In a week when missing pig Kevin Bacon was reunited with its owners, thanks to... Kevin Bacon, let's take a look at our Cyber Weekly Digest, highlighting our top cyber security news picks of the week. This week we heard how fraudsters are making $50k a day by spoofing crypto researchers, breaches at both Toyota and Samsung and found out how hackers could exploit Google Workspace and Cloud Platform for ransomware attacks! Keep reading to stay up to date on the latest cyber security news.
A set of novel attack methods has been demonstrated against Google Workspace and the Google Cloud Platform that could be potentially leveraged by threat actors to conduct ransomware, data exfiltration, and password recovery attacks. The Romanian cybersecurity firm has warned that threat actors can exploit gaps to extend a single endpoint compromise to a network-wide breach. Click the link to read the full article.
2. Alert: Microsoft Releases Patch Updates for 5 New Zero-Day Vunerabilities
Microsoft has released fixes to address 63 security bugs in its software for the month of November 2023, including three vulnerabilities that have come under active exploitation in the wild. Of the 63 flaws, three are rated Critical, 56 are rated Important, and four are rated Moderate in severity. Two of them have been listed as publicly known at the time of the release. There are five zero-days that are of note and in addition to Microsoft, security updates have also been released by other vendors over the past few weeks to rectify several vulnerabilities which can all be found in the link above.
Toyota Financial Services (TFS) confirmed that it detected unauthorised access on some of its systems in Europe and Africa after Medusa ransomware claimed an attack on the company. TFS, a subsidiary of Toyota Motor Corporation, is a global entity with a presence in 90% of the markets where Toyota sells its cars, providing auto financing to its customers. Just yesterday, the Medusa ransomware gang listed TFS to its data leak site on the dark web, demanding a payment of $8,000,000 to delete data allegedly stolen from the Japanese company. Regarding the status of the impacted systems and their estimated return to normal operations, a spokesperson told The Bleeping Computer that the process of bringing systems back online is already underway in most countries.
Samsung Electronics is notifying some of its customers of a data breach that exposed their personal information to an unauthorised individual. The company says that the cyberattack impacted only customers who made purchases from the Samsung UK online store between July 1, 2019, and June 30, 2020. Samsung discovered the data breach a few days ago and determined that it was the result of a hacker exploiting a vulnerability in a third-party application the company used.
Multiple fake accounts impersonating cryptocurrency scam investigators and blockchain security companies are promoting phishing pages to drain wallets in an ongoing campaign on X (former Twitter). To lure potential victims, the scammer uses a breach on major cryptocurrency exchange platforms which urges users to act swiftly to safeguard their digital assets from potential theft. Read the full article for some advice on how to protect your digital assets!