As digital threats evolve, Pepco Group's Hungarian arm becomes the latest casualty, falling victim to a cunning phishing attack that siphoned off $16.8 million. GitHub, on the parallel, is dealing with a repo confusion supply chain attack, as millions of malware-laced code repositories infiltrate its platform. In other news, details on the Optum cyberattack have emerged as BlackCat ransomware claimed responsibility for stealing 6TB of data from Change Healthcare. Read on for details.
01
European retailer Pepco Group confirmed that its Hungarian business was targeted in a sophisticated phishing attack resulting in a loss of approximately €15.5 million (~ $16.8 million).
02
GitHub is facing an ongoing repo confusion attack where millions of code repositories containing obfuscated malware are being uploaded, with even legitimate forks being targeted.
03
Kempten University of Applied Sciences, a university in Germany, was targeted by a cyberattack, leading to the shutdown of its IT infrastructure, affecting around 5,500 students.
04
Chinese PC maker Acemagic acknowledged that some of its mini PCs were shipped with pre-installed malware, including Bladabindi and Redline Stealer, owing to software adjustments made to reduce boot time.
05
The Biden administration issued an executive order that aims to prevent the large-scale transfer of Americans' sensitive personal data to countries of concern, safeguarding genomic, biometric, personal health, geolocation, and financial data, and certain types of PII.
06
The BlackCat ransomware group claimed responsibility for the Optum cyberattack and for stealing 6TB of data, including medical, dental, and insurance records, Change Healthcare's source code, and more.
07
A new extortion group, named Mogilevich, listed Ireland’s Department of Foreign Affairs (DFA) on its leak site and claimed to offer 7GB of stolen documents for sale. The DFA has found no such evidence yet.
08
Infoblox found the Savvy Seahorse threat group using DNS CNAME records to create a traffic distribution system for sophisticated financial scam campaigns, leveraging Facebook ads to lure users.
09
JFrog found at least 100 malicious AI ML models on the Hugging Face platform, some of which are capable of executing code on a victim’s machine, offering attackers a persistent backdoor.
10
The National Cybersecurity Agency of France (ANSSI) reported that ransomware attacks in the country witnessed a 30% surge in 2023, with SMEs and mid-sized businesses accounting for 34% of targeted organizations.
