Italian sports car manufacturer Ferrari disclosed a data breach after it received a ransom note. We don’t know the name of the attacker. Cl0p ransomware is on a spree of abusing the GoAnywhere MFT flaw. The latest victim is Saks Fifth Avenue. In other news, Kaspersky identified a new APT gang targeting various sectors in Ukraine. Here are the top 10 highlights from the past 24 hours.
01
Ferrari disclosed a data breach of its IT systems after receiving a ransom note from an unnamed extortion gang. The compromised data includes customers’ names, addresses, and contact details.
02
The Cl0p ransomware group claimed responsibility for an attack on Saks Fifth Avenue, by abusing the GoAnywhere MFT zero-day. Saks stated that no customer or employee data was compromised.
03
Microsoft and the HHS warned against the Black Basta ransomware and Russia-based Killnet hacker group targeting the healthcare sector and other critical infrastructure sectors.
04
Kaspersky researchers have identified cyberattacks targeting government, agriculture, and transportation organizations in Donetsk, Lugansk, and Crimea, conducted by the new Bad Magic APT.
05
A recent report by HP Wolf Security revealed a 38% rise in malicious PDF attachments in phishing attacks and a 42% surge in malware delivered inside archive files.
06
Attackers are targeting .NET developers with crypto stealers delivered via the NuGet repository, mimicking several legitimate packages through typosquatting.
07
Ransomware is the biggest cyber threat to the EU transport sector, and OT systems may be targeted in the future. State-sponsored groups are interested in the maritime sector - warned ENISA.
08
CatB ransomware actors were found leveraging DLL search order hijacking to launch their payload while evading detection. They are also abusing the MSDTC service.
09
Mastercard acquired threat protection platform Baffin Bay Networks with an aim to enhance multi-layered protection against cybersecurity risks.
10
Maryland-based cybersecurity startup Aembit raised $16.6 million in seed funding from Ten Eleven Ventures and Ballistic Ventures.
