British hospital group declares ‘major incident’ following cyberattack 

The NHS Trust responsible for a group of hospitals in northwest England has declared a “major incident” following a cyberattack, invoking the crisis management status for events that pose a serious risk to public health. 

Source: https://therecord.media/england-hospitals-cyberattack-nhs-wirral  

Blue Yonder ransomware attack disrupts grocery store supply chain 

Supply chain management firm Blue Yonder is warning that a ransomware attack caused significant disruption to its services, with the outages impacting grocery store chains in the UK. 

Source: https://www.bleepingcomputer.com/news/security/blue-yonder-ransomware-attack-disrupts-grocery-store-supply-chain/  

Chinese hackers breached T-Mobile’s routers to scope out network 

T-Mobile says the Chinese “Salt Typhoon” hackers who recently compromised its systems as part of a series of telecom breaches first hacked into some of its routers to explore ways to navigate laterally through the network. 

Source: https://www.bleepingcomputer.com/news/security/chinese-hackers-breached-t-mobiles-routers-to-scope-out-network/ 

Firefox and Windows zero-days exploited by Russian RomCom hackers 

Russian-based RomCom cybercrime group chained two zero-day vulnerabilities in recent attacks targeting Firefox and Tor Browser users across Europe and North America. 

Source: https://www.bleepingcomputer.com/news/security/firefox-and-windows-zero-days-exploited-by-russian-romcom-hackers/  

Hackers abuse popular Godot game engine to infect thousands of PCs 

Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and infect over 17,000 systems in just three months. 

Source: https://www.bleepingcomputer.com/news/security/new-godloader-malware-infects-thousands-of-gamers-using-godot-scripts/ 

Hackers breach US firm over Wi-Fi from Russia in ‘Nearest Neighbor Attack’ 

Russian state hackers APT28 (Fancy Bear/Forest Blizzard/Sofacy) breached a U.S. company through its enterprise WiFi network while being thousands of miles away, by leveraging a novel technique called “nearest neighbor attack.” 

Source: https://www.bleepingcomputer.com/news/security/hackers-breach-us-firm-over-wi-fi-from-russia-in-nearest-neighbor-attack/   

Russian Hackers Deploy HATVIBE and CHERRYSPY Malware Across Europe and Asia 

Threat actors with ties to Russia have been linked to a cyber espionage campaign aimed at organizations in Central Asia, East Asia, and Europe. 

Source: https://thehackernews.com/2024/11/russian-hackers-deploy-hatvibe-and.html 

Hackers exploit critical bug in Array Networks SSL VPN products 

America’s cyber defense agency has received evidence of hackers actively exploiting a remote code execution vulnerability in SSL VPN products Array Networks AG and vxAG ArrayOS. 

Source: https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-bug-in-array-networks-ssl-vpn-products/ 

Salt Typhoon hackers backdoor telcos with new GhostSpider malware 

The Chinese state-sponsored hacking group Salt Typhoon has been observed utilizing a new “GhostSpider” backdoor in attacks against telecommunication service providers. 

Source: https://www.bleepingcomputer.com/news/security/salt-typhoon-hackers-backdoor-telcos-with-new-ghostspider-malware/ 

Zello asks users to reset passwords after security incident 

Zello is warning customers to reset their passwords if their account was created before November 2nd in what appears to be another security breach. 

Source: https://www.bleepingcomputer.com/news/security/zello-asks-users-to-reset-passwords-after-security-incident/  

Smarttech247