The Play ransomware gang has been very active lately, claiming a Dutch shipping company as its latest victim. Goes without saying, the threat of a complete data leak looms overhead. We have another colossal crypto hack at a Bitcoin ATM manufacturer that had to shut down its cloud services. Another day, another exposed treasure trove of data, which cybercriminals could have accessed for their nefarious purposes. Read along to know the top 10 highlights from the weekend.
01
The Play ransomware group claimed Dutch maritime logistics company Royal Dirkzwager as its victim and leaked a sample archive of 5 GB as proof of the hack.
02
Leading crypto ATM manufacturer General Bytes reported a security breach in which the hacker liquidated 56.28 Bitcoins, valued at $1.5 million.
03
Hitachi Energy disclosed a cyberattack by the Cl0p ransomware gang that pilfered sensitive data. The group had exploited the zero-day bug in GoAnywhere MFT.
04
A misconfiguration on the Lowe’s Market website resulted in the leak of a massive trove containing private credentials, including hosts, usernames, and ports of main, tracking, legacy, recipe, and redis[.]io databases.
05
The FBI arrested the alleged mastermind, who went by the name pompourin, behind the BreachForums, one of the biggest data breach websites on the dark web.
06
The SEC suggested new rules that require broker-dealers to notify clients of a data breach within 30 days, inform the government immediately, and increase the scope of customer data covered by privacy regulations.
07
Australia’s biggest skin cancer study QIMR Berghofer suffered a data breach that compromised the personal details—names, addresses, and Medicare numbers—of over 1,000 people.
08
The FBI, the CISA, and the MS-ISAC published a joint alert on LockBit 3.0 ransomware operations, delineating the advanced detection evasion tactics and other TTPs leveraged by the group.
09
An ongoing spam campaign by the Mispadu banking trojan was found targeting Portugal, Chile, Peru, Bolivia, and Mexico, since August 2022. It has harvested over 90,000 bank account credentials.
10
A new report revealed that 99% of mid-sized businesses in the U.S. and Canada are facing cybersecurity challenges, with 61% of them lacking dedicated cybersecurity experts.
