As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.
Weekly Cybersecurity Report | Week 26, 2024
Information security updates and events from the past week
1 – The major telecom company KT Corporation is involved in a malware attack: more than 600,000 users were affected
Prominent South Korean media giant KT Corporation has found itself at the center of controversy following an investigation by JTBC, a leading Korean news outlet.
The company is accused of infecting over 600,000 users with malware, specifically targeting customers who use torrent services through Webhard’s Grid Program, a popular cloud service in Korea.
2 – Indonesia claims a cyber-attack hit its data center but won’t pay the $8 million ransom
Indonesia’s national data center was compromised by a hacking group that demanded an $8 million ransom that the government would not pay, authorities said Monday.
The cyber-attack has disrupted the services of more than 200 government agencies at both the national and regional levels since June 20, said Samuel Abrijani Pangrapan, director general of informatics applications at the Ministry of Communications and Informatics.
Some government services have returned – immigration services at airports and elsewhere are now operating – but efforts are ongoing to restore other services such as investment licensing, Pangrapan told reporters.
3 – LivaNova USA discloses data breach affecting 130,000 people
Medical device maker LivaNova USA is sending messages to 130,000 people warning that their personal information was compromised in an October 2023 data breach.
The incident, according to an alert letter to affected people, was discovered on November 19, about a month after hackers broke into its network. LivaNova says it disabled certain systems in response to the incident, without sharing further details about the nature of the attack.
However, in December 2023, the LockBit ransomware gang claimed responsibility for the incident and stealing 2.2 terabytes of data from the company.
4 – Japan’s space agency hit by multiple cyberattacks, but officials say no sensitive data was stolen
Japan’s space agency has suffered a series of cyberattacks since last year, but sensitive information related to rockets and satellites was not affected and is continuing to investigate and take preventive measures, officials said Friday.
Chief Cabinet Secretary Yoshimasa Hayashi has admitted that the Japanese Aerospace Exploration Agency, or JAXA, has had “several” cyber-attacks since late last year.
JAXA investigated the extent of the illegal access while shutting down the affected networks and verifying that they did not contain classified information about rocket and satellite operations and national security.
Officials on Friday said they were not aware of any information being leaked from the cyberattacks.
Defense Minister Minoru Kihara told reporters that the attacks on JAXA did not affect his office, but that he was closely following the investigation of the agency, which is one of his office’s main contractors.
Education and Science Minister Masahito Moriyama also said at a press conference on Friday that he believes there was no real damage from the cyber-attacks.
5 – Sweden claims that Russia attacked Nordic satellites
Sweden claims its satellites have been affected by “harmful interference” from Russia since the Nordic nation joined NATO last March.
The Swedish Post and Telecom Authority (PTS) first confronted Russia about the interference on March 21, according to Bloomberg, exactly two weeks after Sweden joined the North Atlantic Treaty Organization.
On June 4, according to reports, the Swedes escalated their complaints about the interference to the International Telecommunication Union in Switzerland.
Just joining NATO seems to have earned Sweden the wrath of Russia – the disruption efforts have focused on three Sirius satellites serving Scandinavia and parts of Eastern Europe. These are not affiliated with SiriusXM in the US but provide digital TV services in parts of Europe.
6 – Apple fixes AirPods Bluetooth vulnerability that could allow eavesdropping
Apple has released a firmware update for AirPods that could allow a malicious actor to gain unauthorized access to the headphones.
The vulnerability, tracked as CVE-2024-27867, affects AirPods (second generation and later), AirPods Pro (all models), AirPods Max, Powerbeats Pro, and Beats Fit Pro.
“When the headset looks for a connection request to one of the paired devices, an attacker in Bluetooth range may be able to spoof the intended source device and gain access to the headset”
The attacks highlighted in this report aren’t just incidents, they’re blueprints of the adversary’s arsenal. To protect your business you need the right protection. Cyberone is here to help! Check out our services.
