Cyberattacks

CDK Global Cyber Incident Affects Automotive Dealers Across the US

Jun 24, 2024 By Stefan Hostetler In Arctic Wolf

On June 19, 2024, CDK Global notified customers that a cyber incident had led to a shutdown of its systems, significantly impacting car dealerships across the United States. CDK Global serves nearly 15,000 dealership locations, and the incident caused substantial disruption, forcing car dealerships to halt operations and revert to manual processes. Dealerships were initially notified about the incident around 2AM Eastern time on June 19, 2024, with an update at 8AM confirming the incident.

Read Post

Arctic Wolf

Read more about CDK Global Cyber Incident Affects Automotive Dealers Across the US

Vulnerability management goes much deeper than patching

Jun 24, 2024 By Rachel Sudbeck In 1Password

In 2016, the Large Hadron Collider in Switzerland fell prey to a vicious and devastating attack.

Read Post

1Password

Read more about Vulnerability management goes much deeper than patching

European businesses anticipate more cybersecurity attacks, but feel unprepared for them

Jun 18, 2024 By Cloudflare In Cloudflare

New Cloudflare study reveals that 64% of business leaders expect a cybersecurity incident in the next 12 months, but only 29% feel highly prepared to defend against them.

Read Post

Cloudflare

Read more about European businesses anticipate more cybersecurity attacks, but feel unprepared for them

Securing Docker Containers Against Commando Cat Attacks: Best Practices for Enhanced Cybersecurity

Jun 18, 2024 By Foresiet In Foresiet

Cybersecurity researchers have uncovered a malicious Python package in the Python Package Index (PyPI) repository designed to distribute an information stealer known as Lumma (aka LummaC2). The counterfeit package, crytic-compilers, mimics the legitimate crytic-compile library through typosquatting tactics. Before its removal by PyPI maintainers, the counterfeit package was downloaded 441 times. Impersonation and Deception Tactics.

Read Post

Foresiet

Read more about Securing Docker Containers Against Commando Cat Attacks: Best Practices for Enhanced Cybersecurity

Brazilian Entities Increasingly Targeted by Nation-State Phishing Attacks

Jun 18, 2024 By Stu Sjouwerman In KnowBe4

Mandiant has published a report looking at cyber threats targeting Brazil, finding that more than 85% of government-backed phishing activity comes from threat actors based in China, North Korea and Russia. “The Brazil-focused targeting of these groups mirrors the broader priorities and industry targeting trends we see elsewhere,” the researchers write.

Read Post

KnowBe4

Read more about Brazilian Entities Increasingly Targeted by Nation-State Phishing Attacks

The Cyber Threats Targeting the UEFA League - Euro 2024

Jun 16, 2024 By Alon Davidoff In Cyberint

The UEFA League, alternatively known as Euro 2024, has officially started, marking a thrilling period for football fans worldwide. The unmatched enthusiasm for watching the matches, whether through digital screens or by experiencing the live vibe in the stadiums, has filled the air. However, this surge in excitement isn’t solely confined to sports fans but has also caught the attention of threat actors.

Read Post

Cyberint

Read more about The Cyber Threats Targeting the UEFA League - Euro 2024

How Enterprise Identity Protection Can Prevent Cyber Attacks?

Jun 13, 2024 By SecuritySenses In SecuritySenses

Protecting enterprise identities has never been more critical in today's interconnected business landscape. Cybersecurity Ventures predicts cybercrime will cost the world $10.5 trillion annually by 2025. Attacks on company identities are a major cause of cybercrime. Hackers are always trying to steal employee logins to get into company secrets. They use tricks like phishing emails and fancy hacking to do this. Protecting identities is super important for businesses, and it is not just an IT concern.

Read Post

SecuritySenses

Read more about How Enterprise Identity Protection Can Prevent Cyber Attacks?

CDR: How Cloud Has Changed the Game

Jun 13, 2024 By Mike Watson In Sysdig

Some organizations are just beginning their migration to the cloud, while others are already firmly settled there, but almost everyone is in the cloud in some capacity by now. And for good reason: the cloud creates substantial advantages in speed, scalability, and cost. But the sobering reality is that modern threat actors have also made gains from migrating to the cloud. By weaponizing cloud automation, these threat actors can fully execute an attack in 10 minutes or less.

Read Post

Sysdig

Read more about CDR: How Cloud Has Changed the Game

Two Recent Campaigns from Brazil and Korea Exploiting Legitimate Cloud Services

Jun 13, 2024 By Paolo Passeri In Netskope

The exploitation of cloud services is a flexible weapon in the hands of attackers, so flexible that we uncover new campaigns abusing legitimate apps on a daily basis.

Read Post

Netskope

Read more about Two Recent Campaigns from Brazil and Korea Exploiting Legitimate Cloud Services

Expanding Cyber Threats: Sticky Werewolf Targets Russia and Belarus

Jun 11, 2024 By Foresiet In Foresiet

The cyber threat landscape is constantly evolving, with new threat actors emerging and expanding their targets. Cybersecurity researchers have recently revealed information about a threat actor named Sticky Werewolf, who has been associated with cyber attacks on organizations in Russia and Belarus. This development highlights the critical need for robust cybersecurity measures, including stolen credentials detection, darknet monitoring services, and dark web surveillance.

Read Post