Sign up to save your podcasts
Or
Share 2024-02-20 : Daily : Gracie Folkins
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
2024-02-20 : Daily : Gracie Folkins
I'm Gracie Folkins, today is February 20, 2024, and you are listening to Hack News Daily.
First up, a big cyber incident in Romania: the Backmydata ransomware has hit multiple hospitals, locking up their systems. Security experts recommend using Check Point Harmony Endpoint and running the latest updates from Microsoft and Adobe to stay safe. And remember, with Valentine's Day just past, cyber threats are on the rise, so stay vigilant.
In the United States, Infosys McCamish Systems reported a breach affecting over 57,000 people, with Social Security numbers leaked. If you're affected, you might be eligible for free identity theft protection from Bank of America. Always keep an eye on your personal data, folks.
Meanwhile, the Cactus ransomware group has made headlines by stealing 1.5TB of data from Schneider Electric. At the same time, law enforcement has been cracking down on the LockBit ransomware, seizing their servers and offering a way to unlock encrypted files.
International police forces have been busy, taking down LockBit's operations and gathering crucial evidence against this criminal gang. Always a good day when the bad guys get caught.
Website owners, take note: A severe vulnerability in the Bricks WordPress site builder was found. Update your sites ASAP to avoid attacks.
Hackers from North Korea have been caught in a sophisticated attack on maritime technology. Companies are urged to step up their security measures, including using multi-factor authentication and training staff to spot cyber threats.
A serious security hole in Microsoft Exchange servers has been exposed, affecting thousands of servers worldwide. If you manage one, make sure to update it immediately.
The I-S00N GitHub repository has revealed suspicious activities by the company Shanghai Anxun. If you're involved with government IT, this is a red flag to investigate further.
In Europe, the TAG-70 group, linked to Belarus and Russia, has been exploiting vulnerabilities to spy on emails. This is a stark reminder of the importance of keeping your systems patched and secure.
Privacy concerns are rising as Wyze camera users found they could access other people's video feeds due to a bug. Wyze is working on fixing this to ensure user privacy.
The European Court of Human Rights has made a stand for privacy by ruling against compelled decryption by law enforcement. A win for personal privacy rights.
Developers, be aware: A significant vulnerability in the Kubernetes platform Rancher could allow hackers to hijack domains. Keep an eye out for updates and secure your domains.
DNSSEC, a system designed to protect the internet, had a big scare with the KeyTrap vulnerability. Thankfully, major providers have already patched this issue.
Researchers at the University of Illinois have shown how AI, like OpenAI's GPT-4, can identify and exploit web vulnerabilities. It's a new era for cybersecurity.
The notorious TAG-70 group has been busy, using security weaknesses to target over 80 organizations in Europe for espionage.
The spyware Pegasus, by NSO Group, now uses sophisticated techniques to profile mobile devices without any user interaction. A chilling development in cyber surveillance.
Meta is fighting back against cyber surveillance by disrupting malicious activities from several international firms. They've introduced new security measures to protect users.
The ALPHV ransomware group is claiming to have breached Prudential Financial and LoanDepot, showing that financial institutions remain prime targets.
Android users, beware: The Anatsa banking trojan has slipped past Google Play's defenses, posing as harmless apps. Google has removed these apps, but stay alert.
WordPress's Bricks Builder plugin had a severe flaw, now patched, highlighting the constant need for software updates.
SolarWinds has fixed some serious issues in its software. If you're using their Access Rights Manager, make sure it's up to date.
A new variant of the Mirai botnet is targeting TP-Link routers. Protect your devices by following the recommended security measures.
A critical security flaw in old versions of Ghostscript could allow attackers to take control. Update to stay safe.
Come back tomorrow for more Hack News Daily for the latest updates. You can find links to all the cyber news, red team tradecraft tooling, and more at HAQ.NEWS. Gracie Folkins out.
View all episodes
By Jared FolkinsI'm Gracie Folkins, today is February 20, 2024, and you are listening to Hack News Daily.
First up, a big cyber incident in Romania: the Backmydata ransomware has hit multiple hospitals, locking up their systems. Security experts recommend using Check Point Harmony Endpoint and running the latest updates from Microsoft and Adobe to stay safe. And remember, with Valentine's Day just past, cyber threats are on the rise, so stay vigilant.
In the United States, Infosys McCamish Systems reported a breach affecting over 57,000 people, with Social Security numbers leaked. If you're affected, you might be eligible for free identity theft protection from Bank of America. Always keep an eye on your personal data, folks.
Meanwhile, the Cactus ransomware group has made headlines by stealing 1.5TB of data from Schneider Electric. At the same time, law enforcement has been cracking down on the LockBit ransomware, seizing their servers and offering a way to unlock encrypted files.
International police forces have been busy, taking down LockBit's operations and gathering crucial evidence against this criminal gang. Always a good day when the bad guys get caught.
Website owners, take note: A severe vulnerability in the Bricks WordPress site builder was found. Update your sites ASAP to avoid attacks.
Hackers from North Korea have been caught in a sophisticated attack on maritime technology. Companies are urged to step up their security measures, including using multi-factor authentication and training staff to spot cyber threats.
A serious security hole in Microsoft Exchange servers has been exposed, affecting thousands of servers worldwide. If you manage one, make sure to update it immediately.
The I-S00N GitHub repository has revealed suspicious activities by the company Shanghai Anxun. If you're involved with government IT, this is a red flag to investigate further.
In Europe, the TAG-70 group, linked to Belarus and Russia, has been exploiting vulnerabilities to spy on emails. This is a stark reminder of the importance of keeping your systems patched and secure.
Privacy concerns are rising as Wyze camera users found they could access other people's video feeds due to a bug. Wyze is working on fixing this to ensure user privacy.
The European Court of Human Rights has made a stand for privacy by ruling against compelled decryption by law enforcement. A win for personal privacy rights.
Developers, be aware: A significant vulnerability in the Kubernetes platform Rancher could allow hackers to hijack domains. Keep an eye out for updates and secure your domains.
DNSSEC, a system designed to protect the internet, had a big scare with the KeyTrap vulnerability. Thankfully, major providers have already patched this issue.
Researchers at the University of Illinois have shown how AI, like OpenAI's GPT-4, can identify and exploit web vulnerabilities. It's a new era for cybersecurity.
The notorious TAG-70 group has been busy, using security weaknesses to target over 80 organizations in Europe for espionage.
The spyware Pegasus, by NSO Group, now uses sophisticated techniques to profile mobile devices without any user interaction. A chilling development in cyber surveillance.
Meta is fighting back against cyber surveillance by disrupting malicious activities from several international firms. They've introduced new security measures to protect users.
The ALPHV ransomware group is claiming to have breached Prudential Financial and LoanDepot, showing that financial institutions remain prime targets.
Android users, beware: The Anatsa banking trojan has slipped past Google Play's defenses, posing as harmless apps. Google has removed these apps, but stay alert.
WordPress's Bricks Builder plugin had a severe flaw, now patched, highlighting the constant need for software updates.
SolarWinds has fixed some serious issues in its software. If you're using their Access Rights Manager, make sure it's up to date.
A new variant of the Mirai botnet is targeting TP-Link routers. Protect your devices by following the recommended security measures.
A critical security flaw in old versions of Ghostscript could allow attackers to take control. Update to stay safe.
Come back tomorrow for more Hack News Daily for the latest updates. You can find links to all the cyber news, red team tradecraft tooling, and more at HAQ.NEWS. Gracie Folkins out.