The Information Highway

The Information Highway

RomCom exploits vulnerabilities

Threat-Advisory-Banner3

Threat update

Recent reports have uncovered that a threat actor known as RomCom has been exploiting two zero-day vulnerabilities, one in Mozilla Firefox and another in Microsoft Windows, to deploy their proprietary backdoor malware. These vulnerabilities, CVE-2024-9680 and CVE-2024-49039, have been actively targeted in attacks across Europe and North America. Continue reading this Cybersecurity Threat Advisory to learn how to defend against RomCom. 

Continue reading
  119 Hits

Cisco takes DevHub portal offline after hacker publishes stolen data

Cisco

Cisco confirmed today that it took its public DevHub portal offline after a threat actor leaked "non-public" data, but it continues to state that there is no evidence that its systems were breached.

Continue reading
  220 Hits

Cisco investigates breach after stolen data for sale on hacking forum

Cisco

Cisco has confirmed that it is investigating recent claims that it suffered a breach after a threat actor began selling allegedly stolen data on a hacking forum.

Continue reading
  229 Hits

Embargo ransomware escalates attacks to cloud environments

ransomware-2

Microsoft warns that ransomware threat actor Storm-0501 has recently switched tactics and now targets hybrid cloud environments, expanding its strategy to compromise all victim assets. 

Continue reading
  227 Hits

Dell investigates data breach claims after hacker leaks employee info

Dell-headpic

Dell has confirmed that they are investigating recent claims that it suffered a data breach after a threat actor leaked the data for over 10,000 employees. 

Continue reading
  361 Hits

Fortinet confirms data breach after hacker claims to steal 440GB of files

Fortinet

Cybersecurity giant Fortinet has confirmed it suffered a data breach after a threat actor claimed to steal 440GB of files from the company's Microsoft SharePoint server.

Continue reading
  351 Hits

T-Mobile denies it was hacked, links leaked data to vendor breach

T-Mobile

T-Mobile has denied it was breached or that source code was stolen after a threat actor claimed to be selling stolen data from the telecommunications company.


Continue reading
  525 Hits

Hackers phish finance orgs using trojanized Minesweeper clone

minesweeper-virus

Hackers are utilizing code from a Python clone of Microsoft's venerable Minesweeper game to hide malicious scripts in attacks on European and US financial organizations.

Continue reading
  529 Hits

Dell API abused to steal 49 million customer records in data breach

Dell-headpic

The threat actor behind the recent Dell data breach revealed they scraped information of 49 million customer records using an partner portal API they accessed as a fake company. 

Continue reading
  676 Hits

Blackwood hackers hijack WPS Office update to install malware

China-hacker

A previously unknown advanced threat actor tracked as 'Blackwood' is using sophisticated malware called NSPX30 in cyberespionage attacks against companies and individuals.


Continue reading
  904 Hits

Ransomware gang files SEC complaint over victim’s undisclosed breach

robot-cat-datacenter

The ALPHV/BlackCat ransomware operation has taken extortion to a new level by filing a U.S. Securities and Exchange Commission complaint against one of their alleged victims for not complying with the four-day rule to disclose a cyberattack. 

Continue reading
  987 Hits

Google ads push malicious CPU-Z app from fake Windows news site

CPU-Z

A threat actor has been abusing Google Ads to distribute a trojanized version of the CPU-Z tool to deliver the Redline info-stealing malware. 

Continue reading
  877 Hits

Cloudflare website downed by DDoS attack claimed by Anonymous Sudan

cloudflare

Cloudflare confirmed that the outage resulted from a DDoS attack that only affected the www.cloudflare.com website without impacting other products or services. The company didn't attribute the attack to a specific threat actor. 

Continue reading
  947 Hits

Fake Corsair job offers on LinkedIn push DarkGate malware

hacker-holding-linkedin

A threat actor is using fake LinkedIn posts and direct messages about a Facebook Ads specialist position at hardware maker Corsair to lure people into downloading info-stealing malware like DarkGate and RedLine. 

Continue reading
  841 Hits

23andMe hit with lawsuits after hacker leaks stolen genetics data

23andme-dna

Genetic testing provider 23andMe faces multiple class action lawsuits in the U.S. following a large-scale data breach that is believed to have impacted millions of its customers. 

Continue reading
  1038 Hits

T-Mobile denies new data breach rumors, points to authorized retailer

T-Mobile

T-Mobile has denied suffering another data breach following Thursday night reports that a threat actor leaked a large database allegedly containing T-Mobile employees' data.

Continue reading
  935 Hits

TransUnion denies it was hacked, links leaked data to 3rd party

TransUnion

Credit reporting firm TransUnion has denied claims of a security breach after a threat actor known as USDoD leaked data allegedly stolen from the company's network.  The Chicago-based company's over 10,000 employees provide their services to millions of consumers and more than 65,000 businesses from 30 countries. "Immediately upon discovering ...

Continue reading
  920 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023