20-May-2024: WebTPA Data Breach and Global Cybersecurity Threats Surge

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast, brought to you by Cytadel Cyber. Stay updated with the latest cyber news and insights as our AI dissects today's top headlines. Our top story covers a high-profile ransomware case where a major healthcare provider has settled for $65 million following a cyber attack that compromised sensitive patient data. This settlement addresses damages and aims to bolster future cybersecurity measures within the healthcare sector. We're also seeing a spike in fraud and scam complaints this year, as increasing online activities have given scammers new tools and anonymity. Authorities are urging heightened vigilance and the development of stricter legislation to counter these threats. In a unique twist, a Belarusian military official has voiced concerns over Pokémon GO, claiming the game could be exploited for intelligence gathering due to its geolocation features. This raises new questions about the potential national security risks of digital applications. The European Union is taking a stronger stance on cybersecurity with the anticipated rollout of NIS2, DORA, and Tiber-EU, set to enhance security measures and test cyber defenses across various sectors. Lastly, Google Cloud is introducing air-gapped backup vaults to its Backup and Disaster Recovery service to counter ransomware threats. These impenetrable vaults are designed to safeguard data, ensuring its protection by isolating backups from customer projects. Join us daily on Hacked dAily for more up-to-the-minute cybersecurity news and analysis.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

12 Syys 20243min

Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast created by Cytadel Cyber, delivering your daily dose of cyber mayhem updates. In today's top stories, the NoName ransomware gang introduces RansomHub, a new innovation in their cybercrime toolkit, further complicating lives by encrypting files and taking instructions from a command server. Meanwhile, Slim CD's data breach exposes personal and credit card details of 1.7 million users, becoming a festive season for hackers who fancy your information but thankfully skipped on the CVV data. SonicWall's SSLVPN devices face exploitation by ransomware actors who can't resist a good, unpatched vulnerability, prompting users to update or risk donating data to cyber crooks. In other news, fake funeral livestream scams are emerging, taking advantage of grieving individuals by leading them into malware-laden traps instead of virtual memorial services. And finally, a cyber attack on German air traffic control sends authorities into a tailspin, highlighting the vulnerability of even the skies to digital disruption, leaving travelers to ponder the real control behind their flights. Stay tuned for more cybersecurity insights and stories you won't want to miss on Hacked dAily!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

11 Syys 20243min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Tune in for today’s top cyber news stories and updates to keep you informed and secure. First up, Meta has swiftly repaired a vulnerability in WhatsApp's "View Once" feature, originally allowing users to store images and videos permanently. This update reinforces privacy for WhatsApp users, so remember to update your app now! Next, a sophisticated cyber campaign by Chinese hackers has come to light, exploiting a vulnerability in Visual Studio Code. By disguising malicious software as legitimate updates, they have targeted organizations in Southeast Asia, highlighting the crucial need for vigilance in software security. Our third story covers the escalating threat from Akira ransomware actors who are exploiting a newly revealed vulnerability in SonicWall’s Secure Mobile Access appliances. This flaw permits remote code execution, urging immediate patching to safeguard against potential network breaches. In other news, a significant breach at Payment Gateway SLIM CD has jeopardized the data of 1.7 million users, leaking sensitive information such as credit card details. SLIM CD is actively enhancing security and collaborating with authorities to handle the breach effectively. Finally, Avis Car Rental has disclosed a security breach that affected 300,000 customers. Hackers accessed private information, prompting Avis to provide free credit monitoring and bolster their security protocols. Stay tuned for tomorrow’s episode of Hacked dAily for more cybersecurity insights and updates. Stay safe and secure!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

10 Syys 20243min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast brought to you by Cytadel Cyber. Every day, we delve into the latest cyber threats and unravel the complex digital web of global hacking groups, so you stay informed and secure. In today's episode, we begin with news of a $10 million reward from the U.S. government for information on Cadet Blizzard, a notorious Russian hacking group implicated in a slew of severe cyberattacks. This initiative underscores the urgency of bolstering national and private sector security defenses. Next, we spotlight the Lazarus Group from North Korea, now deploying a deceptive phishing plot against blockchain professionals. By posing as reputable entities, the group aims to access digital assets through malicious fake video apps and job offers. We then explore Akira ransomware's exploitation of a new vulnerability, CVE-2024-40766, in SonicWall's SSLVPN products. This flaw could allow attackers to bypass corporate network security. Experts urge immediate patching to defend against these emerging threats. In other news, the HazardCC hacker group has escalated its email scam operations, targeting individuals and businesses with ransom demands paid in cryptocurrencies. Experts advise ignoring such emails and implementing stronger security measures. Finally, the Fog ransomware group has turned its focus to the financial sector, posing new dangers to banks and financial institutions with its advanced attack techniques, potentially leading to significant fiscal losses and breaches. Stay tuned for more updates as we continue to navigate the ever-evolving landscape of cybersecurity threats.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

9 Syys 20243min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast, bringing you the latest in cyber threats and data breaches. Today, we're diving into some of the most pressing cybersecurity stories. First up, we uncover the alarming RAMBO attack, a new cyber method targeting air-gapped computers by extracting data from their RAM using electromagnetic emissions. This novel approach challenges the security of physically isolated systems. Next, we delve into a disturbing twist in sextortion scams. Scammers are now using the names of victims' alleged cheating spouses to blackmail them for cryptocurrency, increasing vigilance among potential targets. In a significant data breach, the personal information of around 1 million Canadians was compromised through an airport parking service, exposing sensitive details. We urge affected individuals to monitor their accounts closely. We also discuss Young Consulting, now Connexure, suffering a massive ransomware attack by the BlackSuit group, compromising 954,177 personal records. The company is responding with strengthened security protocols and offering credit monitoring services to those impacted. Lastly, Avis disclosed a data breach affecting customers, exposing personal data and prompting enhanced security measures to prevent future breaches. Stay tuned for more breaking news in cybersecurity with Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

8 Syys 20242min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast brought to you by Cytadel Cyber, where we cover the latest cyber threats and security news every day. In today's episode, we start with a cautionary tale involving North Korean hackers exploiting LinkedIn. These cyber adversaries are impersonating job recruiters to distribute COVERTCATCH, a new malware strain designed for espionage, giving them unauthorized access to sensitive user data. Next, we dive into a significant law enforcement victory as the FBI announces a crackdown on a notorious dark web marketplace. The arrest of Russian and Kazakh individuals highlights global efforts to dismantle online platforms trafficking in illegal goods and stolen data. We then move to the growing threat of deepfake technology. Cybersecurity experts warn that deepfakes could potentially compromise Internet of Things (IoT) devices, urging manufacturers and users to strengthen defenses against these evolving cyber threats. In other news, Avis discloses a data breach exposing customer information. The company is working with cybersecurity professionals to reinforce its defenses and offers credit monitoring services to affected customers. Finally, Microsoft announces enhancements to Office 2024 security, disabling ActiveX controls by default. This move aims to protect users from potential vulnerabilities and represents a proactive shift towards safer software practices. Stay tuned for more updates, and remember to secure your digital life with Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

7 Syys 20243min

Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast brought to you by Cytadel Cyber. Your quick daily dive into the latest in cybersecurity trends and incidents. In today's episode, we delve into the emergence of a new ransomware-as-a-service group, Cicada3301, which is leeching off the fame of the legitimate puzzle group to target global companies. Dubbed by some as a rebrand of the ALPHV/BlackCat group, this entity employs double-extortion attacks, leveraging the Brutus botnet to increase their reach. We also explore a recent cybersecurity report indicating that 83% of organizations worldwide experienced at least one ransomware attack in the past year. This alarming rise suggests an urgent need for improved security systems and the adoption of proactive defense strategies. In a significant privacy breach, the dreaded RansomHub group has targeted Planned Parenthood, allegedly pilfering 93 gigabytes of confidential data. With personal information and internal communications compromised, the incident calls for immediate action from authorities and cybersecurity experts. Lastly, Lowe's employees have been caught in a malvertising campaign, where hackers inserted deceptive ads to phish for sensitive information via fraudulent login pages. This highlights the growing sophistication of attacks that require heightened corporate vigilance. Join us tomorrow as we continue to break down the evolving landscape of cyber threats on Hacked dAily. Stay safe out there!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

6 Syys 20242min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Each day, we bring you the latest in cybercrime and digital defense. Today's top stories start with a decisive action by U.S. authorities seizing 32 domains linked to pro-Russian propaganda. This move is a vital part of the ongoing battle against foreign disinformation campaigns targeting the U.S. and Europe. Next, irony strikes in the realm of online crime as cybercriminals trying to exploit the OnlyFans platform are themselves ensnared in a hacking trap. A tool claiming to hack OnlyFans content is actually spreading malware to those attempting to use it, serving as a cautionary tale on the risks of cybercrime. Our third major story involves North Korean hackers who have deployed a malicious app disguised as a job search tool, aimed at stealing personal information from job seekers. Users are advised to be cautious and verify app authenticity before downloads. In other news, a cyberattack on Transport for London’s Dial-a-Ride service has disrupted transport for vulnerable passengers, although no sensitive data was compromised. TfL continues to work on restoring full service. Finally, Microchip Technology revealed a data breach from an August cyberattack. The company has implemented stronger security measures and is notifying affected individuals as they collaborate with experts to resolve the issue. Join us daily for your essential cybersecurity updates on Hacked dAily. Stay safe, stay informed!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

5 Syys 20242min