09-Jun-2024: FBI Strikes LockBit, GitHub Ransoms Surge, Akira Threat Looms

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast, bringing you the latest in cyber threats and data breaches. Today, we're diving into some of the most pressing cybersecurity stories. First up, we uncover the alarming RAMBO attack, a new cyber method targeting air-gapped computers by extracting data from their RAM using electromagnetic emissions. This novel approach challenges the security of physically isolated systems. Next, we delve into a disturbing twist in sextortion scams. Scammers are now using the names of victims' alleged cheating spouses to blackmail them for cryptocurrency, increasing vigilance among potential targets. In a significant data breach, the personal information of around 1 million Canadians was compromised through an airport parking service, exposing sensitive details. We urge affected individuals to monitor their accounts closely. We also discuss Young Consulting, now Connexure, suffering a massive ransomware attack by the BlackSuit group, compromising 954,177 personal records. The company is responding with strengthened security protocols and offering credit monitoring services to those impacted. Lastly, Avis disclosed a data breach affecting customers, exposing personal data and prompting enhanced security measures to prevent future breaches. Stay tuned for more breaking news in cybersecurity with Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

8 Sep 20242min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast brought to you by Cytadel Cyber, where we cover the latest cyber threats and security news every day. In today's episode, we start with a cautionary tale involving North Korean hackers exploiting LinkedIn. These cyber adversaries are impersonating job recruiters to distribute COVERTCATCH, a new malware strain designed for espionage, giving them unauthorized access to sensitive user data. Next, we dive into a significant law enforcement victory as the FBI announces a crackdown on a notorious dark web marketplace. The arrest of Russian and Kazakh individuals highlights global efforts to dismantle online platforms trafficking in illegal goods and stolen data. We then move to the growing threat of deepfake technology. Cybersecurity experts warn that deepfakes could potentially compromise Internet of Things (IoT) devices, urging manufacturers and users to strengthen defenses against these evolving cyber threats. In other news, Avis discloses a data breach exposing customer information. The company is working with cybersecurity professionals to reinforce its defenses and offers credit monitoring services to affected customers. Finally, Microsoft announces enhancements to Office 2024 security, disabling ActiveX controls by default. This move aims to protect users from potential vulnerabilities and represents a proactive shift towards safer software practices. Stay tuned for more updates, and remember to secure your digital life with Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

7 Sep 20243min

Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast brought to you by Cytadel Cyber. Your quick daily dive into the latest in cybersecurity trends and incidents. In today's episode, we delve into the emergence of a new ransomware-as-a-service group, Cicada3301, which is leeching off the fame of the legitimate puzzle group to target global companies. Dubbed by some as a rebrand of the ALPHV/BlackCat group, this entity employs double-extortion attacks, leveraging the Brutus botnet to increase their reach. We also explore a recent cybersecurity report indicating that 83% of organizations worldwide experienced at least one ransomware attack in the past year. This alarming rise suggests an urgent need for improved security systems and the adoption of proactive defense strategies. In a significant privacy breach, the dreaded RansomHub group has targeted Planned Parenthood, allegedly pilfering 93 gigabytes of confidential data. With personal information and internal communications compromised, the incident calls for immediate action from authorities and cybersecurity experts. Lastly, Lowe's employees have been caught in a malvertising campaign, where hackers inserted deceptive ads to phish for sensitive information via fraudulent login pages. This highlights the growing sophistication of attacks that require heightened corporate vigilance. Join us tomorrow as we continue to break down the evolving landscape of cyber threats on Hacked dAily. Stay safe out there!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

6 Sep 20242min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Each day, we bring you the latest in cybercrime and digital defense. Today's top stories start with a decisive action by U.S. authorities seizing 32 domains linked to pro-Russian propaganda. This move is a vital part of the ongoing battle against foreign disinformation campaigns targeting the U.S. and Europe. Next, irony strikes in the realm of online crime as cybercriminals trying to exploit the OnlyFans platform are themselves ensnared in a hacking trap. A tool claiming to hack OnlyFans content is actually spreading malware to those attempting to use it, serving as a cautionary tale on the risks of cybercrime. Our third major story involves North Korean hackers who have deployed a malicious app disguised as a job search tool, aimed at stealing personal information from job seekers. Users are advised to be cautious and verify app authenticity before downloads. In other news, a cyberattack on Transport for London’s Dial-a-Ride service has disrupted transport for vulnerable passengers, although no sensitive data was compromised. TfL continues to work on restoring full service. Finally, Microchip Technology revealed a data breach from an August cyberattack. The company has implemented stronger security measures and is notifying affected individuals as they collaborate with experts to resolve the issue. Join us daily for your essential cybersecurity updates on Hacked dAily. Stay safe, stay informed!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

5 Sep 20242min

Welcome to Hacked dAily, the pioneering AI-Driven Cybersecurity Podcast by Cytadel Cyber. Your essential brief on the ever-evolving world of cyber threats is here! In today's episode, we delve into the alarming rise in ransomware activity, surging by 56% in 2024. Analysts point to more sophisticated hacking techniques and lucrative ransoms as key drivers behind this spike, urging enhanced digital defenses globally. Next, we examine how hackers leverage weaknesses in cybersecurity by distributing malware through fake GlobalProtect VPN software. With this WikiLoader attack deceiving users, it's crucial for organizations to verify software authenticity and bolster network defenses. Meanwhile, there's a significant uptick in ransomware attacks targeting critical infrastructure sectors such as healthcare, finance, and energy. This spike highlights severe vulnerabilities and the pressing need for robust cybersecurity frameworks. In other news, the alarming deployment of MacroPack continues to challenge cybersecurity experts. This toolkit enables attacks with potent malware like Brute Ratel, evading detection across government and corporate networks. Authorities stress the importance of updating cybersecurity protocols and staff training. Finally, a new report by Huntress reveals a dramatic increase in phishing attacks, with cybercriminals employing advanced spoofing and social engineering methods. This trend serves as a critical reminder for businesses to enhance security measures and employee awareness. Stay tuned for tomorrow's insights on the frontline of cybersecurity, only on Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

4 Sep 20243min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, where we deliver the most pressing cyber news in just a few minutes. Today, we delve into a series of recent cyber incidents affecting organizations and individuals globally. First, Transport for London is navigating through a recent cyber-attack that halted operations but spared data, thanks to backup resources. The National Crime Agency and National Cyber Security Centre are on the case, while updates are provided by TfL’s Shashi Verma. In the U.S., a former Missouri engineer faces charges for attempting to extort $750,000 in Bitcoin in exchange for withholding the release of sensitive company data. This case highlights the ongoing issue of cyber-extortion. Across the pond, the Police Ombudsman for Northern Ireland deals with a breach that exposed personal details of over 150 employees. An external investigator is set to mitigate future breaches and assist in the ongoing situation with the Information Commissioner's Office. In other news, the RansomHub gang, known for over 210 ransomware attacks targeting key sectors, has prompted an advisory from the FBI, CISA, and the Department of Health and Human Services. This underscores the urgent need for robust cybersecurity strategies. Lastly, Google warns users about a spyware crafted by the newly banned Intellexa, connected to Cozy Bear. This spyware poses threats to Safari and Chrome browsers, shedding light on geopolitical cyber threats. Stay tuned for more updates on the ever-evolving cybersecurity landscape here on Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

3 Sep 20243min

Welcome to Hacked dAily, the FIRST AI-Driven Cybersecurity Podcast by Cytadel Cyber, your daily dose of cybersecurity news and analysis. In today's episode, we dive into the latest breaches and threats surfacing in the digital world. First up, researchers have identified a nefarious malware mimicking Palo Alto's GlobalProtect VPN software, with Middle Eastern users bearing the brunt. Believed to be politically motivated, this malware aims to infiltrate high-profile sectors. To combat this, ensure your software origins are verified and your cybersecurity measures are up to date. Next, Deutsche Flugsicherung (DFS), responsible for German Air Traffic Control, experiences a cyberattack attributed to the notorious pro-Russian group APT28 (Fancy Bear). Despite communication disruptions, air traffic remains unaffected. German authorities are working tirelessly to fortify infrastructure defenses. Shifting focus, we've discovered malicious npm packages masquerading as the popular Roblox API library "noblox.js". These packages threaten developers by stealing sensitive credentials. Developers are advised to authenticate their downloads and enhance security protocols. In other news, ransomware attacks are surging globally, pressuring businesses of all sizes. Experts demand stronger international collaboration to tackle this escalating threat. Finally, a new phishing campaign has surfaced within China, targeting Windows users with sophisticated malware. This calls for increased vigilance and stronger cyber defenses. Tune in tomorrow for your daily briefing with Hacked dAily, where we bring clarity to the cyber chaos. Stay secure!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

2 Sep 20243min

Welcome to Hacked dAily, your essential source for the latest in cybersecurity news, brought to you by Cytadel Cyber — the premier AI-driven cybersecurity podcast. On today’s episode, we dive deep into the headlines making waves across the digital world. Our top story highlights the escalating ransomware threats to healthcare services, with recent incidents, like the Synnovis attack in London, severely impacting medical operations and prompting UK lawmakers to push for tighter regulations on ransom payments and cyberattack reporting. Next, the FBI has flagged a new ransomware strain, RansomHub, which has already compromised over 210 organizations. Small and medium businesses are at heightened risk, reinforcing the need for robust cybersecurity measures and data backups. We then turn our attention to Germany where the air traffic control service, Deutsche Flugsicherung, faced a cyberattack from the notorious pro-Russian group APT28. Fortunately, air operations remained unaffected, but investigations are underway to strengthen defenses. In other news, GitHub is facing a malicious campaign as attackers post malware-laden comments disguised as software fixes—users are advised to download files cautiously. Finally, Market Moveis, a leading retailer, suffered a data breach affecting over 28,200 accounts, urging customers to stay alert and monitor their account activity. Stay informed with Hacked dAily as we navigate the challenges and innovations of the cybersecurity landscape. Listen in tomorrow for more updates!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

1 Sep 20243min