Welcome to the 6th edition Cyber Weekly Digest of 2024.
New and noteworthy this week: Industry leaders agree, Cequence is leading the #apisecurity charge! In their latest #APIBites episode you can hear why KuppiingerCole Analysts AG named Cequence as an Overall, Product and Innovation Leader. Watch the video HERE
According to CRN, THESE are the 10 hottest cyber security companies to watch in 2024 and our vendor partner Abnormal Security is obviously one of them! Click on the highlighted link to learn how Abnormal's product differentiation, strong growth and channel momentum have placed them amongst today's top companies in cyber. Congratulations Team Abnormal!
Now, let's take a look at our Cyber Weekly Digest, highlighting our top cyber security news picks of the week.
This week we heard about the reported attack of the electric toothbrushes (this made me smile), a ransomware attack hitting a well known car giant and found out where Chinese hackers have been hiding for the last 5 years!
Keep reading to stay up to date on the latest cyber security news.
LastPass is warning that a fake copy of its app is being distributed on the Apple App Store, likely used as a phishing app to steal users' credentials. The fake app uses a similar name to the genuine app, a similar icon, and a red-themed interface made to appear close to the brand's authentic design. However, the fake app's name is 'LassPass,' instead of 'LastPass,' and it has a publisher of 'Parvati Patel.'
Car maker Hyundai Motor Europe suffered a Black Basta ransomware attack, with the threat actors claiming to have stolen three terabytes of corporate data. Hyundai Motor Europe is Hyundai Motor Company's European division, headquartered in Germany. BleepingComputer first learned of the attack in early January, but when we contacted Hyundai, we were told they were just experiencing IT issues.
Data breaches at two French healthcare payment service providers, Viamedis and Almerys, have now been determined to impact over 33 million people in the country.
Viamedis and Almerys provide healthcare and insurance services in France with technological and administrative solutions to facilitate transactions. They manage the sensitive data of policyholders required for granting reimbursements and generally streamline the payment process in France's complex, multi-layered insurance coverage system.
Update has been added with Fortinet's statement confirming Bleeping Computer's reporting and a statement from CH Media, who originally reported on the attack. A widely reported story that 3 million electric toothbrushes were hacked with malware to conduct distributed denial of service (DDoS) attacks is likely a hypothetical scenario instead of an actual attack. Last week, Swiss news site Aargauer Zeitung published a story stating that an employee of cybersecurity firm Fortinet said 3 million electric toothbrushes had been infected with Java malware to conduct DDoS attacks against a Swiss company.
The U.S. government on Wednesday said the Chinese state-sponsored hacking group known as Volt Typhoon had been embedded into some critical infrastructure networks in the country for at least five years. Targets of the threat actor include communications, energy, transportation, and water and wastewater systems sectors in the U.S. and Guam. The idea is to pre-position themselves on IT networks by maintaining persistence and understanding the target environment over time for disruptive or destructive cyber attacks against U.S. critical infrastructure in the event of a major crisis or conflict with the country.