A digital storm hits a harbor of hope: The Big Issue, champion of the U.K's homeless, faces a cyber onslaught as the Qilin ransomware gang claimed a 550GB data heist. Echoing global allies, Finland named China's APT31 as the mastermind behind the March 2021 parliamentary cyberattack. Moving on, employees—both current and former—of the State Department face threats to their payroll accounts in a new fraud scheme. Read on for more.
01
The Big Issue, a U.K street newspaper supporting homeless people, was hit by a cyberattack. The attack, claimed by the Qilin ransomware gang, allegedly compromised 550GB of data.
02
After similar actions by the U.S., the U.K, and New Zealand, Finnish authorities attributed the March 2021 attack on the country’s parliament to the China-linked group APT31, identifying one suspect.
03
Researchers at Oligo unearthed a hacking campaign dubbed ShadowRay, ongoing since September 2023, exploiting an unpatched vulnerability in the Ray AI framework to hijack computing power and leak sensitive data from thousands of companies.
04
The Black Lotus Labs team uncovered a large-scale campaign targeting EOL routers and IoT devices, driven by an updated version of TheMoon. The malware operated 40,000 bots from 88 countries between January and February.
05
Unit 42 researchers identified two Chinese APT groups conducting cyberespionage activities against entities and member countries affiliated with the Association of Southeast Asian Nations (ASEAN).
06
The U.S. Department of State warned former and current employees of a fraud scheme targeting their payroll accounts via phishing, social engineering, and email account takeovers.
07
The official Twitter account of Trezor was hacked, leading to the posting of scams and offensive messages. The hack was initiated through a phishing scheme involving a fake Calendly link used to obtain login credentials.
08
The German national cybersecurity authority found 17,000 Microsoft Exchange servers in Germany exposed online and vulnerable to critical security vulnerabilities, affecting various institutions and businesses.
09
Bedrock Security, a California-based data security startup, announced a $10 million seed funding round led by Greylock.
10
Airbus announced its acquisition of INFODAS, a German cybersecurity and IT solutions provider, to strengthen its cybersecurity portfolio.
