The Play ransomware gang has claimed responsibility for a cyberattack that impacted the business operations of the U.S. doughnut chain Krispy Kreme in November. […]
In Other News: McDonald’s API Hacking, Netflix Fine, Malware Kills ICS Process
Noteworthy stories that might have slipped under the radar: McDonald’s API hacking, Netflix fined nearly $5 million in Netherlands, experimental malware killing ICS process.
The post In Other News: McDonald’s API Hacking, Netflix Fine, Malware Kills ICS Process appeared first on SecurityWeek.
Ascension: Health data of 5.6 million stolen in ransomware attack
Ascension, one of the largest private U.S. healthcare systems, is notifying over 5.6 million patients and employees that their personal and health data was stolen in a May cyberattack linked to the Black Basta ransomware operation. […]
Botnet of 190,000 BadBox-Infected Android Devices Discovered
Bitsight has discovered a BadBox botnet consisting of over 190,000 Android devices, mainly Yandex smart TVs and Hisense smartphones.
The post Botnet of 190,000 BadBox-Infected Android Devices Discovered appeared first on SecurityWeek.
Ransomware Group Claims Theft of Personal, Financial Data From Krispy Kreme
The Play ransomware group claims to have stolen sensitive data from donut and coffee retail chain Krispy Kreme.
The post Ransomware Group Claims Theft of Personal, Financial Data From Krispy Kreme appeared first on SecurityWeek.
Another NetWalker Ransomware Affiliate Gets 20-Year Prison Sentence in US
A second individual accused of being involved in NetWalker ransomware attacks, a Romanian national, has received a 20-year prison sentence.
The post Another NetWalker Ransomware Affiliate Gets 20-Year Prison Sentence in US appeared first on SecurityWeek.
CISA Urges Immediate Patching of Exploited BeyondTrust Vulnerability
CISA is urging federal agencies to patch a recent critical vulnerability in BeyondTrust remote access products in one week.
The post CISA Urges Immediate Patching of Exploited BeyondTrust Vulnerability appeared first on SecurityWeek.
Massive live sports piracy ring with 812 million yearly visits taken offline
The Alliance for Creativity and Entertainment (ACE) has taken down one of the world’s largest live sports streaming piracy rings, with over 821 million visits last year. […]
Rockwell PowerMonitor Vulnerabilities Allow Remote Hacking of Industrial Systems
Rockwell’s PowerMonitor is affected by critical vulnerabilities that can enable remote access to industrial systems for disruption or further attacks.
The post Rockwell PowerMonitor Vulnerabilities Allow Remote Hacking of Industrial Systems appeared first on SecurityWeek.
Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
The Lazarus Group, an infamous threat actor linked to the Democratic People’s Republic of Korea (DPRK), has been observed leveraging a “complex infection chain” targeting at least two employees belonging to an unnamed nuclear-related organization within the span of one month in January 2024.
The attacks, which culminated in the deployment of a new modular backdoor referred to as CookiePlus, are
The attacks, which culminated in the deployment of a new modular backdoor referred to as CookiePlus, are