Japan Airlines System Hit by Cyber Attack, Flight Operations Affected 

Japan Airlines (JAL), the nation’s second-largest airline, reported a significant cyberattack on its systems early Thursday morning, causing disruptions to both domestic and international flight operations. 

Source: https://cybersecuritynews.com/japan-airlines-system-hit-by-cyber-attack/
 

European Space Agency’s official store hacked to steal payment cards 

European Space Agency’s official web shop was hacked as it started to load a piece of JavaScript code that generates a fake Stripe payment page at checkout. 

Source: https://www.bleepingcomputer.com/news/security/european-space-agencys-official-store-hacked-to-steal-payment-cards/
 

Ascension: Health data of 5.6 million stolen in ransomware attack 

Ascension, one of the largest private U.S. healthcare systems, is notifying nearly 5.6 million patients and employees that their personal and health data was stolen in a May cyberattack linked to the Black Basta ransomware operation. 

Source: https://www.bleepingcomputer.com/news/security/ascension-health-data-of-56-million-stolen-in-ransomware-attack/
 

North Korean hackers stole $1.3 billion worth of crypto this year 

North Korean hackers have stolen $1.34 billion worth of cryptocurrency across 47 cyberattacks that occurred in 2024, according to a new report by blockchain analysis company Chainalysis. 

Source: https://www.bleepingcomputer.com/news/security/north-korean-hackers-stole-13-billion-worth-of-crypto-this-year/
 

Krispy Kreme breach, data theft claimed by Play ransomware gang 

The Play ransomware gang has claimed responsibility for a cyberattack that impacted the business operations of the U.S. doughnut chain Krispy Kreme in November. 

Source: https://www.bleepingcomputer.com/news/security/krispy-kreme-breach-data-theft-claimed-by-play-ransomware-gang/

BadBox malware botnet infects 192,000 Android devices despite disruption 

The BadBox Android malware botnet has grown to over 192,000 infected devices worldwide despite a recent sinkhole operation that attempted to disrupt the operation in Germany. 

Source: https://www.bleepingcomputer.com/news/security/badbox-malware-botnet-infects-192-000-android-devices-despite-disruption/
 

New ‘OtterCookie’ malware used to backdoor devs in fake job offers 

North Korean threat actors are using new malware called OtterCookie in the Contagious Interview campaign that is targeting software developers. 

Source: https://www.bleepingcomputer.com/news/security/new-ottercookie-malware-used-to-backdoor-devs-in-fake-job-offers/
 

Google And Microsoft Users Warned As New 2FA Bypass Attacks Reported 

Security researchers have warned that the demise of the Rockstar 2FA exploit service isn’t all good news—far from it, as here comes FlowerStorm, which could be the same threat that’s evolved. 

Source: https://www.forbes.com/sites/daveywinder/2024/12/25/google-and-microsoft-users-warned-as-new-2fa-bypass-attacks-reported/
 

Iran’s Charming Kitten Deploys BellaCPP: A New C++ Variant of BellaCiao Malware 

The Iranian nation-state hacking group known as Charming Kitten has been observed deploying a C++ variant of a known malware called BellaCiao. 

Source: https://thehackernews.com/2024/12/irans-charming-kitten-deploys-bellacpp.html
 

New Sophisticated Attack Weaponizes Windows Defender to Bypass EDR 

A sophisticated attack technique that weaponizes Windows Defender Application Control (WDAC) to disable Endpoint Detection and Response (EDR) sensors on Windows machines. 

Source: https://cybersecuritynews.com/attack-weaponizes-windows-defender/  

Smarttech247