October 24, 2022

Cyber Security

Seven months after it found out, FamilySearch tells users their personal data has been breached

October 24, 20223 min read

https://grahamcluley.com/seven-months-after-it-found-out-familysearch-tells-users-their-personal-data-has-been-breached/

Cyber Security

Car dealer group Pendragon refuses to pay $60 million to ransomware extortionists

October 24, 20223 min read

https://grahamcluley.com/car-dealer-group-pendragon-refuses-to-pay-60-million-to-ransomware-extortionists/

Cyber Security

Cuba ransomware affiliate targets Ukraine, CERT-UA warns

October 24, 20222 min read

https://securityaffairs.co/wordpress/137567/cyber-warfare-2/cuba-ransomware-cert-ua.html

Cyber Security

Serious Security: You can’t beat the house at Blackjack – or can you?

October 24, 202212 min read

https://nakedsecurity.sophos.com/2022/10/24/serious-security-you-cant-beat-the-house-at-blackjack-or-can-you/

Cyber Security

Norway PM warns of Russia cyber threat to oil and gas industry

October 24, 20222 min read

https://securityaffairs.co/wordpress/137561/cyber-warfare-2/norway-pm-warns-russia-threat.html

Cyber Security

Malicious Clicker apps in Google Play have 20M+ installs

October 24, 20223 min read

https://securityaffairs.co/wordpress/137549/malware/clicker-apps-google-play.html

Cyber Security

Security experts targeted with malicious CVE PoC exploits on GitHub

October 24, 20223 min read

https://securityaffairs.co/wordpress/137527/hacking/malicious-github-repositories.html

Day: October 24, 2022

Seven months after it found out, FamilySearch tells users their personal data has been breached

Car dealer group Pendragon refuses to pay $60 million to ransomware extortionists

Cuba ransomware affiliate targets Ukraine, CERT-UA warns

Serious Security: You can’t beat the house at Blackjack – or can you?

Norway PM warns of Russia cyber threat to oil and gas industry

Malicious Clicker apps in Google Play have 20M+ installs

Security experts targeted with malicious CVE PoC exploits on GitHub

Atlassian addressed four new RCE flaws in its products

CISA adds Qualcomm flaws to its Known Exploited Vulnerabilities catalog

Experts demonstrate a post-exploitation tampering technique to display Fake Lockdown mode

$10 million up for grabs in fight against North Korean hackers

GST Invoice Billing Inventory exposes sensitive data to threat actors

Threat actors breached US govt systems by exploiting Adobe ColdFusion flaw

ENISA published the ENISA Threat Landscape for DoS Attacks Report

ENISA published ENISA Threat Landscape for DoS Attacks

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Google fixed critical zero-click RCE in Android

New P2PInfect bot targets routers and IoT devices

Malvertising attacks rely on DanaBot Trojan to spread CACTUS Ransomware

LockBit on a Roll – ICBC Ransomware Attack Strikes at the Heart of the Global Financial Order

Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices

New Agent Raccoon malware targets the Middle East, Africa and the US