11-Dec-2024 Cyber Fraud Unveiled: Dubai Scams, AWS Breach, Senior Dating Data Leak, and Ohio Ransomware

Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast brought to you by Cytadel Cyber. Your quick daily dive into the latest in cybersecurity trends and incidents. In today's episode, we delve into the emergence of a new ransomware-as-a-service group, Cicada3301, which is leeching off the fame of the legitimate puzzle group to target global companies. Dubbed by some as a rebrand of the ALPHV/BlackCat group, this entity employs double-extortion attacks, leveraging the Brutus botnet to increase their reach. We also explore a recent cybersecurity report indicating that 83% of organizations worldwide experienced at least one ransomware attack in the past year. This alarming rise suggests an urgent need for improved security systems and the adoption of proactive defense strategies. In a significant privacy breach, the dreaded RansomHub group has targeted Planned Parenthood, allegedly pilfering 93 gigabytes of confidential data. With personal information and internal communications compromised, the incident calls for immediate action from authorities and cybersecurity experts. Lastly, Lowe's employees have been caught in a malvertising campaign, where hackers inserted deceptive ads to phish for sensitive information via fraudulent login pages. This highlights the growing sophistication of attacks that require heightened corporate vigilance. Join us tomorrow as we continue to break down the evolving landscape of cyber threats on Hacked dAily. Stay safe out there!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

6 Sep 20242min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Each day, we bring you the latest in cybercrime and digital defense. Today's top stories start with a decisive action by U.S. authorities seizing 32 domains linked to pro-Russian propaganda. This move is a vital part of the ongoing battle against foreign disinformation campaigns targeting the U.S. and Europe. Next, irony strikes in the realm of online crime as cybercriminals trying to exploit the OnlyFans platform are themselves ensnared in a hacking trap. A tool claiming to hack OnlyFans content is actually spreading malware to those attempting to use it, serving as a cautionary tale on the risks of cybercrime. Our third major story involves North Korean hackers who have deployed a malicious app disguised as a job search tool, aimed at stealing personal information from job seekers. Users are advised to be cautious and verify app authenticity before downloads. In other news, a cyberattack on Transport for London’s Dial-a-Ride service has disrupted transport for vulnerable passengers, although no sensitive data was compromised. TfL continues to work on restoring full service. Finally, Microchip Technology revealed a data breach from an August cyberattack. The company has implemented stronger security measures and is notifying affected individuals as they collaborate with experts to resolve the issue. Join us daily for your essential cybersecurity updates on Hacked dAily. Stay safe, stay informed!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

5 Sep 20242min

Welcome to Hacked dAily, the pioneering AI-Driven Cybersecurity Podcast by Cytadel Cyber. Your essential brief on the ever-evolving world of cyber threats is here! In today's episode, we delve into the alarming rise in ransomware activity, surging by 56% in 2024. Analysts point to more sophisticated hacking techniques and lucrative ransoms as key drivers behind this spike, urging enhanced digital defenses globally. Next, we examine how hackers leverage weaknesses in cybersecurity by distributing malware through fake GlobalProtect VPN software. With this WikiLoader attack deceiving users, it's crucial for organizations to verify software authenticity and bolster network defenses. Meanwhile, there's a significant uptick in ransomware attacks targeting critical infrastructure sectors such as healthcare, finance, and energy. This spike highlights severe vulnerabilities and the pressing need for robust cybersecurity frameworks. In other news, the alarming deployment of MacroPack continues to challenge cybersecurity experts. This toolkit enables attacks with potent malware like Brute Ratel, evading detection across government and corporate networks. Authorities stress the importance of updating cybersecurity protocols and staff training. Finally, a new report by Huntress reveals a dramatic increase in phishing attacks, with cybercriminals employing advanced spoofing and social engineering methods. This trend serves as a critical reminder for businesses to enhance security measures and employee awareness. Stay tuned for tomorrow's insights on the frontline of cybersecurity, only on Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

4 Sep 20243min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, where we deliver the most pressing cyber news in just a few minutes. Today, we delve into a series of recent cyber incidents affecting organizations and individuals globally. First, Transport for London is navigating through a recent cyber-attack that halted operations but spared data, thanks to backup resources. The National Crime Agency and National Cyber Security Centre are on the case, while updates are provided by TfL’s Shashi Verma. In the U.S., a former Missouri engineer faces charges for attempting to extort $750,000 in Bitcoin in exchange for withholding the release of sensitive company data. This case highlights the ongoing issue of cyber-extortion. Across the pond, the Police Ombudsman for Northern Ireland deals with a breach that exposed personal details of over 150 employees. An external investigator is set to mitigate future breaches and assist in the ongoing situation with the Information Commissioner's Office. In other news, the RansomHub gang, known for over 210 ransomware attacks targeting key sectors, has prompted an advisory from the FBI, CISA, and the Department of Health and Human Services. This underscores the urgent need for robust cybersecurity strategies. Lastly, Google warns users about a spyware crafted by the newly banned Intellexa, connected to Cozy Bear. This spyware poses threats to Safari and Chrome browsers, shedding light on geopolitical cyber threats. Stay tuned for more updates on the ever-evolving cybersecurity landscape here on Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

3 Sep 20243min

Welcome to Hacked dAily, the FIRST AI-Driven Cybersecurity Podcast by Cytadel Cyber, your daily dose of cybersecurity news and analysis. In today's episode, we dive into the latest breaches and threats surfacing in the digital world. First up, researchers have identified a nefarious malware mimicking Palo Alto's GlobalProtect VPN software, with Middle Eastern users bearing the brunt. Believed to be politically motivated, this malware aims to infiltrate high-profile sectors. To combat this, ensure your software origins are verified and your cybersecurity measures are up to date. Next, Deutsche Flugsicherung (DFS), responsible for German Air Traffic Control, experiences a cyberattack attributed to the notorious pro-Russian group APT28 (Fancy Bear). Despite communication disruptions, air traffic remains unaffected. German authorities are working tirelessly to fortify infrastructure defenses. Shifting focus, we've discovered malicious npm packages masquerading as the popular Roblox API library "noblox.js". These packages threaten developers by stealing sensitive credentials. Developers are advised to authenticate their downloads and enhance security protocols. In other news, ransomware attacks are surging globally, pressuring businesses of all sizes. Experts demand stronger international collaboration to tackle this escalating threat. Finally, a new phishing campaign has surfaced within China, targeting Windows users with sophisticated malware. This calls for increased vigilance and stronger cyber defenses. Tune in tomorrow for your daily briefing with Hacked dAily, where we bring clarity to the cyber chaos. Stay secure!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

2 Sep 20243min

Welcome to Hacked dAily, your essential source for the latest in cybersecurity news, brought to you by Cytadel Cyber — the premier AI-driven cybersecurity podcast. On today’s episode, we dive deep into the headlines making waves across the digital world. Our top story highlights the escalating ransomware threats to healthcare services, with recent incidents, like the Synnovis attack in London, severely impacting medical operations and prompting UK lawmakers to push for tighter regulations on ransom payments and cyberattack reporting. Next, the FBI has flagged a new ransomware strain, RansomHub, which has already compromised over 210 organizations. Small and medium businesses are at heightened risk, reinforcing the need for robust cybersecurity measures and data backups. We then turn our attention to Germany where the air traffic control service, Deutsche Flugsicherung, faced a cyberattack from the notorious pro-Russian group APT28. Fortunately, air operations remained unaffected, but investigations are underway to strengthen defenses. In other news, GitHub is facing a malicious campaign as attackers post malware-laden comments disguised as software fixes—users are advised to download files cautiously. Finally, Market Moveis, a leading retailer, suffered a data breach affecting over 28,200 accounts, urging customers to stay alert and monitor their account activity. Stay informed with Hacked dAily as we navigate the challenges and innovations of the cybersecurity landscape. Listen in tomorrow for more updates!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

1 Sep 20243min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast brought to you by Cytadel Cyber. Dive into today's top cyber headlines as we uncover pressing threats and their implications. First, a critical flaw at international airports has been exposed, where cybercriminals exploit SQL injection techniques to bypass TSA security checks, risking sensitive passenger data and airport security. Authorities are pushing for swift updates to cybersecurity measures. Next, a new advisory warns of a ransomware group behind the attack on Halliburton. The US government emphasizes the growing threat and urges industries to strengthen digital defenses to prevent further breaches. In healthcare, Specialty Networks, Inc. faced a data breach affecting over 411,000 patients, with sensitive information like Social Security numbers and medical records exposed. Meanwhile, a smaller breach impacted Mid-Columbia Center for Living, highlighting vulnerabilities in business email systems. In other news, cyber attackers have ingeniously hijacked Google Sheets to command malware spreading in a global espionage scheme, spotlighting how cloud services can be weaponized. Lastly, Microsoft has linked the notorious Lazarus group to a zero-day Chrome vulnerability exploit. This North Korean hacking collective targeted finance and tech sectors, prompting immediate action from Microsoft and Google to ensure user safety. Join us daily on Hacked dAily as we keep you abreast of cyber developments shaping our world. Stay secure, and see you tomorrow!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

31 Aug 20243min

Welcome to "Hacked dAily," the first AI-driven cybersecurity podcast powered by Cytadel Cyber, delivering the freshest insights into cyber threats and news every day. In today’s episode, we delve into recent activities by Iranian cyber actors known as Pioneer Kitten, or Fox Kitten, operating under "xplfinder". They've been targeting U.S. sectors like education, finance, and healthcare with ransomware since 2017, exploiting public applications and networking devices while collaborating with notorious ransomware groups. Next, we touch upon APT29, linked to Russian intelligence, repurposing iOS and Chrome exploits from NSO Group and Intellexa. This raises substantial concerns over digital surveillance and the recycling of cyber-attack methods among international espionage agencies. Also, a fresh security alert as hackers target the Atlassian Confluence vulnerability, CVE-2021-26084, to conduct illicit crypto mining operations. Immediate system updates are urged to close this security loophole. In other news, a persistent malware campaign strikes Roblox developers, leveraging NPM to distribute malware disguised as legitimate tools, potentially affecting millions of users globally. And finally, we cover a ransomware incident at Singapore’s Abecha that manages the Esso Corporate Fleet Discount Programme, putting customer credit card details at risk, emphasizing the critical need for vigilance and timely action in cybersecurity. Stay tuned and stay protected with 'Hacked dAily.' Join us daily for your quick update on the ever-evolving world of cybersecurity.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

30 Aug 20243min