Lockbit returns. Executive order banning data sales to China, Russia and others.  

News

Hi folks,

It's a quick version this week, I'm about to travel for a few days and have plenty of work and packing left to do :-) Have a good one!

Dieter Van der Stock

LockBit ransomware returns, restores servers after police disruption

The LockBit gang is relaunching its ransomware operation on a new infrastructure less than a week after law enforcement hacked their servers, and is threatening to focus more of their attacks on the government sector.

bleepingcomputer.com

New executive order bans mass sale of personal data to China, Russia

U.S. President Joe Biden has signed an executive order that aims to ban the bulk sale and transfer of Americans' private data to "countries of concern" such as China, Russia, Iran, North Korea, Cuba, and Venezuela.

bleepingcomputer.com

GitHub besieged by millions of malicious repositories in ongoing attack

GitHub keeps removing malware-laced repositories, but thousands remain.

arstechnica.com

White House urges devs to switch to memory-safe programming languages

The White House Office of the National Cyber Director (ONCD) urged tech companies today to switch to memory-safe programming languages, such as Rust, to improve software security by reducing the number of memory safety vulnerabilities.

bleepingcomputer.com

PayPal files patent for new method to detect stolen cookies

PayPal has filed a patent application for a novel method that can identify when "super-cookie" is stolen, which could improve the cookie-based authentication mechanism and limit account takeover attacks.

bleepingcomputer.com

Quick links

  • Okta, with a bruised reputation, rethinks security from the top down: link.
  • Registrars can now block all domains that resemble brand names: link.
  • Malicious AI models on Hugging Face backdoor users’ machines: link.
  • Updated NIST cybersecurity framework adds core function, focuses on supply chain risk management: link.
  • Ukraine signs security deals with Western allies to help counter Russian cyberattacks: link.
  • Kali Linux 2024.1 released with 4 new tools, UI refresh: link.
Dieter Van der Stock

Breaches and leaks

  • Rhysida ransomware wants $3.6 million for children’s stolen data: link.
  • Pharmaceutical giant Cencora reports cyberattack: link.
  • Steel giant ThyssenKrupp confirms cyberattack on automotive division: link.
  • Hessen Consumer Center says systems encrypted by ransomware: link.
  • Anycubic 3D printers hacked worldwide to expose security flaw: link.
  • German applied sciences university announces being hit by criminal cyberattack: link.
  • Hackers steal nearly $10 million from Axie Infinity co-founder’s personal accounts: link.
  • U-Haul says 67,000 customers affected in records system breach: link.
Dieter Van der Stock

Implement passwordless logins into your app in seconds

Solid security shouldn't have to come at the expense of a great user experience. That's why Passage by 1Password is building a passwordless auth service that allows you to implement passkey logins in your app or website with just a few lines of code. (Sponsored)

passage.id

No spam, ever. We'll never share your email address and you can opt out at any time.