News for August 4, 2024

By I_g_o_r | Some news | 3 Aug 2024


Millions of Websites Susceptible to XSS Attack via OAuth Implementation Flaw

https://www.securityweek.com/millions-of-websites-susceptible-xss-attack-via-oauth-implementation-flaw/

 

Crypto Exchange To 'Socialize' $230 Million Security Breach Loss Among Customers

https://news.slashdot.org/story/24/07/29/1629239/crypto-exchange-to-socialize-230-million-security-breach-loss-among-customers

 

AI could force 12 million workers to switch jobs in coming years, causing unprecedented competition

https://www.businessinsider.com/ai-job-market-replacing-workers-competition-job-losses-artificial-intelligence-2024-7

 

Forbes Estimates Google's Chrome Temporarily Lost Millions of Saved Passwords

https://tech.slashdot.org/story/24/07/29/0631227/forbes-estimates-googles-chrome-temporarily-lost-millions-of-saved-passwords

 

Casper Network says security breach contained, network still halted

https://crypto.news/casper-network-says-security-breach-contained-network-still-halted/

 

Fake Falcon crash reporter installer used to target German Crowdstrike users

https://securityaffairs.com/166256/hacking/fake-crowdstrike-falcon-crash-reporter-installer.html

 

RaspAP Flaw Let Hackers Escalate Privileges with Raspberry Pi Devices

https://gbhackers.com/raspap-flaw-let-hackers-escalate-privileage/

 

Beware fake conferencing software targeting crypto assets, warns SlowMist founder

https://cointelegraph.com/news/fake-video-conferencing-software-crypto-scam

 

SeleniumGreed: Threat actors exploit exposed Selenium Grid services for Cryptomining

https://www.wiz.io/blog/seleniumgreed-cryptomining-exploit-attack-flow-remediation-steps

 

Gemini Cryptocurrency Exchange Reports Data Breach

https://www.jdsupra.com/legalnews/gemini-cryptocurrency-exchange-files-9835581/

 

How Infostealers Pillaged the World’s Passwords

https://www.wired.com/story/infostealer-malware-password-theft/

 

Town of Summerville targeted in ransomware-based cyberattack

https://www.live5news.com/2024/07/26/town-summerville-suffers-ransomware-based-cyberattack/

 

FBCS data breach impact now reaches 4.2 million people

https://www.bleepingcomputer.com/news/security/fbcs-data-breach-impact-now-reaches-42-million-people/

 

US Offers $10M Reward for Information on North Korean Hacker

https://www.darkreading.com/threat-intelligence/us-offers-10m-reward-for-information-on-north-korean-hacker

 

3,000 Fake GitHub Accounts Used to Spread Malware in Stargazers Ghost Scheme

https://hackread.com/fake-github-accounts-spread-malware-stargazers-ghost/

 

Malicious Python Package Attacking macOS Developers To Steal Google Cloud Logins

https://gbhackers.com/malicious-python-package-macos-google-cloud/

 

Exhausted startup founders are taking corporate jobs as tech downturn gets ugly

https://www.businessinsider.com/founders-putting-startup-dreams-on-hold-in-the-tech-downturn-2024-7

 

Dune Analytics: ~1.7M new digital coins entered circulation in H1 2024, compared with 264K in H1 2023, as the crypto market revival fuels a surge in memecoins

https://www.techmeme.com/240728/p9#a240728p9

https://www.nytimes.com/2024/07/27/technology/memecoins-crypto-surge.html

 

Low-Income Homes Drop Internet Service After Congress Kills Discount Program

https://tech.slashdot.org/story/24/07/29/2333200/low-income-homes-drop-internet-service-after-congress-kills-discount-program

 

Beware Of Malicious Crypto Management App That Drains Your Wallet

https://gbhackers.com/malicious-crypto-app-warning/

 

BingoMod Android RAT steals money from victims' bank accounts and wipes data

https://securityaffairs.com/166410/malware/bingomod-android-rat.html

 

Google Workspace security flaw exposed thousands of accounts to hackers

https://www.neowin.net/news/google-workspace-security-flaw-exposed-thousands-of-accounts-to-hackers/

 

Telegram-Controlled TgRat Trojan Targets Linux Servers

https://hackread.com/telegram-controlled-tgrat-trojan-targets-linux-servers/

 

Meme-stock investors lose millions on energy company takeover

https://financialpost.com/investing/tellurian-takeover-meme-stock-investors

 

Multi-platform spyware provider Spytech gets hacked, revealing global scale of operations and swaths of unencrypted victim data

https://www.tomshardware.com/tech-industry/cyber-security/multi-platform-spyware-provider-spytech-gets-its-privacy-breached-revealing-global-scale-of-operations-and-swathes-of-unencrypted-victim-data

 

Meta agrees to $1.4 billion settlement in Texas biometric data lawsuit

https://www.cnbc.com/2024/07/30/meta-agrees-to-1point4-billion-settlement-in-texas-biometric-data-lawsuit.html

 

Why are healthy people dying young?

https://www.youtube.com/watch?v=No3dCh2mWcI

 

Google Workspace Vulnerability Allowed Hackers to Access 3rd-Party Services

https://hackread.com/google-workspace-vulnerability-hackers-access-services/

 

Grayscale Bitcoin Trust ETF Slides As It Seeds Mini Bitcoin Fund

https://www.zerohedge.com/crypto/grayscale-bitcoin-trust-etf-just-crashed

 

Bitdefender Flaw Let Attackers Trigger Server-Side Request Forgery Attacks

https://gbhackers.com/bitdefender-flaw-let-attackers/

 

China Ponders Creating a National 'Cyberspace ID'

https://tech.slashdot.org/story/24/07/30/0252258/china-ponders-creating-a-national-cyberspace-id

 

Wyden Tells FTC: Unchecked Automakers Are Still Spying On Their Customers At Massive Scale

https://www.techdirt.com/2024/07/30/wyden-tells-ftc-unchecked-automakers-are-still-spying-on-their-customers-at-massive-scale/

 

Cyber incident at a blockchain platform

https://x.com/Casper_Network/status/1817852127487689114

 

The lie of music discovery

https://www.zeynepevecen.dev/writing/music

 

Honeywell Considering Quantinuum IPO, Sets $10 Billion Valuation

https://thequantuminsider.com/2024/07/27/bloomberg-news-honeywell-considering-quantinuum-ipo-sets-10-billion-valuation/

 

Voice Over Wi-Fi Vulnerability Let Attackers Eavesdrop Calls And SMS

https://gbhackers.com/voice-over-wi-fi-eavesdropping-risk/

 

UK govt links 2021 Electoral Commission breach to Exchange server

https://www.bleepingcomputer.com/news/security/uk-govt-links-2021-electoral-commission-breach-to-exchange-server/

 

A third of AI projects will be abandoned by businesses by the end of next year

https://www.neowin.net/news/a-third-of-ai-projects-will-be-abandoned-by-businesses-by-the-end-of-next-year/

 

HealthEquity says data breach impacts 4.3 million people

https://www.bleepingcomputer.com/news/security/healthequity-says-data-breach-impacts-43-million-people/

 

This Is How You Can Develop a Decentralized Email System on the Blockchain

https://hackernoon.com/this-is-how-developed-a-decentralized-e-mail-system-is-on-the-blockchain

 

A crafty phishing campaign targets Microsoft OneDrive users

https://securityaffairs.com/166312/hacking/microsoft-onedrive-phishing.html

 

ubook Suffered Data Breach, 710,000 Users’ Data Exposed

https://gbhackers.com/ubook-suffered-data-breach/

 

Indian APT Targeting Mediterranean Ports and Maritime Facilities

https://www.securityweek.com/indian-apt-targeting-mediterranean-ports-and-maritime-facilities/

 

Phishing Attack Steals Donations from Trump Voters Using Fake Websites

https://hackread.com/phishing-attack-steals-donations-trump-supporters/

 

Crypto sleuth investigates suspect in Sydney Sweeney’s hack

https://cointelegraph.com/news/sydney-sweeney-hack-zachxbt-investigate

 

Security researchers reveal it is possible to eavesdrop on HDMI cables to capture computer screen data

https://techxplore.com/news/2024-07-reveal-eavesdrop-hdmi-cables-capture.html

 

Why Are The Properties Of Gold So Unique?

https://www.youtube.com/watch?v=0g7lu3vhaNo

 

Azure DDoS Attack Amplified by Cyber-Defense Error

https://www.darkreading.com/cloud-security/microsoft-azure-ddos-attack-amplified-cyber-defense-error

 

$75 Million Ransom Paid to Dark Angels Ransomware Group

https://hackread.com/75-million-ransom-paid-dark-angels-ransomware-group/

 

Meta's AI Safety System Defeated By the Space Bar

https://science.slashdot.org/story/24/07/30/2024237/metas-ai-safety-system-defeated-by-the-space-bar

 

India-Linked SideWinder Group Pivots to Hacking Maritime Targets

https://www.darkreading.com/cyberattacks-data-breaches/india-linked-sidewinder-group-pivots-to-hacking-maritime-targets

 

Mysterious family of malware hid in Google Play for years

https://arstechnica.com/security/2024/07/mysterious-family-of-malware-hid-in-google-play-for-years/

 

Global SMS Stealer Targeting Android Users via Malicious Apps and Ads

https://hackread.com/global-sms-stealer-android-users-malicious-apps-ads/

 

Founder of Crypto DeFi Project BitClout Arrested

https://www.wsj.com/articles/founder-of-crypto-defi-project-bitclout-arrested-faces-wire-fraud-sec-charges-d2e86ea2?mod=hp_minor_pos11

 

CrowdStrike Is Sued By Shareholders Over Huge Software Outage

https://yro.slashdot.org/story/24/07/31/2233234/crowdstrike-is-sued-by-shareholders-over-huge-software-outage

 

New “Sitting Ducks” DNS Attack Lets Hackers Easy Domain Takeover

https://hackread.com/sitting-ducks-dns-attack-domain-takeover-data-breaches/

 

Senators introduce bill to protect individuals against AI-generated deepfakes

https://www.engadget.com/senators-introduce-bill-to-protect-individuals-against-ai-generated-deepfakes-202809816.html

 

Ransomware Attack On Service Provider Hits 300 Small Banks Across India

https://www.ndtv.com/india-news/ransomware-attack-on-tech-service-provider-shuts-down-payment-systems-of-300-small-banks-across-india-news-agency-reuters-6234160

 

Tech giants: AI will transform 92% of ICT jobs; we must upskill now

https://venturebeat.com/ai/tech-giants-ai-will-transform-92-of-ict-jobs-we-must-upskill-now/

 

Ransomware at a blood donor organization in the USA

https://oneblood.org/pages/ransomware-details.html

 

Malaysia is Working on an Internet 'Kill Switch'

https://tech.slashdot.org/story/24/07/31/1950209/malaysia-is-working-on-an-internet-kill-switch

 

Pro-Ukrainian hackers claim attack on Russian cyber company

https://therecord.media/pro-ukraine-hackers-attack-russian-cyber-firm

 

T-Mobile Sued For ‘Lifetime’ Price Guarantee That Wasn’t

https://www.techdirt.com/2024/07/31/t-mobile-sued-for-lifetime-price-guarantee-that-wasnt/

 

Cyber attack on a community college in Arkansas, USA

https://www.5newsonline.com/article/news/local/nwacc-cyberattack-ransomware-northwest-arkansas-college/527-e131f8fa-c07e-4243-b4fa-59ac037c0db2

 

World leading silver producer Fresnillo discloses cyberattack

https://www.bleepingcomputer.com/news/security/world-leading-silver-producer-fresnillo-discloses-cyberattack/

 

Cyber attack on a trading company in Singapore

https://www.csoonline.com/de/a/hackerangriff-auf-bremer-handelskonzern-melchers,3693432

 

North Koreans Target Devs Worldwide With Spyware, Job Offers

https://www.darkreading.com/threat-intelligence/north-koreans-target-devs-worldwide-spyware-job-offers

 

Quantum Computing Pioneer Sees Widespread Industry Impact Within Five Years!!!

https://thequantuminsider.com/2024/07/30/quantum-computing-pioneer-sees-widespread-industry-impact-within-five-years/

 

Pharma Giant Cencora confirmed the theft of personal and health information

https://securityaffairs.com/166422/data-breach/cencora-confirmed-theft-pii-heath-data.html

 

Beware of BingoMod! This dangerous Android malware steals your money, wipes your phone, and takes control of your device.

https://hackread.com/bingomod-android-malware-security-apps-wipes-data/

 

Another Federal Court Says Warrants Are Needed For Device Searches At The Border

https://www.techdirt.com/2024/08/01/another-federal-court-says-warrants-are-needed-for-device-searches-at-the-border/

 

TgRAT Malware Attacking Linux Servers with New Variant

https://gbhackers.com/tgrat-malware-attacking-linux-servers/

 

July crypto hacks total $266M, WazirX leads losses

https://cointelegraph.com/news/july-2024-crypto-hacks-analysis

 

Germany names China as source of attack on government geospatial agency

https://www.theregister.com/2024/08/01/germany_accuses_china_of_cyberattack/

 

Bitcoin Faction Exposes the Evils of Democracy!!!

https://www.youtube.com/watch?v=iyikoZjCV6w

 

Rapid renewable energy growth leads FBI to warn hackers will hit new, vulnerable power supply

https://www.cnbc.com/2024/07/29/renewable-energy-growth-leads-fbi-to-warn-hackers-will-hit-new-power.html

 

US, UK Accelerate Quantum Computing Programs After China Breakthrough

https://www.zerohedge.com/technology/us-uk-accelerate-quantum-computing-programs-after-china-breakthrough

 

India contemplates compulsory dynamic 2FA for digital payments

https://www.theregister.com/2024/08/02/india_contemplates_compulsory_dynamic_2fa/

 

New Panamorfi DDoS Attack Exploits Misconfigured Jupyter Notebooks

https://hackread.com/panamorfi-ddos-attack-misconfigured-jupyter-notebooks/

 

Crypto lender Genesis and related companies complete their bankruptcy restructuring and begin distributing ~$4B in digital assets and cash to creditors

https://www.bloomberg.com/news/articles/2024-08-02/crypto-lender-genesis-completes-restructuring-begins-payouts

 

Cyberattack Strikes Prominent UK Immigration Company

https://therecord.media/hackers-email-victims-customers-data-breach

 

APT41 likely compromised Taiwanese government-affiliated research institute with ShadowPad and Cobalt Strike

https://blog.talosintelligence.com/chinese-hacking-group-apt41-compromised-taiwanese-government-affiliated-research-institute-with-shadowpad-and-cobaltstrike-2/

 

Millions of US Voter Data Exposed in 13 Misconfigured Databases

https://hackread.com/millions-us-voter-data-exposed-misconfigured-databases/

 

Cyberattack on World’s Largest Silver Producer Shows Data Is the New Gold

https://www.pymnts.com/cybersecurity/2024/cyberattack-world-largest-silver-producer-highlights-data-role/

 

Fortune 50 Co. Pays Record-Breaking $75M Ransomware Demand

https://www.darkreading.com/threat-intelligence/fortune-50-company-pays-record-breaking-75m-ransomware-demand

 

Avtech camera vulnerability actively exploited in the wild, CISA warns

https://securityaffairs.com/166471/hacking/avtech-camera-vulnerability-exploited.html

 

Hackers Actively Exploiting WordPress Plugin Arbitrary File Upload Vulnerability

https://gbhackers.com/exploiting-wordpress-plugin/

 

New BlankBot Android Trojan Can Steal User Data

https://www.securityweek.com/new-blankbot-android-trojan-can-steal-user-data/

 

DeFi protocol removed an important line of code that led to a $212K hack

https://cointelegraph.com/news/defi-protocol-convergence-removed-code-leading-to-212k-hack

How do you rate this article?

32


I_g_o_r
I_g_o_r

I am curious about science, technologies and their applications to solving real problems.


Some news
Some news

News on cyber security, data breaches, crypto security, trends, etc. Image of Suzy Hazelwood from pexels.com

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.