South African Poultry Company Reports $1M Loss After Cyber Intrusion 

After Astral Foods fell victim to a cybersecurity incident last week, the company reported a $1.1 million loss in profits. 

Source: https://www.darkreading.com/cyberattacks-data-breaches/south-african-poultry-company-1m-loss-cyber-intrusion
 

OPSEC Nightmare: Leaking US Military Plans to a Reporter 

On March 24, Jeffrey Goldberg, editor-in-chief of The Atlantic, reported that US Secretary of Defense Pete Hegseth texted him precise plans via Signal regarding the US’s plans to bomb Houthi targets in Yemen. These attacks, Goldberg said, occurred roughly two hours after he received the plans at 11:44 a.m. ET on March 15. 

Source: https://www.darkreading.com/cybersecurity-operations/opsec-nightmare-leaking-us-military-plans-reporter
  

Cyberattack takes down Ukrainian state railway’s online services 

Ukrzaliznytsia, Ukraine’s national railway operator, has been hit by a massive cyberattack that disrupted online services for buying tickets both through mobile apps and the website. 

Source: https://www.bleepingcomputer.com/news/security/cyberattack-takes-down-ukrainian-state-railways-online-services/
  

Coinbase was primary target of recent GitHub Actions breach 

Researchers have determined that Coinbase was the primary target in a recent GitHub Actions cascading supply chain attack that compromised secrets in hundreds of repositories. 

Source: https://www.bleepingcomputer.com/news/security/coinbase-was-primary-target-of-recent-github-actions-breaches/
  

23andMe Bankruptcy Filing May Put Sensitive Data at Risk 

Genetic testing company 23andMe quietly filed for bankruptcy over the weekend, and now security experts are worried about the fate of its highly sensitive genetic data, which could be weaponized by cyber adversaries if it falls into the wrong hands. 

Source: https://www.darkreading.com/cyber-risk/23andme-bankruptcy-filing-sensitive-data-at-risk
  

FBI Warns of Document Converter Tools Due to Uptick in Scams 

The FBI’s Denver field office is warning of an increase in scammers who are tricking online users by offering free online document converter tools. 

Source: https://www.darkreading.com/cyberattacks-data-breaches/fbi-document-converter-tools-scam
  

CISA tags NAKIVO backup flaw as actively exploited in attacks 

CISA has warned U.S. federal agencies to secure their networks against attacks exploiting a high-severity vulnerability in NAKIVO’s Backup & Replication software. 

Source: https://www.bleepingcomputer.com/news/security/cisa-tags-nakivo-backup-flaw-as-actively-exploited-in-attacks/
  

VexTrio Using 20,000 Hacked WordPress Sites in Traffic Redirect Scheme 

A nearly decade-long malware campaign known as “DollyWay World Domination” has compromised more than 20,000 WordPress websites over the past eight years. 

Source: https://www.darkreading.com/cyberattacks-data-breaches/vextrio-20000-hacked-wordpress-sites-traffic-redirect-scheme
  

Fake Semrush ads used to steal SEO professionals’ Google accounts 

A new phishing campaign is targeting SEO professionals with malicious Semrush Google Ads that aim to steal their Google account credentials. 

Source: https://www.bleepingcomputer.com/news/security/fake-semrush-ads-used-to-steal-seo-professionals-google-accounts/ 
 

New Phishing Campaign Attacking Mac Users to Steal User Credentials 

A sophisticated phishing campaign has recently shifted its focus to target Mac users, demonstrating the evolving nature of cyber threats in response to improved security measures. 

Source: https://cybersecuritynews.com/new-phishing-campaign-attacking-mac-users/ 

 

  

Smarttech247