CyberNews
Russia-linked group incorporating AI in its new automated propaganda machine
A Russia-linked group is automating fake news fabrication and publishing with AI.
Infosecurity News
AI-Powered Russian Network Pushes Fake Political News
Researchers discover large-scale Russian influence operation using GenAI to influence voters
CyberNews
Eurovision faces heightened cyber risks
Eurovision has said it was closely working with security teams to protect the world’s largest music competition from cyber attacks amid warnings of increased risks.
Security Affairs
UK Ministry of Defense disclosed a third-party data breach exposing military personnel data
The UK Ministry of Defense disclosed a data breach at a third-party payroll system that exposed data of armed forces personnel and veterans.
The Record
Stolen children’s health records posted online in extortion bid
Cybercriminals have published another batch of data stolen from NHS Dumfries and Galloway in Scotland, this time including information about children.
SecurityWeek
The UK Says a Huge Payroll Data Breach by a ‘Malign Actor’ Has Exposed Details of Military Personnel
The UK Ministry of Defense said a breach at a third-party payroll system exposed as many as 272,000 armed forces personnel and veterans.
CyberNews
UK military personnel data accessed in hack
British military personnel's data has been exposed, China suspected.
The Record
China suspected of hacking British military payment system, reports say
U.K. officials are responding to a cyber incident involving a Ministry of Defence payment system operated by a contractor.
Ars Technica
The BASIC programming language turns 60
Easy-to-use language that drove Apple, TRS-80, IBM, and Commodore PCs debuted in 1964.
SecurityWeek
CISO Conversations: Talking Cybersecurity With LinkedIn's Geoff Belknap and Meta's Guy Rosen
SecurityWeek discusses cybersecurity leadership with Geoff Belknap, CISO at LinkedIn, and Guy Rosen, CISO at Facebook parent company Meta.
The Cyber Express
Vastaamo Hacker Sentenced for Blackmailing Thousands Over Stolen Therapy Notes
Julius Kivimäki, one of Europe's most sought-after cyber criminals, has been sentenced to more than six years jail for attempting
CyberNews
Financial Times announces partnership with OpenAI
The Financial Times has said it was entering into a strategic partnership and licensing agreement with ChatGPT developer OpenAI.
The Record
Telegram blocks, then unblocks, chatbots used by Ukraine’s intelligence services
Ukraine’s government uses the bots to collect and share real-time information about Russian military activity.
The Cyber Express
2024 Is The Year of Elections… And Disinformation
By Roman Faithfull, Cyber Intelligence Lead, Cyjax 2024 will see more elections than any other year in history: the UK,
The Hacker News
German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies
German authorities issued arrest warrants against three citizens on suspicion of spying for China.
CyberNews
OpenAI fires researchers for leaking information
OpenAI, the AI startup behind the generative AI bot ChatGPT, has fired two key researchers for alleged leaking, The Information said on Thursday.
Infosecurity News
Data Breach Exposes 300k Taxi Passengers’ Information
These records belonged to Dublin-based iCabbi, a dispatch and fleet management technology provider
DarkReading
Zambia Busts 77 People in China-Backed Cybercrime Op
Phony call center company conducted online fraud and other Internet scams.
The Hacker News
CL0P's Ransomware Rampage - Security Measures for 2024
CL0P ransomware emerges as a major player in the cybercrime world! From "bed bug" beginnings to a global threat, this group's aggressive tactics are r
Infosecurity News
Deepfake Expert Henry Ajder to Keynote Infosecurity Europe 2024 on AI
Infosecurity Europe 2024 will feature a keynote presentation by deepfake expert Henry Ajder, exploring the implications of generative AI on cybersecurity
DarkReading
India Repatriates Citizens Duped Into Cyber Fraud Labor in Cambodia
So far some 750 citizens have been rescued and returned to India after being lured to Cambodia in an phony employment scheme.
The Hacker News
U.S. Charges 7 Chinese Nationals in Major 14-Year Cyber Espionage Operation
U.S. Department of Justice has unveiled indictments against seven Chinese nationals linked to the hacking group APT31.
CyberNews
BBC will stop using AI to promote Doctor Who after complaints
After receiving complaints about using artificial intelligence to promote the Doctor Who series, BBC now says there are no plans to do it again.
The Record
Detained execs, a bold escape, and tax evasion charges: Nigeria takes aim at Binance
A standoff between the world's biggest cryptocurrency platform and the Nigerian government has disrupted lives and raised new questions for foreign operations there.
CyberNews
BBC working on AI models, content deal – media
The UK's public broadcaster is reportedly seeking to develop its own AI models and is in talks with tech companies about selling access to its vast archives.
Bleeping Computer
UK bakery Greggs is latest victim of recent POS system outages
UK bakery chain Greggs is the latest victim of recent point of sale system outages that forced store closures at large retail chains over the past few weeks.
CyberNews
Glitch allowed withdrawals of millions, bank pleads to return money
Ethiopia’s largest bank experienced a glitch that allowed users to make unlimited withdrawals, resulting in millions of dollars of losses.
Bleeping Computer
News farm impersonates 60+ major outlets: BBC, CNN, CNBC, Guardian...
BleepingComputer has discovered a content farm operating some 60+ domains named after popular media outlets, including the BBC, CNBC, CNN, Forbes, Huffington Post, The Guardian, and Washington Post, among others. These sites build SEO for their online gambling ventures and sell "press release" slots at hefty prices.
Bleeping Computer
Content farm impersonates 60+ major news outlets, like BBC, CNN, CNBC
BleepingComputer has discovered a content farm operating some 60+ domains named after popular media outlets, including the BBC, CNBC, CNN, Forbes, Huffington Post, The Guardian, and Washington Post, among others. These sites build SEO for their online gambling ventures and sell "press release" slots at hefty prices.
The Record
Cybercriminal groups actively exploiting ‘catastrophic’ ScreenConnect bug
Researchers said that “attacks against both servers and client machines are currently underway” as attackers attempt to exploit the critical vulnerability.
The Record
Pakistan government cuts internet as voters head to polls during general election
Pakistani authorities cut internet access across the country on Thursday on security grounds as the nation’s voters went to cast their paper ballots.
The Record
Senegal shuts off internet for second day as president postpones February elections
The shutdown coincides with the passing of a controversial bill to extend the term of President Macky Sall to December, when elections are now scheduled to be held.
PCMag
Apple Slams 'Unprecedented Overreach' of Proposed Update to UK Privacy Laws
A revision to the Investigatory Powers Act (IPA) could allow officials to quietly stop a company like Apple from rolling out certain features.
The Hacker News
Italian Data Protection Watchdog Accuses ChatGPT of Privacy Violations
Italy's data watchdog accuses ChatGPT of violating EU privacy laws by collecting sensitive data and exposing children to inappropriate content.
Bleeping Computer
Watch out for "I can't believe he is gone" Facebook phishing posts
A widespread Facebook phishing campaign stating, "I can't believe he is gone. I'm gonna miss him so much," leads unsuspecting users to a website that steals your Facebook credentials.
The Record
Telegram and WhatsApp down amid protests in remote Russian region
Popular messaging apps are facing disruptions this week in the remote Russian region of Bashkortostan where hundreds of people have taken to the streets to protest against the sentencing of a local activist.
CyberNews
Facebook users targeted with “I’ll miss him so much” scam
Facebook users targeted with “I’ll miss him so much” scam.
The Record
Bangladesh official alleges cyberattack ‘from Ukraine and Germany’ targeted election
Mohammed Jahangir Alam, the Election Commission’s official secretary, told journalists that an election app had been “slowed down from Ukraine and Germany,” without specifying the nature of the incident.
Cyber Security News
Google Pays $5 Billion to End 'private mode' Tracking Lawsuit
A landmark settlement lawsuit against Google, accusing the tech giant of breaching user privacy in "private mode" browsing modes.
Security Affairs
Google agreed to settle a $5 billion privacy lawsuit
Google has agreed to settle a $5B privacy lawsuit, which alleged that the company monitored individuals using the Chrome "incognito" mode.
The Cyber Express
LockBit Hits Richmont University: Breach Details Uncertain
The notorious LockBit ransomware group has declared Richmont Graduate University as its latest victim, marking an alarming trend of cyber
The Hacker News
British LAPSUS$ Teen Members Sentenced for High-Profile Attacks
Two British teens, part of the LAPSUS$ cybercrime gang, sentenced for orchestrating high-profile attacks against companies.
Security Affairs
Member of Lapsus$ gang sentenced to indefinite hospital order
A member of the Lapsus$ cyber extortion group, Arion Kurtaj, has been sentenced to an indefinite hospital order.
Infosecurity News
Justice Secretary in Deepfake General Election Warning
Justice secretary Robert Buckland has warned that deepfakes could be used to spread election disinformation
Bleeping Computer
Lapsus$ hacker behind GTA 6 leak gets indefinite hospital sentence
Lapsus$ cybercrime and extortion group member, Arion Kurtaj has been sentenced to life in a 'secure hospital' by a UK judge. Kurtaj who is 18 years of age and autistic is among the primary Lapsus$ threat actors, and was involved in the leak of assets associated with the video game, Grand Theft Auto VI.
The Cyber Wire
Ukraine at D+665: Reprisals for the Kyivstar hack.
Ukrainian hacktivist auxiliaries undertake reprisals for the Kyivstar hack, and Russian disinformation tacks toward a narrative of the Russian World as it takes advantage of technological advances.
DarkReading
Hacktivists Interrupt UAE TV Streams With a Message About Gaza
The root cause may lie in set-top boxes run by a questionable service provider.
The Cyber Express
UAE Television Disrupted by Cyberattack: Israeli-Palestinian Message Broadcasted
Residents of the United Arab Emirates had an unexpected interruption to their TV shows on Sunday night due to the
The Cyber Express
University of Wollongong Confirms Data Breach, Notifies Authorities
The University of Wollongong has become the latest victim of a data breach, as confirmed by university officials. In a
The Record
TV service in UAE hacked to show alleged atrocities in Palestine
A group of hackers targeted a television service in the United Arab Emirates over the weekend, replacing the original broadcast with graphic footage from the war between Israel and Hamas.
CyberNews
Russia tricked US actors into contributing to propaganda efforts
Unwitting American actors and others appear to have been asked to send a message to someone called Vladimir.
The Record
Russia doctors custom videos by US actors to create anti-Ukraine propaganda
The source videos came from sites like Cameo — where celebrities can record and send personalized messages to users for a fee — according to researchers at Microsoft.
DataBreaches
Data breach by Addenbrooke’s Hospital reveals patient information
Mariam Issimdar and Nikki Fox report: A hospital trust has apologized after private information on more than 22,000 patients was released in two breaches. The...
CSO
Hackers book profit by scamming Booking.com customers
Malicious elements are using Vidar infostealer to gain access to Booking.com’s management portal and defraud customers.
The Record
Potentially hundreds of UK law firms affected by cyberattack on IT provider CTS
The managed service provider CTS confirmed it had experienced a "cyber-incident." At least one report said the CitrixBleed bug was involved.
DataBreaches
British Library: Employee data leaked in cyber attack
Yasmin Rufo reports: The British Library has confirmed that a cyber attack in October has led to a leak of employee data. The attack, which took place on 31...
The Record
UK regulator demands websites let users ‘Reject All’ cookies
Top websites in the United Kingdom have 30 days to comply with the country’s privacy laws or they will “face the consequences,” the Information Commissioner's Office said.
Ars Technica
Unauthorized “David Attenborough” AI clone narrates developer’s life, goes viral
"We observe the sophisticated Homo sapiens engaging in the ritual of hydration."
The Record
UK National Cyber Force operations to become ‘more embedded’ with policing
The elite U.K. hacking unit eventually will be more integrated into police operations, alongside military and intelligence ones, according to Gen. Sir Jim Hockenhull, the chief of Strategic Command.
Cyber Security News
Best Security Solutions for Marketers - 2024
Best security solutions for Marketers: 1. Perimeter 81 2. Surfshark3. Private Internet Access 4. Malwarebytes 5. CyberGhost 6. GoodAccess
The Record
Council for Scottish islands faces IT outage after ‘incident’
The Comhairle nan Eilean Siar — which governs the more than 470,000 people living on the chain of islands — said access to its IT system “has been affected by an incident which has caused significant disruption.”
The Record
UK government fails to bring forward promised cyber laws in King’s Speech
Legislation that would have, in the government’s own words, “better protected” essential services in the country — including in the water, energy and transport sectors — is now unlikely to be introduced to Parliament until 2025, and probably won’t take effect until 2026 at the earliest.
SecurityWeek
In Other News: Ex-NSA Employee Spying for Russia, EU Threat Landscape, Cyber Education Funding
Noteworthy stories that might have slipped under the radar: Ex-NSA employee spying for Russia, EU threat landscape, cyber education funding
SecurityWeek
In Other News: Energy Services Firm Hacked, Tech CEO Gets Prison Time, X Glitch Leads to CIA Channel Hijack
Summary of notable cybersecurity news stories that may be top headlines, but are important for the week of October 16, 2023.
Ars Technica
Adobe launches new symbol to tag AI-generated content—but will anyone use it?
New icon, metadata seek to illuminate origins of content—AI-generated or otherwise.
The Record
Social media platforms foment disinformation about war in Israel
Disinformation about the fighting between Israel and Hamas has spread like wildfire on social media platforms like X and Facebook.
SecurityWeek
Red Cross Publishes Rules of Engagement for Hacktivists During War
ICRC is telling hacktivists involved in conflict during war to avoid targeting civilian objectives, or making threats of violence
The Record
‘War has no rules’: Hacktivists scorn Red Cross’ new guidelines
This week, the Red Cross issued ethical guidelines for civilian hackers involved in armed conflicts, sparking ridicule from hacktivists in Ukraine and Russia.
DataBreaches
8 rules for “civilian hackers” during war, and 4 obligations for states to restrain them
Written by Tilman Rodenhäuser and Mauro Vignati: As digital technology is changing how militaries conduct war, a worrying trend has emerged in which a...
Infosecurity News
Red Cross Releases Wartime Hacktivist Rules
Non-profit warns of blurring between military and civilian attacks
Infosecurity News
UK Logistics Firm Forced to Close After Ransomware Breach
Kettering-based KNP Logistics Group was hit in June
The Record
Manchester police officers’ data stolen following ransomware attack on supplier
Greater Manchester Police (GMP) said that neither financial information nor home addresses were exposed in the incident, but there is concern about organized crime groups acquiring personal details about officers.
Computerworld
UK rolls back controversial encryption rules of Online Safety Bill
The UK government has said it will not use the powers granted by the Online Safety Bill to compel companies to scan encrypted messages until it becomes “technical feasible” to do so only for information about exploitation and abuse.
Infosecurity News
UK Electoral Commission Fails Cybersecurity Test Amid Data Breach
Auditors cited outdated software and unsupported iPhones as key reasons for the failed test
Infosecurity News
Suffolk High School Forced Offline After Cyber-Attack
Separate research warns of widespread email security failings
CSO
Suspected London’s Met Police data breach potentially exposes sensitive officer, staff information
Unauthorised access at a supplier might have compromised names, ranks, photos, vetting levels, and pay numbers for officers and staff.
The Hacker News
Two LAPSUS$ Hackers Convicted in London Court for High-Profile Tech Firm Hacks
Remember the hacks on Uber, Revolut, & Rockstar Games? Two UK teenagers, part of the infamous LAPSUS$ gang, convicted for high-profile hacks.
CSO
UK court finds teenagers guilty of carrying out LAPSUS$ hacking spree
The two, including a 17-year-old, were convicted for their part in attacks on Uber, Nvidia, and other companies.
Infosecurity News
Teens Found Responsible For Lapsus$ Cyber-Attacks
Arion Kurtaj was deemed not fit to stand trial
Bleeping Computer
The MOVEit hack and what it taught us about application security
When a cyberattack like the 2023 MOVEit hack makes global news headlines, attention often focuses on the names of the affected organizations. This article from @Outpost24 overviews the Moveit hack and aims to draw some important actionable takeaways for your business.
The Record
British court convicts two teen Lapsus$ members of hacking tech firms
Two teenagers, ages 18 and 17, were found guilty of hacking into major corporations. The cases involved Uber, Nvidia and more.
The Record
Ilya Sachkov versus the Kremlin
Ilya Sachkov co-founded the cybersecurity company Group-IB to make the world safe from Russian-speaking cybercriminals. Then he asked Russian authorities to help round them up, and things went spectacularly wrong.
Infosecurity News
Continued MOVEit Exploitation Drives Record Ransomware Attacks
NCC Group researchers observed 502 ransomware attacks in July 2023, with a large proportion made up of Clop’s continued exploitation of MOVEit
The Record
‘No records’ of suspected Russian spy graduating from claimed university
Queensland University of Technology said it has “no records of anyone" with the name Orlin Roussev as having graduated from the institution.
Ars Technica
Tech error let people with empty bank accounts withdraw hundreds in cash
Bank of Ireland says the problem wasn't connected to a cyberattack.
Security Affairs
Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach
The Colorado Department of Health Care Policy & Financing (HCPF) disclose a data breach after MOVEit attack on IBM. The Colorado Department of Health Care Policy & Financing (HCPF) disclosed a data breach that impacted more than four million individuals. The incident is the result of a MOVEit attack on IBM, threat actors accessed the […]
Security Affairs
Data of all serving police officers Police Service of Northern Ireland (PSNI) mistakenly published online
Police Service of Northern Ireland (PSNI) mistakenly shared sensitive data of all 10,000 serving police officers in response to a FOI request. The Police Service of Northern Ireland (PSNI) has mistakenly shared sensitive data of all 10,000 serving police officers in response to a Freedom of Information (FOI) request. The request aimed at determining the […]
The Hacker News
U.K. Electoral Commission Breach Exposes Voter Data of 40 Million Britons
Massive Cyber Attack! The U.K. Electoral Commission has disclosed a year-long breach, resulting in the compromise of data from 40 million voters.
Infosecurity News
MOVEit Campaign Claims Millions More Victims
US government services firm is latest to reveal compromise
Infosecurity News
Supply Chain Attack Hits NHS Ambulance Trusts
Electronic patient records unavailable for over a week
Cyber Security News
MOVEit Hack: Over 400 Organizations' Hacked by CL0P Ransomware Group
The Russian ransomware group ‘Clop’ exploits a flaw in Progress Software's MOVEit product suite in late May to steal data from unprotected networks.
SecurityWeek
MOVEit Hack Could Earn Cybercriminals $100M as Number of Confirmed Victims Grows
Experts believe the Cl0p ransomware gang could earn as much as $100 million from the MOVEit hack, with hundreds of confirmed victims
Security Affairs
Apple could opt to stop iMessage and FaceTime services due to the government’s surveillance demands
Apple could opt to pull iMessage and FaceTime services in the U.K. in response to the government’s surveillance demands. In light of the government’s surveillance demands, Apple might consider withdrawing iMessage and FaceTime services from the U.K. The UK government wants to give more surveillance powers to its intelligence agencies proposing changes to the Investigatory Powers […]
The Hacker News
Apple Threatens to Pull iMessage and FaceTime from U.K. Amid Surveillance Demands
Apple opposes UK's surveillance plans that could weaken encryption in messaging apps.
SecurityWeek
Hacker Conversations: Inside the Mind of Daniel Kelley, ex-Blackhat
Interview with ex-Blackhat hacker Daniel Kelley on his journey through the cybercriminal world – motivations, experiences, trial and future.
SecurityWeek
MOVEit Hack: Number of Impacted Organizations Exceeds 340
The number of entities impacted by the MOVEit hack — either directly or indirectly — exceeds 340 organizations and 18 million individuals.
CyberSecurity Dive
MOVEit mass exploit timeline: How the file-transfer service attacks entangled victims
The slow-moving disaster has ensnared some of the world's largest enterprises. Cybersecurity experts expect further damage to come.
Bleeping Computer
Shutterfly says Clop ransomware attack did not impact customer data
Shutterfly, an online retail and photography manufacturing platform, is among the latest victims hit by Clop ransomware. Over the last few months, Clop ransomware gang has been exploiting a vulnerability in the MOVEit File Transfer utility to breach hundreds of companies to steal their data and attempt extortion against them.
Infosecurity News
Chinese Threat Group Compromises US Government
Threat actors forged authentication tokens to access email
Security Affairs
Cl0p hacker operating from Russia-Ukraine war front line – exclusive
CyberNews researchers discovered that at least one of the Cl0p ransomware gang masterminds is still residing in Ukraine. Original post at: https://cybernews.com/security/cl0p-hacker-hides-in-ukraine/ As the Cl0p ransomware gang continues to sow anxiety worldwide, affecting prominent companies like the BBC and Deutsche Bank, at least one of the gang masterminds, Cybernews discovered, is still residing in Ukraine. […]
Loading more articles....