AI DevwWrld CyberDSA Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Cyber ​​incidents

Air Canada: employees' personal data breachedFight against breaches of sensitive employee data and strengthen cybersecurity practicesAir Canada has revealed a breach of their internal systems, compromising employees' personal information. The company took immediate action, ensuring that no customer information was accessed. Air Canada is enhancing its security measures to protect employee data and remain operational.

Growing threat: Russian cyber warfare operations in UkraineThe increase in Russian attacks highlighted in the report of the Ukrainian cyber defense organizationRussian hackers targeted Ukrainian law enforcement agencies to gather information on war crimes investigations. Cyberattacks in Ukraine have increased, but defenses are improving. Russia integrates cyber warfare operations into its military strategies.

China's offensive cyber operations in Africa to support soft power effortsChina's growing threat: cyber infiltration into Africa to consolidate its digital dominanceA Chinese-sponsored cyber group has attacked African telecommunications, financial and government organizations in a bid to gain information and competitive advantages. China has invested heavily in African telecommunications and uses these attacks to shape its influence in the region. Other threatening...

China accuses the United States of a long campaign of cyber espionage against Huawei's serversRevealing investigation: details of cyber attacks against Huawei revealed by China's Ministry of State SecurityChina's Ministry of State Security accuses the United States of hacking into Huawei's servers, stealing sensitive data and installing spying backdoors. The US NSA is accused of conducting systematic cyber attacks against China.

Microsoft AI inadvertently exposed 38TB of sensitive data: lessons to be learnedThe consequences of data breaches and implications for corporate cybersecurityMicrosoft AI accidentally exposed 38TB of sensitive data due to misconfiguration of SAS tokens. It is critical to implement adequate security controls and carefully monitor access to sensitive data to avoid incidents like this.

Cyber espionage: Earth Lusca uses new Linux malwareA sophisticated cyber espionage attack endangers the security of Linux networksA China-linked cyber espionage actor known as "Earth Lusca" has begun using a Linux backdoor with features that appear to be inspired by previously known malware tools. The malware, named “SprySOCKS” by Trend Micro researchers, is a Linux variant of “Trochilus,” a remote access Trojan for Windows whose c...

ICC victim of serious cyber attack, investigations underwayThe ICC takes action to protect its digital integrity and ensure the operation of investigationsThe International Criminal Court (ICC) is dealing with a major cybersecurity incident. The ICC investigates war crimes in Ukraine and has taken measures to manage the situation. This is not the first cyber attack on the ICC and raises concerns about the security of the investigation.

Clorox fights the consequences of a cyber attackCybersecurity challenges in the industrial sector: the impact of a cyber attack on CloroxClorox is facing difficulties due to a cyber attack that affected the availability of its products. The company is working to repair the damage and restore production. The attack will have a financial impact in the first quarter and highlights the importance of cyber security measures. MGM Resorts also...

MGM ESXi servers encrypted by ransomware attack: BlackCat group held responsibleMGM Resorts hit by ransomware attack: cybersecurity implications and business repercussionsAccording to reliable sources, MGM's ESXi servers were encrypted by a ransomware attack conducted by the BlackCat/ALPHV group. The Scattered Spider group is suspected of using several types of social engineering attacks.

Peach Sandstorm: the persistent threat of iranian state actorsThe sophisticated cyber-espionage techniques used by Peach Sandstorm threaten global securityMicrosoft has warned of a global cyber-espionage campaign led by an Iranian state actor called Peach Sandstorm. Using password attacks and exploiting vulnerabilities, they have targeted industries such as defense and pharmaceuticals. Microsoft recommends strengthening your defenses and implementing multi-factor...

Hacker attack on Retool: stolen cryptocurrencies and deepfakesSophisticated attack leveraging Google Authenticator MFA sync and deepfake puts business security at riskA San Francisco software development company, Retool, was the victim of a sophisticated hacker attack attributed to a Google sync feature. Hackers breached the system and targeted cryptocurrency customers, causing significant damage. The attack exploited deepfake and raises concerns about corporate security...

Las Vegas casinos double violations: Scattered Spider and ALPHV ChargedAn unprecedented hacking operation puts the security of Las Vegas casinos at riskTwo hacker groups, Scattered Spider and ALPHV, have been linked to the attacks on the MGM Resorts and Caesars Entertainment companies in Las Vegas. MGM had to pay a multimillion-dollar ransom, while Caesars suffered widespread outages. Investigations are still ongoing to identify the perpetrators of...

Hackers steal $53 million worth of cryptocurrencies from CoinExCoinEx under attack: millions of dollars worth of cryptocurrency funds stolenCoinEx, a well-known cryptocurrency exchange, suffered a cyber attack resulting in the loss of digital assets worth approximately $53 million. The cryptocurrencies involved are Ethereum, Tron and Polygon. CoinEx has suspended services to protect users and it is suspected that the Lazarus group may be...

Anonymous Sudan: DDoS attack against TelegramThe mysterious reasons behind the exclusion of Anonymous Sudan from TelegramThe latest article talks about the suspension of the main account of the Anonymous Sudan group on Telegram, an alleged consequence of the use of bots. The group responded with DDoS attacks against the platform itself. It is speculated that the suspension is also linked to previous attacks against Microsoft...

Cyber espionage: new Sponsor backdoor hits various industriesNew cyber threat: Charming Kitten affects at least 34 companiesAn Iran-linked cyber spy group known as Charming Kitten has infected 34 victims in Brazil, Israel and the United Arab Emirates with a new backdoor called Sponsor. This malware exploits vulnerabilities in Microsoft Exchange servers. Experts recommend applying security patches and staying vigilant for...

Sri Lanka data incident: ransomware attack hits governmentA cyber disaster that could put national security at riskThe Sri Lankan government suffered a major cyber attack that compromised over 5000 email accounts due to outdated software. Backup servers were also compromised, making data recovery difficult. The government will not pay ransom to attackers.

The UK Electoral Commission fails a crucial cybersecurity testThe gaps in the IT security of the Election Commission expose the entire population to serious risksThe UK Electoral Commission has admitted to a cyber breach that compromised the personal data of 40 million voters. The attack occurred after the Commission failed a cybersecurity test and used outdated software. An investigation is underway to assess the consequences and improve cybersecurity.

Freecycle.org reports data breach, urges users to reset passwordsEnhancing security measures: Freecycle.org takes immediate action following data breachFreecycle.org, a recycling platform, suffered a data breach, prompting the organization to recommend password resets for its millions of users. The compromised data includes usernames, email addresses, and hashed passwords. Freecycle.org is investigating the incident and advising users to remain vigilant...

Okta: social engineering attacks targeting IT help desks to gain control of privileged accounts and disable...Details of the attack and recommendations for protecting privileged accountsOkta, an identity and access management company, has revealed a series of targeted attacks on their customers' IT service desks in the US. Attackers used social engineering to gain control over privileged accounts. Okta suggests implementing new security measures, such as phishing-resistant authentications,...

LockBit hackers steal sensitive british military defense documentsSuspicions of a russian cyber attack on the UK Ministry of DefenceThe UK Ministry of Defense has been attacked by Russian hackers, according to reports on social media. The stolen information was shared on the dark web. The UK's National Cyber Security Center has issued a threat alert, urging companies to be alert and stay safe.

Seventh day of cyber attacks: NoName057(16) hits banks and telecommunicationsThe importance of protecting digital infrastructures against hacktivist groupsNumerous DDoS cyber attacks have hit Italy by a Russian hacker group called NoName057(16). Banca Popolare di Bari, Poste Mobile and Coop Voce were the main targets. To mitigate attacks, geolocking and other techniques such as application firewalls can be used.

Critical security vulnerabilities expose users' personal information of Smart Chastity Cage MakerThe dangerous consequences of neglecting cybersecurity in IoT devicesA recent security discovery has revealed serious flaws in an internet-connected chastity device for males, exposing personal information. The company ignored warnings and took no action to fix the issues. The website also exposed PayPal payment logs, raising further concerns about user privacy.

Recall of a children's snack after its website was found to serve adult contentLidl is recalling four types of PAW Patrol themed snacks across the UKKids snack recalled after website served adult content. Error in the advertising system causes the accident. The company apologizes and takes preventive measures. Importance of online parental supervision. Filtering software recommended for greater security.

Economic impact of cybercrime in Germany: 206 billion euros lost by 2023The devastating impact of cybercrime on the German economy: a warning for cybersecurityAccording to a recent survey, Germany will lose 206 billion euros by 2023 due to cybercrime, with serious consequences for key sectors of the economy such as manufacturing, finance and telecommunications. It is therefore essential that companies invest in advanced cybersecurity solutions to protect their...

The latest cybersecurity incidents that make the newsPeople, technology and security: the impact of the latest cyber incidents on the digital societyQakbot Botnet Disabled: Coordinated international operation between the FBI, Department of Justice, and law enforcement agencies of various countries to combat malware. University of Michigan cuts student and staff connections due to suspicious activity. Hospital Sisters Health System takes measures...

Cybersecurity: Chinese Hacking Group's attack highlights new threatsThe new challenges of information security in the era of advanced cyber attacksA group of Chinese hackers exploited a vulnerability in international technology companies through remote code execution. This attack caused financial losses and undermined customer trust. It is important to implement advanced security measures to defend against cyber attacks.

Japan cybersecurity agency infiltrated by hackers for 9 monthsHacker infiltration raises concerns about the privacy of sensitive informationThe Japan Cybersecurity Agency was the victim of a nine-month cyber attack, with the support of Chinese state entities. Concern has been raised for Japan's national security, as sensitive and personal data may have been breached. Mutual allegations have been raised between China and the United States...

Cyber attack responsible for chaos in UK airspaceThe vulnerability of critical infrastructure: the case of the cyber attack that hit UK airspaceA cyber attack has wreaked havoc in UK airspace, delaying flights and endangering critical infrastructure. It is necessary to strengthen cybersecurity and work together to address this threat.

Mom's Meals Service violation: the data of 12 million users at riskA cyber attack jeopardizes the privacy of Mom's Meals Service customers: here's what happenedA popular meal delivery service, Mom's Meals Service, suffered a data breach affecting more than 12 million users. Sensitive personal information such as names and addresses have been exposed. The service has taken immediate security measures to further protect the data and advises users to change their...

Major data breach: security concerns for the Metropolitan PoliceThe lack of data security in London's Metropolitan Police raises serious concerns about the protection of sensitive informationLondon's Metropolitan Police has been the victim of a major data breach, with sensitive and private information at risk. The organization has implemented security measures to mitigate the incident and prevent future cyber attacks. The incident raises the importance of implementing robust security policies...

Genworth Financial under investigation for data breachSensitive data loss risk: Genworth Financial in the spotlight of the competent authoritiesGenworth Financial is under investigation for a possible breach of sensitive customer data. Investigators are investigating the incident and the company is taking steps to strengthen cyber security. Clients have been briefed and advised on the precautions to be taken. Data breaches are a growing problem...

The Medusa group publishes data stolen from PostelThe dangerous menace of ransomware: the case of the Medusa group and the attack on PostelThe Medusa criminal group attacked the Postel company of Poste Italiane, stealing sensitive employee data and threatening to publish it if a ransom was not paid. Medusa uses ransomware to encrypt files and delete backups, making data recovery difficult. The attack creates concerns about data loss and...

Kroll Data Breach: a cyber attack puts the personal information of creditors at riskCyber risks in the financial sector: the importance of protecting creditors' personal dataKroll, a debt collection company, suffered a data breach. The personal information of FTX, BlockFi and Genesis creditors has been exposed. The attack was via phishing, but the financial information was not compromised. Kroll has taken steps to protect the data and creditors have been notified. The episode...

Vulnerability exploited in WinRAR for zero-day attacksSerious WinRAR vulnerability puts users' cyber security at risk: discovery and solutionsA serious vulnerability in the popular WinRAR program allows hackers to execute malicious code on users' systems. Millions of users may be at risk, but you can protect yourself by updating your software and being careful about RAR files from untrusted sources.

Facebook users have little time to file for data privacy infringement claimsReserved $725 million to cover complaints from its active users between May 2007 and December 2022Facebook users run out of time to seek $725 million settlement over data privacy breach. It is essential to submit the application within the set deadline and to provide concrete evidence of the violation. The breach raised data security concerns and highlighted the importance of protecting user privacy....

Duolingo data breach: protect your privacy26 million Duolingo users at risk: the impact of data breaches on privacy and the need for additional security measuresDuolingo, the leading language learning app, has confirmed the theft of personal data of 26 million users. The information includes names, emails and encrypted passwords. Users are encouraged to change their passwords and take personal security measures. The company is working with experts to investigate...

Carderbee cyber attacks rock Hong KongHong Kong businesses need to strengthen their cyber defenses to protect themselvesHong Kong targeted by Carderbee's cyber attacks Carderbee, a dangerous group of hackers specializing in carding and financial identity theft, has pressured the cyber defenses of numerous companies and financial institutions in Hong Kong, causing serious financial damage. Authorities work together to...

Tesla sues former employees for disclosing user data to a german newspaperLawsuit against former Tesla employees for violation of customer privacyTesla filed a lawsuit against two former employees who allegedly disclosed sensitive data of more than 75,000 users to a german newspaper. This invasion of privacy could damage Tesla's reputation and put your safety at risk. The company took the incident seriously and will take all necessary legal steps...

Haker accuses Bolsonaro of commissioning vote hacking in 2022Investigation called after allegations of violation of voting system in 2022 Brazilian electionsBrazilian hacker says Bolsonaro is involved in an alleged violation of the voting system of the 2022 election. The accusation has raised concerns about the security and integrity of the election. A thorough investigation is required to ensure transparency of the electoral process and strengthen cyber...

Ransomware attack shocks Postel Spa: detailsFight against Medusa Locker: Postel Spa refuses to give in to blackmailThe article reports that Postel Spa, an affiliate of Poste Italiane, was hit by a ransomware attack by the hacker group Medusa Locker. Company data was stolen and the group demanded a $500,000 ransom. Postel Spa reacted promptly by launching investigations and working to restore services.

Data protection breach in Ireland: serious vulnerabilities in the systemThe urgency of resilient protection and preventive solutionsSerious personal data breach in Northern Ireland raises concerns about the security of information handled by relevant authorities in the country. The data protection system is being examined and measures are being taken to avoid further violations. Collaboration and ongoing vigilance are key to addressing...

The virtual siege of APT38: russian institutions targeted by north korean hackersAttack tactics and the growing need for cyber securityThe North Korean hacker group Lazarus Group, also known as APT38, has been targeting Russian institutions using advanced techniques such as spear-phishing. This activity generated great international interest, highlighting the importance of global cooperation on cyber security.

FBI alert: scammers playing the robe of NFT developersScam methods and protective measures in the emerging NFT marketFBI warns of scammers posing as NFT developers to steal users' cryptographic data. They use techniques such as phishing and outright deception. Digital awareness is key to preventing these scams. Security bodies, the crypto community and NFT developers should come together to fight digital crime.

Cyber assault from the Kremlin: phishing via Microsoft TeamsCybersecurity under siege: lines of defense and geopolitical implicationsThe article discusses a phishing attack staged by Russian hackers on government organizations using fake invitations to Microsoft Teams. Emphasize the importance of employee training, advanced cybersecurity, and awareness of this threat. Finally, the article links the incident to international politics,...

Wave of hack attacks: over 640 compromised Citrix serversThe insidious technique of web shells: this is how hackers compromise Citrix serversThe article discusses the persistence of hacker attacks on Citrix servers, with over 640 servers compromised through the use of web shells. These attacks, predominantly in the Netherlands and Germany, highlight the importance of continually updating cyber defense strategies. Finally, it proposes preventive...

Facebook faces phishing attack: the critical role of the Salesforce flawSecurity countermeasure measure: how Facebook fought back a huge phishing attempt via SalesforceSecurity researchers have identified a phishing attack on Facebook, exploiting a flaw in the Salesforce platform. The attackers changed the email details to look legitimate and bypass Facebook's security filters. Facebook responded promptly, reporting the vulnerability to Salesforce and emphasizing the...

Malfunctions at Israel's largest refinery: grappling with potential cyberattacksCybersecurity and the oil industry: scenarios and reflections on the Bazan Group caseIsrael's largest oil refinery, Bazan Group, has encountered problems with its computer system that have raised suspicions of a possible cyber-attack. The national security agency Shin Bet is investigating the case, despite Bazan Group's assurances that its operations have not been disrupted. The incident...

The Mirai botnet attack on Apache Tomcat serversUnmasking the cyberattack chain: infiltration, execution, and countermeasuresThe article discusses a cyberattack campaign targeted towards poorly protected Apache Tomcat servers, aiming to distribute Mirai botnet malware and cryptocurrency miners. The attack involves the use of a web shell script known as "neww", which gains unauthorized access to make changes on the server....

Zero-day bug: Ivanti's action in fixing MobileIronIvanti's readiness to respond to MobileIron vulnerability: the importance of security updatesMobileIron software, used by many large corporations and government organizations, recently fell victim to a hacker attack due to a "remote code execution" vulnerability. This vulnerability allowed hackers to execute malicious code remotely, compromising system security. Ivanti, the parent company of...

Norwegian government networks affected by DDoS attack: incident analysisNorwegian cyber security under attack: the importance of defense against DDoS threatsThe article discusses a recent DDoS attack on twelve Norwegian government sites that disrupted several key services. The Cyber Security Center of Norway has launched an investigation to identify the perpetrators. The incident underscores the importance of global cybersecurity measures.