As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.
Weekly Cybersecurity Report | Week 16, 2024
Information security updates and events from the past week
1 – Cyber-attack on OT systems A group of hackers from Ukraine, together with the Ukrainian Ministry of Intelligence, claim that they disabled tens of thousands of sensors of the sewer system in Moscow.
The attackers claim that they broke into the network of the Moskollector company and disabled about 87,000 sensors used by the company to monitor the various systems in the sewer, gas and other networks.
The attackers also claim that they made use of the Fuxnet malware, designed to damage OT systems, and disrupted dozens of different controllers.
In addition, the attackers deleted about 30 TB of information, including backups.
At this point there is no official confirmation or any reference to the claims from the Moskollector company.
2 – Chipmaker Nexperia under attack after ransomware gang leaked data
Dutch chipmaker Nexperia confirmed late last week that hackers breached its network in March 2024 after a ransomware gang leaked samples of stolen data.
Nexperia is a subsidiary of the Chinese company Wingtech Technology, which operates semiconductor manufacturing plants in Germany and the UK, producing 100 billion units, including transistors, diodes, MOSFETs and logic devices.
In a press statement on Friday, the company disclosed a data breach that forced it to shut down IT systems and launch an investigation to determine the extent of the impact.
Learn more: https://www.bleepingcomputer.com/news/security/chipmaker-nexperia-confirms-breach-after-ransomware-gang-leaks-data/
3 – Daixin ransomware gang claims attack on Omni Hotels
The Daixin Team ransomware gang claimed a recent cyber-attack on Omni Hotels & Resorts and is now threatening to release sensitive customer information if a ransom is not paid.
The hotel chain was added to the Daixin Team dark web leak site over the weekend, two weeks after a massive shutdown brought down the company’s IT systems and affected booking, hotel room door locks and point-of-sale (POS) systems.
Learn more: https://www.bleepingcomputer.com/news/security/daixin-ransomware-gang-claims-attack-on-omni-hotels/
4 – Hacker claims to have leaked 2.8 million Giant Tiger internet records
Canadian retail chain Giant Tiger disclosed a data breach in March 2024.
A threat actor has now publicly claimed responsibility for the data breach and leaked 2.8 million hacker forum entries they claim are from Giant Tiger customers.
Data breach monitoring service HaveIBeenPwned has added the leaked database to its website to make it easier for users to check if their information has been compromised.
Learn more: https://www.bleepingcomputer.com/news/security/hacker-claims-giant-tiger-data-breach-leaks-28m-records-online/
5 – A Trojan horse called “Coyote” hits banks in Brazil
A powerful new banking Trojan known as “Coyote” is sweeping Brazil’s financial sector, prompting urgent warnings from cybersecurity researchers.
This sophisticated malware, discovered by Seqrite, represents a disturbing leap in the evolution of cybercrime targeting financial institutions.
Learn more: https://securityonline.info/coyote-trojan-strikes-brazils-banks-experts-warn-of-next-gen-threat/
6 – Roku company warns 576,000 accounts hacked in credential stuffing attacks
Roku warns that 576,000 accounts have been compromised in new credential stuffing attacks after revealing another incident that compromised 15,000 accounts in early March.
The company said the attackers used login information stolen from other online platforms to hack as many active Roku accounts as possible in credential stuffing attacks.
Learn more: https://www.bleepingcomputer.com/news/security/roku-warns-576-000-accounts-hacked-in-new-credential-stuffing-attacks/
7 – AT&T now says a data breach affected 51 million customers
AT&T is notifying 51 million former and current customers, warning them of a data breach that exposed their personal information on a hacking forum. However, the company has not yet disclosed how the data was obtained.
These announcements are related to the recent leak of a huge amount of AT&T customer data on hacking forums that was offered for sale for $1 million in 2021.
The attacks highlighted in this report aren’t just incidents, they’re blueprints of the adversary’s arsenal. To protect your business you need the right protection. Cyberone is here to help! Check out our services.