Daily Cyber Brief
A Chilean government agency was hit by a ransomware attack, Microsoft uncovered a flaw in TikTok that allowed account takeover, and Ragnar Locker claims hack on TAP Air Portugal...
Cybersecurity
Montenegro on Wednesday blamed a criminal group called Cuba ransomware for cyber attacks that have hit its government digital infrastructure since last week, described by officials as unprecedented. Public Administration Minister Maras Dukaj told state…
The U.S. Army will establish an office dedicated to offensive cyber and space capabilities next year amid rapidly shifting priorities, officials said. The office, dubbed Program Manager Cyber and Space, will fall under the Program Executive Office for Intelligence, Electronic…
Chrome version 104 accidentally introduced a bug that removes the user requirement to approve clipboard writing events from websites they visit. This functionality isn't limited to Google Chrome. Safari and Firefox also allow web pages to write to the system clipboard…
Chile’s cybersecurity incident response team said an unnamed government agency is dealing with a ransomware attack that targeted the organization’s Microsoft tools and VMware ESXi servers. Chile’s CSIRT said the attack started last Thursday but did not respond to requests…
Five imposter extensions for the Google Chrome web browser masquerading as Netflix viewers and others have been found to track users' browsing activity and profit of retail affiliate programs. "The extensions offer various functions such as enabling users to watch Netflix…
The Ragnar Locker ransomware gang has claimed an attack on the flag carrier of Portugal, TAP Air Portugal, disclosed by the airline after its systems were hit on Thursday night. The company said the attack was blocked and added that it found no evidence indicating the…
The International Centre for Migration Policy Development (ICMPD) confirmed on Wednesday it suffered a cyberattack that led to a data breach. ICMPD operates in 90 countries conducting research, projects and activities centered around migration…
A new report by pure-play managed detection and response (MDR) service provider eSentire has connected the data breach affecting Cisco Talos systems in May with an Evil Corp-affiliate group. More specifically, eSentire's Threat Response Unit (TRU) discovered that the…
Microsoft found and reported a high severity flaw in the TikTok Android app in February that allowed attackers to "quickly and quietly" take over accounts with one click by tricking targets into clicking a specially crafted malicious link. "Attackers could have leveraged the…
A cryptomining campaign has potentially infected thousands of machines worldwide by hiding in a Google Translate download for desktops. According to researchers at Check Point, the threat actor behind it is a Turkish-speaking software developer called Nitrokod, which offers…