News
Hi everyone,
I'm a bit short on time this week, so today will be a minimum issue. I hope you still enjoy it :-)
Cheers!
Breaches and leaks
- Colonial Pipeline cyberattack shuts down pipeline that supplies 45% of East Coast's fuel: link.
- Twilio discloses impact from Codecov supply-chain attack: link.
- Belgium’s government network goes down after massive DDoS attack: link.
- Peloton exercise bikes found exposing user data: link.
- U.S. Agency for Global Media data breach caused by a phishing attack: link.
- Ransomware gangs have leaked the stolen data of 2,100 companies so far: link.
- A student pirating software led to a full-blown Ryuk ransomware attack: link.
- Health care giant Scripps Health hit by ransomware attack: link.
- Swiss Cloud becomes the latest web hosting provider to suffer a ransomware attack: link.
- Data leak marketplaces aim to take over the extortion economy: link.
Linux commands and utilities commonly used by attackers
Uptycs' threat research team has observed several instances of Linux malware where the attackers leverage the inbuilt commands and utilities for a wide range of malicious activities. This post takes a close look at those and how you can use Uptycs to detect them. (Sponsored)
1Password for infrastructure secrets
1Password is opening up a feature where you can store secrets like API tokens and private certificates, and use them directly in your infrastructure through a private REST API provided by a 1Password Connect server. Worth checking out. (Sponsored)