Issue #97 - May 13, 2024
- Weekly INK
- May 13, 2024
- 1 min read
Russian Actors Weaponize Legitimate Services in Multi-Malware Attack
Source: Infosecurity Magazine
A novel cyber campaign by Russian speaking actors abused legitimate internet services, such as GitHub and FileZilla, to deploy multiple malware variants, Recorded Future has reported. The adaptive tactics and advanced capabilities used present significant challenges in tracking and defending against this type of threat, the researchers said.
900k Impacted by Data Breach at Mississippi Healthcare Provider
Source: Security Week
Mississippi healthcare provider Singing River Health System (SRHS) this week started notifying roughly 900,000 individuals that their personal information was compromised in an August 2023 ransomware attack.
Cinterion IoT Cellular Modules Vulnerable to SMS Compromise
Source: Data Breach Today
Cinterion cellular modems, which are widely deployed in equipment used across industrial, healthcare and other operational technology environments, can be compromised via malicious SMS messages, researchers warned.
Scammers Fake Docusign Templates to Blackmail & Steal From Companies
Source: Dark Reading
Cybercriminals are trafficking Docusign assets that allow for easy extortion and business email compromise. Phishing emails mimicking Docusign are rising, thanks to a thriving underground marketplace for fake templates and login credentials.
FBI seize BreachForums hacking forum used to leak stolen data
Source: Bleeping Computer
The FBI has seized the notorious BreachForums hacking forum that leaked and sold stolen corporate data to other cybercriminals. The seizure occurred on Wednesday morning, soon after the site was used last week to leak data stolen from a Europol law enforcement portal.