Wednesday, January 8, 2025

BleepingComputer.com

"UN aviation agency confirms recruitment database security breach."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 08 January 2025, 1340 UTC.

Content and Source:  https://www.bleepingcomputer.com/

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).


Latest Articles

UN aviation agency confirms recruitment database security breach

  • ​The United Nations' International Civil Aviation Organization (ICAO) has confirmed that a threat actor has stolen approximately 42,000 records after hacking into its recruitment database.

  • Need a Creative Boost? Meet the all-in-one 1minAI platform deal
     
    Deals

Need a Creative Boost? Meet the all-in-one 1minAI platform deal

  • Designed to support professionals across industries—from writers to marketers to designers—this all-in-one AI tool gives you access to cutting-edge AI models without the hassle of ongoing fees. For a one-time payment of $29.97 (down from $234), you get a lifetime subscription to a platform that's always evolving.

    • BleepingComputer Deals
      •  
    • January 08, 2025
      •  
    • 07:19 AM
      •  
    • Comment Count 0
  • Nudge Security
     

Sponsored Content 
How to conduct an AI risk assessment [Free Guide]

  • AI is clearly here to stay. This guide will help ensure you don't miss important sources of risk when safeguarding your org's approach to AI use.

  • School
     
    Security

PowerSchool hack exposes student, teacher data from K-12 districts

  • Education software giant PowerSchool has confirmed it suffered a cybersecurity incident that allowed a threat actor to steal the personal information of students and teachers from school districts using its PowerSchool SIS platform.

  • Casio
     
    Security

Casio says data of 8,500 people exposed in October ransomware attack

  • Japanese electronics manufacturer Casio says that the October 2024 ransomware incident exposed the personal data of approximately 8,500 people.

  • Botnet
     
    Security

New Mirai botnet targets industrial routers with zero-day exploits

  • A relatively new Mirai-based botnet has been growing in sophistication and is now leveraging zero-day exploits for security flaws in industrial routers and smart home devices.

  • U.S. Cyber Trust Mark
     
    Security

US govt launches cybersecurity safety label for smart devices

  • ​Today, the White House announced the launch of the U.S. Cyber Trust Mark, a new cybersecurity safety label for internet-connected consumer devices.

  • DNA
     
    Security

BIOS flaws expose iSeq DNA sequencers to bootkit attacks

  • BIOS/UEFI vulnerabilities in the iSeq 100 DNA sequencer from U.S. biotechnology company Illumina could let attackers disable devices used for detecting illnesses and developing vaccines.

  • CISA
     
    Security

CISA warns of critical Oracle, Mitel flaws exploited in attacks

  • CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks.

  • T-Mobile
     
    Legal, Security

Washington state sues T-Mobile over 2021 data breach security failures

  • Washington state has sued T-Mobile over failing to secure the sensitive personal information of over 2 million Washington residents in a 2021 data breach.

  • ICAO International Civil Aviation Organization
     
    Security

UN aviation agency investigating 'potential' security breach

  • ​On Monday, the United Nations' International Civil Aviation Organization (ICAO) announced it was investigating what it described as a "reported security incident."

  • Telegram
     
    Legal

Telegram hands over data on thousands of users to US law enforcement

  • Telegram reveals that the communications platform has fulfilled 900 U.S. government requests, sharing the phone number or IP address information of 2,253 users with law enforcement.

  • Google Chrome
     
    Security· Sponsored Content

Malicious Browser Extensions are the Next Frontier for Identity Attacks

  • A recent campaign targeting browser extensions illustrates that they are the next frontier in identity attacks. Learn more about these attacks from LayerX Security and how to receive a free extension audit.

    • Sponsored by LayerX
      •  
    • January 07, 2025
      •  
    • 10:02 AM
      •  
    • Comment Count 0
  • Green Bay Packers
     
    Security

Green Bay Packers' online store hacked to steal credit cards

  • The Green Bay Packers American football team is notifying fans that a threat actor hacked its official online retail store in October and injected a card skimmer script to steal customers' personal and payment information.

  • This 1TB USB-C thumb drive is on sale for $69.97
     
    Deals

This 1TB USB-C thumb drive is on sale for $69.97

  • This dual USB-C and USB-A storage drive is built for tech-savvy multitaskers and professionals who need speed, durability, and plenty of room for their data. With 1TB of storage and USB 3.2 technology, it delivers quick, efficient file transfers every time — on sale for $69.97 until January 12.

    • BleepingComputer Deals
      •  
    • January 07, 2025
      •  
    • 07:19 AM
      •  
    • Comment Count 0
  • Treasury Department
     
    Security

CISA says recent government hack limited to US Treasury

  • The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today that the Treasury Department breach disclosed last week did not impact other federal agencies.

  • energy industry
     
    Security, Hardware

Vulnerable Moxa devices expose industrial networks to attacks

  • Industrial networking and communications provider Moxa is warning of a high-severity and a critical vulnerability that impact various models of its cellular routers, secure routers, and network security appliances.

  • Chinese hacker
     
    Security

Chinese hackers also breached Charter and Windstream networks

  • ​More U.S. companies have been added to the list of telecommunications firms hacked in a wave of breaches by a Chinese state-backed threat group tracked as Salt Typhoon.

  • Bumblebee
     
    Security

Eagerbee backdoor deployed against Middle Eastern govt orgs, ISPs

  • New variants of the Eagerbee malware framework are being deployed against government organizations and internet service providers (ISPs) in the Middle East.

  • Bing
     
    Microsoft, Google

Microsoft Bing shows misleading Google-like page for 'Google' searches

  • Microsoft Bing is displaying what is being categorized as a misleading Google-esque search page when users search for Google, making it look you are on the competing search engine.

  • AdGuard Home
     
    Deals

An ad blocker that works for your whole family drops to $16 this week

  • AdGuard's lifetime subscription blocks ads without any recurring payments. Plus, it's on sale for its lowest price ever through January 12: $15.97 (reg. $169.99). No coupon is needed.

    • BleepingComputer Deals
      •  
    • January 06, 2025
      •  
    • 07:11 AM
      •  
    • Comment Count 0
View More

 

at No comments:
Labels:
Subscribe to: Posts (Atom)

The Hacker News.

"THN Weekly Recap:  Top cybersecurity threats, tools and tips." Views expressed in this cybersecurity, cyber crime update are thos...

  • The Cyberwire Daily Briefing
    "Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters ...
  • Cyber War News Today.
    "International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyb...
  • SecurityWeek Briefing
    "New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the report...