-Interpol plugs Red Notices leak
-Kaspersky says Apple didn't pay bounty for Triangulation report
-Medibank faces monumental fine
-CISA named as first-ever CVE ADP
-Dubai hit by ransomware attack
-Disney hacked for ClubPenguin data
-Cisco fixes bug used by German journalists
-iPhone 15 to have only 5 years of security updates
-FCC gives $200mil to schools for cyber
-New Conti member detained
-Epsilon hacker detained in FR
Plus:
-New GitHub repo-wiping attacks
-WatchGuard VPNs see brute-force attacks
-Malware reports on Dama, Muhstik, Commando Cat, PlugX, DarkGate, Seidr, TargetCompany, RansomHub, Fog
-APT reports on Mustang Panda, Crimson Palace, Sapphire Werewolf, Vermin, ExCobalt
-Israel govt paid for disinfo campaign
-Russian disinfo ops are everywhere these days
-Security updates for RoR, Elastic, SolarWinds
-Vuln reports in PHP-CGI, HugeGraph
-Telerik servers under attack
-Cyber job shortage not as bad in US
According to reports from the New York Times and Haaretz, the Israel Ministry of Diaspora Affairs paid a private company named STOIC $2 million for a social media influence campaign that targeted US politicians. (1/2)
The campaign launched a month after the Hamas October 7 attack and targeted at least 128 members of the US Congress. According to disinformation experts, social media accounts controlled by STOIC targeted US lawmakers with pro-Israeli propaganda and anti-Arab views. STOIC's campaign was also spotted and disrupted by Meta and OpenAI earlier this month.
-The Linux CNA mess you didn't know about
-TikTok zero-day used to hack high-profile accounts
-New APT targets China
-Hungary's ruling party boycotts Russian hack investigation
-Australian rare-earth mining company hit by ransomware attack
-GrapheneOS adds duress password
-Denmark raises cyber threat level
-White House to harmonize cybersecurity regulations
-Russia ramps up Olympics disinfo
-Azure firewall bypass discovered
-APT reports on APT28, APT29, UAC-0900
-Malware reports on DarkGate, PikaBot, Vidar
-New V3B PhaaS
-QNAP changes default passwords on its NASs
-Google to track Drive API changes now to fight abuse
-noyb files complaint against Microsoft 365 Education
-Microsoft removes local account install support on Win11
-Data broker execs convicted
-Android security updates
-Zyxel removes "NsaRescueAngel" backdoor account (lol)
-OpenSSL security audit
-ClangOver attack on ML-KEM
-OffensiveCon24 videos
-Law enforcement disrupts six malware botnets
-Check Point patches zero-day
-ISP loses 600,000 routers in data-wiping attack
-Poland's secret surveillance program deemed illegal
-Pegasus used against RU&BE independent journalists
-Israel accused of hacking the ICC
-BBC data breach
-Japanese man arrested for AI ransomware
-Dutch Fappening suspect sentenced
-Teen wanted for DDoSing Texas exams
-911 S5 botnet admin arrested
-Okta discloses cred-stuffing attacks
-Cloudflare disrupts FlyingYeti operations
-Malware reports on Ov3r_Stealer, AllaSenha, Cuckoo, CryptoChameleon, RedTail
-New Merry-Go-Round ad fraud scheme
-APT report on Andariel, LightSpy, LilacSquid, APT41, BlueDelta
-OpenAI and Meta disrupt influence networks
-NIST backlog expected to be fixed by end of year
-MinMax CMS secret backdoor
-Security updates for ASUS, XZ-Utils, TeamCity
-Docker blocked in Russia
-Cloudflare buys BastionZero
Security firm Mnemonic says it observed threat actors use the vulnerability to enumerate and extract password hashes, including the accounts used to connect to Active Directory.
-IR reports are not protected documents, multiple judges rule
-US sanctions Chinese nationals behind 911S5 proxy botnet
-MediSecure asks for a government bailout
-Check Point VPNs are under attack
-Ransomware hits Russian delivery service CDEK
-Ransomware hits Belgian ride-sharing app Mpact
-Rav-Rx paid a ransomware gang
-Data leak exposes Google Search internal docs
-OpenAI creates Safety Board
-Pegasus widely used in Rwanda
-Thailand launches Cyber Command unit
-US govt agencies to adopt RPKI
-Scattered Spider membership estimated ~1K
-New NL NCSC head
-Anatsa malware found on the Play Store
-Malware reports on Kiteshield Packer and Rebirth botnet
-Synapse ransomware avoids Iranian systems
-APT reports on Sapphire Werewolf, Blind Eagle, Moonstone Sleet
-PoCs released for Apple, FortiSIEM bugs
-Major RCE in TP-Link gaming routers
-Internet Archive under DDoS attack
The Rwandan government has deployed the NSO Group's Pegasus spyware against past political opponents, its own ministers, and even the family of a former presidential candidate.
Reporters from Forbidden Stories, discovered the attacks in a leaked list of phone numbers targeted with Pegasus spyware.
According to the same reporters, Rwandan officials had access to Pegasus between 2017 and 2021, after which its contract was not extended.
-Google distrust GlobalTrust certs
-Spyware vendor pcTattletale hacked
-South Africa suspends child maintenance payments after hack
-Russian initial access broker charged in the US
-Optus to be investigated for 2022 hack
-MediSecure data sold online
-FHA adds new cybersecurity reporting requirements
-CyberCom holds hunt forward mission in Zambia
-Coinbase phisher pleads guilty
-Eighth Chrome zero-day this year
-PyLocky ransomware case in France to finally continue
-Vulnerabilities in MikroTik, ILIAS LMS, Replicate, Jenkins, WhatsApp
-POCs for Telesquare routers, Win10 EoP
-BLOODALCHEMY malware linked to ShadowPad
-Bugcrowd acquires Informer
-Shedding Zmiy APT linked to old Cobalt gang
-Hellhounds continues attacking Russia
-Report on the malware used in the MITRE hack
-A fifth of Rust crates use "unsafe" keyword
-Trump promises to pardon Ross Ulbricht for some reason
-ICQ to shut down on June 26
-Backdoor found in court and jail AV recording software
-Kevin Mandia steps down
-TikTok takes down several influence networks
-LastPass will start encrypting URLs
-Microsoft publishes VBScript deprecation timeline
-Gala Games gets its hacked funds back
-pcTattletale spyware leaks user data
-TLS Session Tickets are GDPR compliant (if you were curious)
-Edge gets screenshot protection
-NVD backlog is getting worse by the week
-Change Healthcare victims ask US HHS for HIPAA exemption
-NYSE fined over 2021 hack
-City of Eindhoven has a leak
-UK ICO to investigate Microsoft over Recall feature
-Apple's WPS is leaking
-US lawmakers propose Diverse Cybersecurity Workforce Act
-EU countries put out anti-propaganda statement
-Latvia wants to criminalize political deepfakes
-BEC money launderer sentenced
-Malware reports on Gootloader, bunch of new stealers, ShrinkLocker, and CatDDoS
-Loads of reports on Chinese APTs