Daily Cyber Brief
Belarusian hacktivists breach Russia's internet regulator, personal data of over 4,000 is leaked in Radio Free Asia hack, and Guadeloupe's government is fighting a major cyberattack...
Cybersecurity
People associated with the U.S. military were behind dozens of phony Facebook accounts, more than a dozen pages, a pair of groups and 26 Instagram accounts that pushed pro-U.S. messaging while attempting to hide their real identities, Facebook’s parent company Meta…
A unit of the Russian internet and media regulator Roskomnadzor confirmed Saturday that hackers had breached its systems after the Belarusian hacktivist group known as the Cyber Partisans claimed to attack the organization. The Russian General Radio Frequency Center…
The Luna Moth campaign has extorted hundreds of thousands of dollars from several victims in the legal and retail sectors. The attacks are notable for employing a technique called callback phishing or telephone-oriented attack delivery (TOAD), wherein the victims are…
Threat detection firm CloudSEK has identified thousands of applications leaking Algolia API keys, and tens of applications with hardcoded admin secrets, which could allow attackers to steal the data of millions of users. Organizations can use Algolia’s API to incorporate into…
Microsoft said today that security vulnerabilities found to impact a web server discontinued since 2005 have been used to target and compromise organizations in the energy sector. As cybersecurity company Recorded Future revealed in a report published in April, state-backed…
The Donut (D0nut) extortion group has been confirmed to deploy ransomware in double-extortion attacks on the enterprise. BleepingComputer first reported on the Donut extortion group in August, linking them to attacks on Greek natural gas company DESFA, UK…
Radio Free Asia, a U.S. government-sponsored news outlet, announced a breach this week that affected almost 4,000 people – leaking troves of personal information including Social Security and passport numbers, as well as financial data. According to documents filed with…
As Mastodon experiences explosive user growth as a replacement for Twitter, infosec experts are pointing out security holes in the social media network. From an anonymous server collecting user information to configuration errors that create vulnerabilities, the increased…
The French Caribbean island of Guadeloupe is fighting what it calls a “large-scale” cyberattack on its computer networks. The government is working with an unidentified specialized firm to limit the consequences of the attack as it tries to restore its systems as…
The Cybersecurity and Infrastructure Security Agency has published updates to its guide for state, local, tribal, and territorial cybersecurity defenders protecting infrastructure across the U.S. The Infrastructure Resilience Planning Framework (IRPF) was created in 2021 to help…