Daily Cyber Brief

CISA prepares for quantum computing threats, RansomEXX claims responsibility for Bombardier hack, and LockBit is implicated in an attack on a French hospital...

Cybersecurity

Cyber agency highlights emerging threats from quantum computing

The Cybersecurity and Infrastructure Security Agency (CISA) released new advice Wednesday on ways critical infrastructure should prepare for potential security risks stemming from quantum computing. While quantum computing provides greater speed…

An experimental new attack can steal data from air-gapped computers using a phone’s gyroscope

A security researcher known for devising inventive ways to siphon data from computers that are disconnected from the internet has found a new exploit able to exfiltrate data to a nearby smartphone. Air-gapped systems are physically segregated and incapable of connecting…

Quantum ransomware attack disrupts govt agency in Dominican Republic

The Dominican Republic's Instituto Agrario Dominicano has suffered a Quantum ransomware attack that encrypted multiple services and workstations throughout the government agency. The Instituto Agrario Dominicano (IAD) is part of the Ministry of…

LockBit ransomware group implicated in crippling attack on French hospital

French police sources have named the LockBit ransomware group as the culprits behind the devastating attack on a hospital in France. Center Hospital Sud Francilien (CHSF) in Corbeil-Essonnes — about an hour south-east of Paris — announced that it was hit early Sunday…

GitLab ‘strongly recommends’ patching critical RCE vulnerability

GitLab is urging users to install a security update for branches 15.1, 15.2, and 15.3 of its community and enterprise editions to fix a critical vulnerability that could enable an attacker to perform remote command execution via Github import. GitLab is a web-based Git..

Air-Gapped Devices Can Send Covert Morse Signals via Network Card LEDs

A security researcher who has a long line of work demonstrating novel data exfiltration methods from air-gapped systems has come up with yet another technique that involves sending Morse code signals via LEDs on network interface cards (NICs)…

RansomEXX claims ransomware attack on Sea-Doo, Ski-Doo maker

The RansomEXX ransomware gang is claiming responsibility for the cyberattack against Bombardier Recreational Products (BRP), disclosed by the company on August 8, 2022. At the time, the Canadian maker of Ski-Doo snowmobiles, Sea-Doo jet skis, ATVs, motorcycles…

Hackers Using Fake DDoS Protection Pages to Distribute Malware

WordPress sites are being hacked to display fraudulent Cloudflare DDoS protection pages that lead to the delivery of malware such as NetSupport RAT and Raccoon Stealer. "A recent surge in JavaScript injections targeting WordPress sites has resulted in fake DDoS prevent…

Hackers use AiTM attack to monitor Microsoft 365 accounts for BEC scams

A new business email compromise (BEC) campaign has been discovered combining sophisticated spear-phishing with Adversary-in-The-Middle (AiTM) tactics to hack corporate executives' Microsoft 365 accounts, even those protected by MFA. By accessing accounts of…

Plex warns users to reset passwords after a data breach

The Plex media streaming platform is sending password reset notices to many of its users in response to discovering unauthorized access to one of its databases. According to the letter that a reader shared with BleepingComputer, the intruder potentially accessed a limited…

Daily Cyber Brief

CISA prepares for quantum computing threats, RansomEXX claims responsibility for Bombardier hack, and LockBit is implicated in an attack on a French hospital...

Cybersecurity

Join the conversation

Overt Operator