Top Stories
While the cyberattack has yet to be attributed, it aligns with a concerted cyberespionage effort to harvest and steal sensitive information stored on the agency's servers.
Japanese Space Agency JAXA hacked in summer cyberattack
- November 29, 2023
- 12:04 PM
- 0
The Japan Aerospace Exploration Agency (JAXA) was hacked in a cyberattack over the summer, which may have put sensitive space-related technology and data at risk.
The security breach was discovered this autumn when law enforcement authorities alerted Japan's space agency that its systems were compromised, as first reported by The Yomiuri Shimbun.
Confirming the infiltration, Chief Cabinet Secretary of Japan Hirokazu Matsuno revealed in a press conference that the attackers gained access to the agency's Active Directory (AD) server, a crucial component overseeing JAXA's network operations.
Black Basta ransomware made over $100 million from extortion
Russia-linked ransomware gang Black Basta has raked in at least $100 million in ransom payments from more than 90 victims since it first surfaced in April 2022, according to joint research from Corvus Insurance and Elliptic.
Over 329 victims worldwide were targeted by the cybercrime operation in double extortion attacks where the gang's affiliates steal sensitive data from compromised systems before deploying ransomware payloads across the targets' networks to encrypt hacked systems.
The stolen data is then used to pressure victims into paying the ransoms under the threat of publishing it on Black Basta's dark web leak site.
"Our analysis suggests that Black Basta has received at least $107 million in ransom payments since early 2022, across more than 90 victims. The largest received ransom payment was $9 million, and at least 18 of the ransoms exceeded $1 million. The average ransom payment was $1.2 million," the Corvus Threat Intel team said.
"Based on the number of known victims listed on Black Basta’s leak site through Q3 of 2023, our data indicates that at least 35% of known Black Basta victims paid a ransom."
This is consistent with ransomware negotiation company Coveware's findings that, despite record-low ransomware payments in 2022, roughly 41% of all ransomware victims have paid a ransom.
Black Basta surfaced as a Ransomware-as-a-Service (RaaS) operation in April 2022, targeting corporate entities worldwide in double-extortion attacks.
After the notorious Conti ransomware gang shut down operations in June 2022 due to a series of embarrassing data breaches, the cybercrime syndicate split into multiple groups, with one faction believed to be Black Basta
-
Over 20,000 vulnerable Microsoft Exchange servers exposed to attacks
Tens of thousands of Microsoft Exchange email servers in Europe, the U.S., and Asia exposed on the public internet are vulnerable to remote code execution flaws.
- December 02, 2023
- 01:54 PM
0
-
Google Chrome's new cache change could boost performance
Google is introducing a significant change to Chrome's Back/Forward Cache (BFCache) behavior, allowing web pages to be stored in the cache, even if a webmaster specifies not to store a page in the browser's cache.
- December 02, 2023
- 11:09 AM
- 0
-
US Health Dept urges hospitals to patch critical Citrix Bleed bug
The U.S. Department of Health and Human Services (HHS) warned hospitals this week to patch the critical 'Citrix Bleed' Netscaler vulnerability actively exploited in attacks.
- December 02, 2023
- 10:09 AM
- 0
The Week in Ransomware - December 1st 2023 - Police hits affiliates
An international law enforcement operation claims to have dismantled a ransomware affiliate operation in Ukraine, which was responsible for attacks on organizations in 71 countries.
- December 01, 2023
- 05:11 PM
- 0
TrickBot malware dev pleads guilty, faces 35 years in prison
On Thursday, a Russian national pleaded guilty to charges related to his involvement in developing and deploying the Trickbot malware, which was used in attacks against hospitals, companies, and individuals in the United States and worldwide.
- December 01, 2023
- 04:51 PM
- 0
Hackers use new Agent Raccoon malware to backdoor US targets
A novel malware named 'Agent Raccoon' (or Agent Racoon) is being used in cyberattacks against organizations in the United States, the Middle East, and Africa.
- December 01, 2023
- 02:15 PM
- 0
French government recommends against using foreign chat apps
Prime Minister of France Élisabeth Borne signed a circular last week requesting all government employees to uninstall foreign communication apps such as Signal, WhatsApp, and Telegram by December 8, 2023, in favor of a French messaging app named 'Olvid.'
- December 01, 2023
- 01:12 PM
- 5
VMware fixes critical Cloud Director auth bypass unpatched for 2 weeks
VMware has fixed a critical authentication bypass vulnerability in Cloud Director appliance deployments, a bug that was left unpatched for over two weeks since it was disclosed on November 14th.
- December 01, 2023
- 12:58 PM
- 0
Windows 10 KB5032278 update adds Copilot AI assistant, fixes 13 bugs
Microsoft has started rolling out its Copilot AI assistant to Windows 10 with the KB5032278 November 2023 non-security preview update for systems running Windows 10, version 22H2.
- December 01, 2023
- 12:10 PM
- 2
Upgrade to hybrid work with $400 off a refurbished Surface 3 laptop
A good laptop is crucial to getting things done. This refurbished Surface 3 laptop lets you bring everything you need with you for $399.97, $444 off the $844 MSRP.
- December 01, 2023
- 07:12 AM
- 0
LogoFAIL attack can install UEFI bootkits through bootup logos
Multiple security vulnerabilities collectively named LogoFAIL affect image-parsing components in the UEFI code from various vendors. Researchers warn that they could be exploited to hijack the execution flow of the booting process and to deliver bootkits.
- November 30, 2023
- 10:08 PM
- 0
US govt sanctions North Korea’s Kimsuky hacking group
The Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned the North Korean-backed Kimsuky hacking group for stealing intelligence in support of the country's strategic goals.
- November 30, 2023
- 05:08 PM
- 2
WhatsApp's new Secret Code feature hides your locked chats
WhatsApp has introduced a new Secret Code feature that allows users to hide their locked chats by setting a custom password.
- November 30, 2023
- 04:32 PM
- 0
. . . . . . . . . .
No comments:
Post a Comment