{"id":8685,"date":"2024-03-18T12:56:28","date_gmt":"2024-03-18T09:56:28","guid":{"rendered":"https:\/\/cyberone.bg\/?p=8685"},"modified":"2024-03-18T12:56:28","modified_gmt":"2024-03-18T09:56:28","slug":"weekly-cybersecurity-report-week-12-2024","status":"publish","type":"post","link":"https:\/\/cyberone.bg\/en\/weekly-cybersecurity-report-week-12-2024","title":{"rendered":"Weekly Cybersecurity Report | Week 12, 2024"},"content":{"rendered":"

As your dedicated cybersecurity services provider, Cyberone<\/a><\/strong> equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.<\/p>\n

Weekly Cybersecurity Report | Week 12, 2024<\/strong><\/h2>\n

Information security updates and events from the past week<\/span><\/b>\u00a0<\/span><\/h3>\n

\u00a0<\/p>\n

1 \u2013 Microsoft reports \u2013 the Russian Midnight Blizzard group managed to break into our corporate network, access source code and internal systems.<\/span><\/b>\u00a0<\/span><\/h3>\n

Microsoft\u2019s update follows the report published in January according to which hackers from Russia gained access to the email accounts of company executives.<\/span>\u00a0<\/span><\/p>\n

Microsoft is now reporting that through those email accounts the attackers obtained identification details, through which they later connected to the company\u2019s internal systems and were exposed to sensitive information.<\/span>\u00a0<\/span><\/p>\n

Learn more:<\/a> https:\/\/www.bleepingcomputer.com\/news\/microsoft\/microsoft-says-russian-hackers-breached-its-systems-accessed-source-code\/<\/span><\/a>\u00a0<\/span><\/p>\n

2 \u2013 Several government offices in France suffer from a significant DDos attack.<\/span><\/b>\u00a0<\/span><\/h3>\n

In a statement issued by the Prime Minister\u2019s Office in France, it was stated that the attack damaged the availability of some services, but there is no fear of data theft.<\/span>\u00a0<\/span><\/p>\n

The Anonymous Sudan group is the one responsible for the attack while announcing that it has continuously attacked about 17k IP addresses and 300 domains.<\/span>\u00a0<\/span><\/p>\n

3 \u2013 The US Cyber and Infrastructure Protection Agency (CISA) reports that attackers were able to exploit a weakness in Ivanti\u2019s product, break into the agency\u2019s network and access two internal systems.<\/span><\/b>\u00a0<\/span><\/h3>\n

CISA reports that as soon as it was detected, they disabled the systems immediately.<\/span>\u00a0<\/span><\/p>\n

The source with details reports that the attackers were able to access the Infrastructure Protection (IP) Gateway system and the Chemical Security Assessment Tool (CSAT) system.<\/span>\u00a0<\/span><\/p>\n

Both systems contain sensitive security information.<\/span>\u00a0<\/span><\/p>\n

CISA refused to confirm the above details.<\/span>\u00a0<\/span><\/p>\n

4 \u2013 Roku canceled unauthorized subscribers and refunded 15 thousand hacked accounts<\/span><\/b>\u00a0<\/span><\/h3>\n

The company canceled unauthorized subscribers after discovering \u201csuspicious activity\u201d.<\/span>\u00a0<\/span><\/p>\n

The streaming TV giant with revenues of $3.4 billion a year, announced that from the end of December to the end of February, hackers managed to break into 15K accounts and sold them for $50 per account.<\/span>\u00a0<\/span><\/p>\n

\u201cAfter gaining access, they changed Roku login information for accounts and, in a limited number of cases, attempted to purchase streaming subscriptions,\u201d the company said.<\/span>\u00a0<\/span><\/p>\n

\u201cHowever, accessing the accounts did not provide the attackers with access to social security numbers, full payment account numbers, dates of birth or similar sensitive personal information.\u201d<\/span>\u00a0<\/span><\/p>\n

Roku\u2019s security team forced password resets and investigated account activity to determine if the hackers made unauthorized charges, any unauthorized charges were reversed, and users were refunded.<\/span>\u00a0<\/span><\/p>\n

Because password reuse is so common, hackers have little trouble breaking into accounts on a variety of platforms.<\/span><\/p>\n

5 \u2013 Researchers hacked Google A.I and made $50,000<\/span><\/b>\u00a0<\/span><\/h3>\n

At Google\u2019s LLM bugSWAT event in Las Vegas, researchers uncovered and reported bugs in the company\u2019s Bard AI (formerly known as Gemini) and were awarded $50,000.<\/span>\u00a0<\/span><\/p>\n

The security flaws the researchers found allowed DoS attacks, extraction of user data and access to uploaded images belonging to a specific user.<\/span>\u00a0<\/span><\/p>\n

Learn more:<\/a> https:\/\/cybersecuritynews.com\/researchers-hacked-google\/<\/span><\/a>\u00a0<\/span><\/p>\n

6 \u2013 The ransomware attack on Xplain exposed 65,000 files containing data relevant to the Swiss federal government.<\/span><\/b>\u00a0<\/span><\/h3>\n

The May 23 ransomware attack on Xplain affected tens of thousands of federal government files, Switzerland\u2019s National Cyber Security Center (NCSC) said.<\/span>\u00a0<\/span><\/p>\n

Learn more:<\/a> https:\/\/securityaffairs.com\/160174\/data-breach\/xplain-data-breach-report.html<\/span><\/a>\u00a0<\/span><\/p>\n

7 \u2013 Canada\u2019s anti-money laundering agency shut down after cyber attack<\/span><\/b>\u00a0<\/span><\/h3>\n

The Financial Transactions and Reporting Analysis Center of Canada (FINTRAC) has announced that a \u201ccyber incident\u201d has forced it to shut down its corporate systems as a precaution.<\/span>\u00a0<\/span><\/p>\n

FINTRAC is a government agency in Canada that acts as the country\u2019s financial intelligence unit. It deals with money laundering investigations, monitors millions of suspicious transactions every year and discloses thousands of revelations about the flow of illegal funds to the police.<\/span>\u00a0<\/span><\/p>\n

The agency issued a brief press statement on its website saying there was no access to the center\u2019s classified intelligence or systems.<\/span>\u00a0<\/span><\/p>\n

Learn more:<\/a> https:\/\/www.bleepingcomputer.com\/news\/security\/canadas-anti-money-laundering-agency-offline-after-cyberattack\/<\/span><\/a>\u00a0<\/span><\/p>\n

8 \u2013 Stanford: 27,000 people\u2019s data was stolen in a ransomware attack in September<\/span><\/b>\u00a0<\/span><\/h3>\n

Stanford University says the personal information of 27,000 people was stolen in a ransomware attack that affected the Department of Public Safety (SUDPS) network.<\/span>\u00a0<\/span><\/p>\n

The university discovered the attack on September 27 and revealed a month later that it was investigating a cyber security incident affecting SUDPS systems.<\/span>\u00a0<\/span><\/p>\n

In an update issued Monday, Stanford said the attackers did not gain access to other systems outside of the Department of Public Safety\u2019s network.<\/span>\u00a0<\/span><\/p>\n

Learn more: https:\/\/www.bleepingcomputer.com\/news\/security\/stanford-data-of-27-000-people-stolen-in-september-ransomware-attack\/<\/span><\/a>\u00a0<\/span><\/p>\n

\u00a0<\/p>\n

The attacks highlighted in this report aren\u2019t just incidents; they\u2019re blueprints of the adversary\u2019s arsenal. To protect your business you need the right protection. Cyberone is here to help! Check out our services<\/a>.<\/em><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"

As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape. Weekly Cybersecurity Report | Week 12, 2024 Information security updates and events from the past week\u00a0 \u00a0 1 \u2013 Microsoft reports […]<\/p>\n","protected":false},"author":6,"featured_media":8600,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[58],"tags":[57,65,56],"class_list":["post-8685","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-weekly-cyber-updates","tag-cybersecurity","tag-weekly-cybersecurity-report","tag-weekly-update"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8685","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/comments?post=8685"}],"version-history":[{"count":1,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8685\/revisions"}],"predecessor-version":[{"id":8686,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8685\/revisions\/8686"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/media\/8600"}],"wp:attachment":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/media?parent=8685"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/categories?post=8685"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/tags?post=8685"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}