Cybersecurity News
A Cybersecurity briefing on noteworthy Cyber Attacks, Vulnerabilities, and InfoSec news.
Noteworthy Cyber Attacks Reported
Slack’s private GitHub code repositories were accessed by hackers over the holidays, it revealed. Adversaries gained access to its externally hosted repositories via stolen employee tokens. However, Slack’s primary codebase and customer data remain unaffected. https://www.bleepingcomputer.com/news/security/slacks-private-github-code-repositories-stolen-over-holidays/
Schools continue to get targeted by cyber attacks disrupting their services and canceling classes. A public school in MA canceled all of their classes yesterday due to an attack the day before, but they were able to resume classes today. https://www.masslive.com/news/2023/01/swansea-public-schools-cancel-classes-wednesday-after-ransomware-attack.html And Bristol Community College was also hit by a severe ransomware attack on December 23rd. The security notice can be viewed here: https://bristolcc.edu/students.html
On January 4th, 2023, CircleCI (a software development service) released a security incident alert and advised all users to rotate their secrets stored in CircleCI. https://circleci.com/blog/january-4-2023-security-alert/
A data leak described as containing email addresses for over 200 million Twitter users has been published on a popular hacker forum for about $2. BleepingComputer has confirmed the validity of many of the email addresses listed in the leak. https://www.bleepingcomputer.com/news/security/200-million-twitter-users-email-addresses-allegedly-leaked-online/
France-based music-streaming platform Deezer has admitted being hit with a data breach, dating back almost 3 years, that potentially compromised the information of over 220 million users. The leaked information included users’ dates of birth, email addresses, genders, geographic locations, IP addresses, names, spoken languages and/or usernames. https://www.musicbusinessworldwide.com/deezer-admits-data-breach-that-potentially-exposed-over-220-million-users-info/
A hacker is offering to sell data allegedly stolen from Swedish vehicle manufacturer Volvo Cars following a ransomware attack carried out in late December. https://www.securityweek.com/hacker-selling-data-allegedly-stolen-volvo-cars-following-ransomware-attack
Noteworthy Vulnerabilities / Threats Discovered
Fortinet has warned of a high-severity flaw affecting multiple versions of FortiADC application delivery controller that could lead to the execution of arbitrary code. https://thehackernews.com/2023/01/fortinet-and-zoho-urge-customers-to.html
Researchers found that popular carmakers were using vulnerable APIs that could have allowed attackers to perform malicious activities, including unlocking cars. The flaws discovered by the experts affected vehicles including Kia, Honda, Infiniti, Nissan, Acura, Mercedes-Benz, Genesis, BMW, Rolls Royce, Ferrari, Ford, Porsche, Toyota, Jaguar, Land Rover. The research team also discovered flaws in the services provided by Reviver, SiriusXM, and Spireon. The good news is that all the flaws discovered by the experts were addressed by the carmakers and service providers. https://securityaffairs.com/140328/hacking/bmw-mercedes-toyota-other-carmakers-flaws.html
Noteworthy InfoSec News
A legal saga between Meta, Ireland and the European Union has reached a conclusion – at least for now – that forces the social media giant to remove data consent requirements from its terms of service in favor of explicit consent, and subjects it to a few hundred million more euros in fines for the trouble. https://www.theregister.com/2023/01/04/meta_fined_390_for_using/?&web_view=true
The NIST Interagency Report (IR) 8401 aims to apply the Cybersecurity Framework to satellite command and control, creating a profile for the space sector’s ground segment in an effort to help stakeholders manage risk. The goal of the profile is to complement existing security measures in an organization. https://www.securityweek.com/nist-finalizes-cybersecurity-guidance-ground-segment-space-operations?&web_view=true
Check our Twitter and Discord Server for more information:
If you missed the last rundown, check it out here:
Additional resources:
Link to NIST Publication (NISTIR 8401) https://csrc.nist.gov/publications/detail/nistir/8401/final
Cybersecurity and Infrastructure Security Agency (CISA) https://www.cisa.gov/
Cyware - provides threat intelligence, security orchestration and other cybersecurity resources https://cyware.com/
