This week's cyber security digest will take a look at some of the data breaches which have been disclosed, recent charges filed on members of the APT41 group and how the NCSC is hoping to help organisations disclosure vulnerabilities. Keep reading to find out the latest cyber stories from across the globe.
Five members of one of the most infamous state-sponsored hacking groups, APT41 have had charges filed against them by the US. US officials stated that the members had hacked over 100 companies worldwide from where they stole proprietary source code, code-signing certificates, customer data and valuable business information. All five members remain at large, and their names have been added to the FBI’s Cyber Most Wanted List.
Earlier in the week, the office-retail giant Staples disclosed a data breach. It has since been revealed that it was caused by insufficient protection for retrieving shopper information from current and past orders. Staples has multiple Pulse secure VPN servers vulnerable to CVE-2019-11510, which had not been patched for two months. Staples have confirmed that the issue has been fixed.