Windstream
October 23, 2023
•[ hack, malware, technology ]
Researchers from Lumen Technologies reveal the details of 'Pumpkin Eclipse', an event where unknown attackers broke into more than 600,000 routers belonging to a single ISP and deployed malware (a commodity malware dubbed Chalubo) on the devices before totally disabling them.
CoinFlip
October 20, 2023
•[ social, phishing, technology ]
GPD Holdings d/b/a CoinFlip files a notice of data breach after discovering that a CoinFlip employee's email account was compromised.
CyberLink
October 20, 2023
•[ hack, malware, technology ]
Researchers from Microsoft reveal that the North Korean group tracked as Lazarus, has breached Taiwanese multimedia software company CyberLink and trojanized one of its installers to push a malware dubbed LambLoad, in a supply chain attack targeting potential victims worldwide.
Kinesis Film
October 17, 2023
•[ ransomware, malware, technology ]
The Knight ransomware gang claims responsibility for a cyber attack to Kinesis Film
Piemme
October 17, 2023
•[ ransomware, malware, technology ]
The Black Basta ransomware gang claims responsibility for a cyber attack to Piemme Media Platform.
Fantom Foundation
October 17, 2023
•[ financial, malware, technology ]
The Fantom Foundation, a non-profit organization that supports the Fantom blockchain network, suffers a data breach apparently, due to the CVE-2023-4863 zero-day security vulnerability in Google Chrome, losing over $550,000 in cryptocurrency.
Ampersand
October 15, 2023
•[ ransomware, malware, technology ]
Ampersand, a television advertising sales and technology company jointly owned by the three largest U.S. cable operators (Comcast Corporation, Charter Communications and Cox Communications) is hit with a Black Basta ransomware attack.
CDW
October 13, 2023
•[ ransomware, malware, technology ]
The multibillion-dollar technology services firm CDW says it is investigating claims made by the LockBit ransomware gang that data was stolen during a cyberattack to Sirius Federal, a small U.S. subsidiary.
Smart billboards
October 12, 2023
•[ hack, misconfiguration, technology ]
For a few minutes, threat actors access two smart billboards in the Holon settlement near Tel Aviv and manage to switch the commercials into anti-Israeli, pro-Hamas footage.
Palestinian telecommunications company
October 10, 2023
•[ hack, technology ]
The Indian Cyber Force, a pro-India group claims responsibility for targeting a Palestinian telecommunications company.
Individuals in Israel
October 8, 2023
•[ hack, misconfiguration, technology ]
AnonGhost exploits an API vulnerability in the RedAlert app, which provides real-time rocket alerts for Israelis, to intercept requests, expose vulnerable servers and APIs, and send spam messages to some users of the app, including fake messages about a "nuclear bomb"
Israeli Flight Booking Website
October 8, 2023
•[ hack, technology ]
AnonGhost also claims that it hacked an Israeli flight booking website.
AlfaNet
October 7, 2023
•[ hack, ddos, technology ]
Hacktivists from the ThreatSec group claim to have taken down Alfanet, an internet service provider based in the Gaza Strip.
Facebook's official UK page
October 6, 2023
•[ hack, technology ]
Facebook's official UK page is taken over by an unknown third party who posts weird messages about cricket and the release from jail of Imran Khan former Pakistani prime minister.
Galxe
October 6, 2023
•[ hack, phishing, technology ]
Web3 credentials and rewards platform Galxe suffers a DNS attack, refunding 980 victims with a total cost for the company a little over $396,000 .
Cinepolis
October 4, 2023
•[ ransomware, malware, technology ]
The PLAY ransomware group adds the Cinepolis to the list of its victims.
BeyondTrust
October 2, 2023
•[ hack, misconfiguration, technology ]
BeyondTrust reveals to have detected an identity-centric attack on an in-house Okta administrator account
Zscaler
October 1, 2023
•[ hack, misconfiguration, technology ]
Zscaler says that they discovered an exposed "test environment" that was taken offline for analysis after rumors circulated that a threat actor was selling access to the company's systems.
Facebook Marketplace
October 1, 2023
•[ leak, hack, technology ]
In February 2024, 200k Facebook Marketplace records allegedly obtained from a Meta contractor in October 2023 were posted to a popular hacking forum. The data contained 77k unique email addresses alongside names, phone numbers, Facebook profile IDs and geographic locations. The data also contained bcrypt password hashes, although there is no indication these belong to the corresponding Facebook accounts.
Innovery
September 30, 2023
•[ hack, technology ]
Innovery, an Italian company delivering IT services, is hit with a cyber attack.
