Hi folks,

I hope you're all doing great! I'm good, but exhausted. We held a birthday party yesterday for our oldest, with about eight 8-year olds having a blast. Wonderful to see, but suffice it to say that no one should be expected to be very productive the day after that. After I press 'send' on this week's issue I'm going to make the most of my time off, relax, and probably play some Enshrouded :-)

Enjoy the read and have a good weekend!

Dieter Van der Stock

Quick links

  • Mandiant: Russian hacking unit Sandworm linked to breach of Texas water facility: link.
  • LastPass users targeted in phishing attacks good enough to trick even the savvy: link.
  • LabHost phishing service with 40,000 domains disrupted, 37 arrested: link.
  • 'Crude' ransomware tools proliferating on the dark web for cheap: link.
  • Akira ransomware gang made $42 million from 250 attacks since March 2023: FBI: link.
Dieter Van der Stock

Breaches and leaks

  • ‘Large volume’ of data stolen from UN agency after ransomware attack: link.
  • 840-bed hospital in France postpones procedures after cyberattack: link.
  • Michigan healthcare organization says ransomware breached data of 185,000: link.
  • Telecom giant Frontier shuts down some systems after cyberattack: link.
  • Ransomware attack has cost UnitedHealth $872 million; total expected to surpass $1 billion: link.
  • Giant Tiger breach sees 2.8 million records leaked: link.
  • Chipmaker Nexperia confirms breach after ransomware gang leaks data: link.
  • Daixin ransomware gang claims attack on Omni Hotels: link.
  • Roku warns 576,000 accounts hacked in new credential stuffing attacks: link.
  • Cerebral to pay $7 million settlement in Facebook pixel data leak case: link.
  • Billions of public Discord messages may be sold through a scraping service: link.
  • Food and agriculture sector hit with more than 160 ransomware attacks last year: link.
Dieter Van der Stock

Issues and fixes

  • Multiple botnets exploiting one-year-old TP-Link flaw to hack routers: link.
  • Ivanti warns of critical flaws in its Avalanche MDM solution: link.
  • Hackers hijack OpenMetadata apps in Kubernetes cryptomining attacks: link.
  • Cisco discloses IMC root escalation flaw with public exploit code: link.
  • PuTTY SSH client flaw allows recovery of cryptographic private keys: link.
Dieter Van der Stock