Cybercriminals excel at exploiting pop culture trends and current affairs to craft irresistible traps for their targets. In a similar vein, researchers warned users to identify and avoid downloading counterfeit apps of the popular multiplayer game, Among Us. Meanwhile, a large number of online fraudsters have used the personal data of California prison inmates to encash millions of dollars from unemployment insurance schemes. With this, continue reading for the most important cybersecurity news highlights for the day.
01
Researchers reported over 60 fake apps on Among Us, an online multiplayer social deduction game, distributing malware to unsuspecting users.
02
Scammers used the names and personal information of California jail and prison inmates to pilfer hundreds of millions of dollars through unemployment insurance fraud.
03
Security firm Sophos underwent a security breach wherein it laid bare personal details of some customers. Attackers exploited a zero-day vulnerability to gain access to exposed XG devices.
04
IIMjobs.com, an Indian jobs listing website, suffered a database breach, exposing the personal data of nearly 1.4 million users that were registered on the website.
05
Indian edtech startup WhiteHat Jr could have potentially exposed over 280,000 students due to multiple API vulnerabilities in its AWS S3 buckets.
06
French IT services giant Sopra Steria revealed that the Ryuk ransomware attack is likely to have a gross negative impact on operating margin of between $48 to $60 million.
07
A Group-IB report revealed ransomware operations, all in all, costed the world more than $1 billion between July 2019 and June 2020, while the actual damage could be much higher as attackers do not always publish stolen data.
08
Britain’s NCSC strongly advised organizations to rapidly patch a remote code execution flaw in MobileIron products that are being actively exploited by nation-state groups.
09
Interpol detained three Nigerians, allegedly part of a cybercriminal group, for victimizing more than 500,000 government and private sector firms in different cyberattack incidents, including BEC scams.
10
Splunk announced its acquisition of Flowmill, a Palo Alto-based network observability startup, for an undisclosed amount.
