{"id":8706,"date":"2024-04-05T10:58:01","date_gmt":"2024-04-05T07:58:01","guid":{"rendered":"https:\/\/cyberone.bg\/?p=8706"},"modified":"2024-04-05T10:58:01","modified_gmt":"2024-04-05T07:58:01","slug":"weekly-cybersecurity-report-week-14-2024","status":"publish","type":"post","link":"https:\/\/cyberone.bg\/en\/weekly-cybersecurity-report-week-14-2024","title":{"rendered":"Weekly Cybersecurity Report | Week 14, 2024"},"content":{"rendered":"<p>As your dedicated cybersecurity services provider,<strong> <a href=\"https:\/\/cyberone.bg\/\">Cyberone<\/a><\/strong> equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.<\/p>\n<h2><strong>Weekly Cybersecurity Report | Week 14, 2024<\/strong><\/h2>\n<h4><b><span data-contrast=\"auto\">Information security updates and events from the past week<\/span><\/b><span data-ccp-props=\"{&quot;335551550&quot;:1,&quot;335551620&quot;:1,&quot;335559685&quot;:0,&quot;335559739&quot;:60}\">\u00a0<\/span><\/h4>\n<h3><b><span data-contrast=\"auto\">1 \u2013 AT&T finally confirms that 73 million customer data was leaked on a hacker forum<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">AT&T has finally confirmed that it is affected by a data breach affecting 73 million current and former customers, after initially denying that the leaked data originated with them.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">This comes after AT&T repeatedly denied in the past two weeks that vast amounts of customer data was leaked from them or that their systems were hacked.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/atandt-confirms-data-for-73-million-customers-leaked-on-hacker-forum\/\"><span data-contrast=\"none\">https:\/\/www.bleepingcomputer.com\/news\/security\/atandt-confirms-data-for-73-million-customers-leaked-on-hacker-forum\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">2 \u2013 Yacht retailer MarineMax reveals data breach after cyber attack<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">One of the world\u2019s largest recreational boat and yacht stores, MarineMax, says attackers stole employee and customer data after breaching its systems in a cyber-attack in March.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The Florida yacht seller said in a March 12 filing with the SEC that it did not store sensitive data on the compromised systems. Still, on Monday, a new 8-K filing revealed that the malicious actors gained access and stole personal data belonging to an unknown number of people.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/yacht-retailer-marinemax-discloses-data-breach-after-cyberattack\/\"><span data-contrast=\"none\">https:\/\/www.bleepingcomputer.com\/news\/security\/yacht-retailer-marinemax-discloses-data-breach-after-cyberattack\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">3 \u2013 PandaBuy shopping platform data leak affects 1.3 million users<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Data belonging to more than 1.3 million customers of the online shopping platform PandaBuy was allegedly leaked after two threat actors exploited multiple vulnerabilities to hack into the systems.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Yesterday, a threat actor named \u2018Sanggiero\u2019 claimed a breach at PandaBuy, allegedly together with another threat actor named \u2018IntelBoker\u2019.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/shopping-platform-pandabuy-data-leak-impacts-13-million-users\/\"><span data-contrast=\"none\">https:\/\/www.bleepingcomputer.com\/news\/security\/shopping-platform-pandabuy-data-leak-impacts-13-million-users\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">4 \u2013 Sensitive files mysteriously disappeared from EUROPOL headquarters<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">The website Politico reported that Europol suffered a serious security breach, a group of sensitive files of senior law enforcement officials, including Europol CEO Catherine de Boll, disappeared last summer.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The sensitive documents were in a secure storage room at Europol headquarters in The Hague. The European Police opened an investigation, which is still ongoing, into the security breach.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/securityaffairs.com\/161416\/data-breach\/europol-highly-sensitive-files-disappeared.html\"><span data-contrast=\"none\">https:\/\/securityaffairs.com\/161416\/data-breach\/europol-highly-sensitive-files-disappeared.html<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">5 \u2013 Data breach at Prudential Financial: About 36,000 user data was stolen<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Prudential Financial, from the financial services sector based in Newark, New Jersey, has reported a serious security incident.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The breach, which was discovered on February 5, 2024, happened just a day before. This involved sophisticated social engineering tactics that led to unauthorized access to the company\u2019s external systems.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/cybersecuritynews.com\/prudential-financial-data-breach\/\"><span data-contrast=\"none\">https:\/\/cybersecuritynews.com\/prudential-financial-data-breach\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">6 \u2013 Omni hotels have been experiencing a nationwide IT outage since Friday<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Omni Hotels & Resorts experienced a chain-wide outage that brought down its IT systems on Friday, affecting reservations, hotel room door locks and point-of-sale (POS) systems.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The official site was down on Friday, and an alert was added after it came back online over the weekend, warning customers, \u201cDear Guest, We are currently experiencing technical difficulties, please try again later.\u201d<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/omni-hotels-experiencing-nationwide-it-outage-since-friday\/\"><span data-contrast=\"none\">https:\/\/www.bleepingcomputer.com\/news\/security\/omni-hotels-experiencing-nationwide-it-outage-since-friday\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">7 \u2013 Jackson County in state of emergency after ransomware attack<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Jackson County, Missouri, entered a state of emergency after a ransomware attack took down some county services on Tuesday.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">\u201cJackson County has confirmed that a ransomware attack was responsible for the disruption of several county services today,\u201d the Missouri county said.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/jackson-county-in-state-of-emergency-after-ransomware-attack\/\"><span data-contrast=\"none\">https:\/\/www.bleepingcomputer.com\/news\/security\/jackson-county-in-state-of-emergency-after-ransomware-attack\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">8 \u2013 The US State Department is allegedly investigating the theft of government data<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">The US State Department is investigating claims of a cyber incident after a threat actor leaked documents allegedly stolen from a government contractor.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Acuity, which was reportedly hacked to steal this information, is a technology consulting firm with nearly 400 employees and $100+ million in annual revenue.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">It provides DevSecOps, IT operations and modernization, cyber security, data analytics, and operations support services to civilian and national security customers.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/us-state-department-investigates-alleged-theft-of-government-data\/\"><span data-contrast=\"none\">https:\/\/www.bleepingcomputer.com\/news\/security\/us-state-department-investigates-alleged-theft-of-government-data\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">9 \u2013 Notice from Activision: Enable 2FA to secure accounts recently stolen by malware<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">An infostealer malware campaign collected millions of hits from users of various gaming sites, including players who use cheats, pay-to-cheat services.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The details emerged after Alexander Wallace, aka \u2018PainCorp\u2019, notified Zebleer, the developer of Phantom Overlay cheats for Call of Duty and Counter-Strike, about a database of information thieves he had found.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">\u201cThe DB for the thief represents far more gaming-related accounts than anything else,\u201d Zebleer said, adding that \u201cthis is the largest data-stealing malware campaign targeting gamers in history.\u201d<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/activision-enable-2fa-to-secure-accounts-recently-stolen-by-malware\/\"><span data-contrast=\"none\">https:\/\/www.bleepingcomputer.com\/news\/security\/activision-enable-2fa-to-secure-accounts-recently-stolen-by-malware\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">10 \u2013 The Hot Topic chain was hit by credential stuffing attacks<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">US retailer Hot Topic revealed that two waves of credential stuffing attacks in November exposed customers\u2019 personal information and partial payment data.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The Hot Topic fashion chain has over 10,000 employees in more than 630 stores across the US and Canada, corporate headquarters and two distribution centers.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/retail-chain-hot-topic-hit-by-new-credential-stuffing-attacks\/\"><span data-contrast=\"none\">https:\/\/www.bleepingcomputer.com\/news\/security\/retail-chain-hot-topic-hit-by-new-credential-stuffing-attacks\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p>\u00a0<\/p>\n<p><strong><em>The attacks highlighted in this report aren\u2019t just incidents; they\u2019re blueprints of the adversary\u2019s arsenal. To protect your business you need the right protection. Cyberone is here to help! Check out our <a href=\"https:\/\/cyberone.bg\/en\/services\">services<\/a>.<\/em><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape. Weekly Cybersecurity Report | Week 14, 2024 Information security updates and events from the past week\u00a0 1 \u2013 AT&#038;T finally confirms [&hellip;]<\/p>\n","protected":false},"author":6,"featured_media":8606,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[58],"tags":[57,65,56],"class_list":["post-8706","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-weekly-cyber-updates","tag-cybersecurity","tag-weekly-cybersecurity-report","tag-weekly-update"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8706","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/comments?post=8706"}],"version-history":[{"count":1,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8706\/revisions"}],"predecessor-version":[{"id":8707,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8706\/revisions\/8707"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/media\/8606"}],"wp:attachment":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/media?parent=8706"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/categories?post=8706"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/tags?post=8706"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}