ahead of a possible invasion of Ukraine:
https://arstechnica.com/information-technology/2022/01/hactivists-say-they-hacked-belarus-rail-system-to-stop-russian-military-buildup/
Mysterious hacker strikes Iran with major cyberattacks against industry-leading companies:
https://www.infostealers.com/article/mysterious-hacker-strikes-iran-with-major-cyberattacks-against-industry-leading-companies/
The US Federal Communications Commission (FCC) is reminding telcos of their obligations to keep consumers safe from SIM swapping and port-out scams:
https://www.theregister.com/2023/12/13/fcc_sim_swapping_carriers/?td=keepreading
Hackers expose thousands of parking app users to data breach risk. Europe's largest parking app operator, EasyPark Group, faces a significant data breach:
https://interestingengineering.com/culture/hackers-parking-app-data-breach
Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day:
https://www.securityweek.com/chinese-hackers-deliver-malware-to-barracuda-email-security-appliances-via-new-zero-day/
According to Kaspersky, cybercriminals unleashed an average of 411,000 malicious files every day in 2023, representing a 3% increase from the previous year:
https://www.infosecurity-magazine.com/news/daily-malicious-files-soar-3-2023/
Encryption upgrade in 2024 will keep data safe from quantum computers:
https://www.newscientist.com/article/2408996-encryption-upgrade-in-2024-will-keep-data-safe-from-quantum-computers

                Don't miss what's next. Subscribe to BagheeraAltered's CyberSecurity Newsletter: