I took a week off for vacation, but I’m back with the goods this week.
EdX – EC-Council | Digital Forensic Essentials – Complete
- Europe’s Largest Parking App Provider Informs Customers of Data Breach – EasyPark says hackers stole European customer information, including partial IBAN or payment card numbers.
- 4-year campaign backdoored iPhones using possibly the most advanced exploit ever – “Triangulation” infected dozens of iPhones belonging to employees of Moscow-based Kaspersky.
- Qatar to Add Cybersecurity Curricula in Private Schools – The goal is to raise cybersecurity awareness for all students in the country.
- Nearly 11 million SSH servers vulnerable to new Terrapin attacks – Almost 11 million internet-exposed SSH servers are vulnerable to the Terrapin attack that threatens the integrity of some SSH connections.
- Zeppelin ransomware source code sold for $500 on hacking forum – A threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the Zeppelin ransomware builder for just $500.
- Mandiant’s Twitter Account Restored After Six-Hour Crypto Scam Hack – American cybersecurity firm and Google Cloud subsidiary Mandiant had its X (formerly Twitter) account compromised for more than six hours by an unknown attacker to propagate a cryptocurrency scam.
- Cybercriminals Share Millions of Stolen Records During Holiday Break – The “Leaksmus” event on the Dark Web exposed some 50 million records containing sensitive information from people all around the world.
- Cyberattackers Target Nuclear Waste Company via LinkedIn – The hackers were unsuccessful in their attempt, but this is not the first time the company has experienced this kind of attack.
- Victoria court recordings exposed in reported ransomware attack – Australia’s Court Services Victoria (CSV) is warning that video recordings of court hearings were exposed after suffering a reported Qilin ransomware attack.
- The biggest cybersecurity and cyberattack stories of 2023 – 2023 was a big year for cybersecurity, with significant cyberattacks, data breaches, new threat groups emerging, and, of course, zero-day vulnerabilities.