Killnet has become a menace with its constant campaigns against significant government entities. It took down the website of the European Parliament, however, briefly. Misconfigured databases are bad, worse when they contain sensitive information on children. This is something that a now-defunct online interview system did. Meanwhile, researchers found another backdoored Chrome extension. Read along for the top 10 highlights from the past 24 hours.
01
A DDoS attack by the pro-Kremlin threat group Killnet knocked the European Parliament website offline for two hours.
02
A misconfigured database belonging to Tridas eWriter, containing 16,000 records, was found exposing the sensitive PII of thousands of children.
03
An alleged ransomware attack took down the servers used by AIIMS New Delhi for nine hours. The attack impacted billing, smart lab, appointment system, and report generation, among others.
04
Hospitality company Sonder recently revealed suffering a data breach, on November 14, that potentially affected guest records, including usernames, encrypted passwords, and contact details.
05
The Ontario Secondary School Teachers’ Federation (OSSTF) revealed that it underwent a ransomware attack between May 25 and 30, which encrypted its systems.
06
A ‘Transfer Money to safe account’ scam is currently underway in the Netherlands, warned Dutch Fraud reporting site FraudeHelpDesk.
07
The dormant WannaRen ransomware resurfaced as Life ransomware and has been targeting Indian organizations.
08
International law enforcement took down the iSpoof online spoofing service and arrested 146 individuals, including the platform leader.
09
Threat actors are using fake MSI Afterburner download portals to infect Windows gamers and power users with cryptominers and RedLine Stealer.
10
SearchBlox, a Chrome browser extension, was found containing a backdoor that can pilfer Roblox credentials and Rolimons assets. It has been installed over 200,000 times.
