This Week’s Top 5 Cybersecurity News Stories June 2024 | 02

Cybersecurity threats are evolving constantly as threat actors look to gain access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small, as we look at threats from espionage to security flaws in every day devices:

1. North Korean Hackers Target Brazilian Fintech with Sophisticated Phishing Tactics

Since 2020, North Korean hackers have conducted one-third of all phishing activities targeting Brazil, drawn by the country’s growing influence. Google’s Mandiant and Threat Analysis Group report that these state-sponsored groups have focused on Brazil’s government and key sectors like aerospace, technology, and finance, particularly targeting cryptocurrency and fintech firms. One notable group, UNC4899, has deployed malware through social engineering, luring cryptocurrency professionals with fake job opportunities to download a trojanized Python app. This app retrieves further malicious payloads when certain conditions are met, demonstrating sophisticated cyber espionage tactics.  For more about this story click here

2. Microsoft Delays AI-Powered Recall Feature for Copilot+ PCs Amid Security Concerns

Microsoft has postponed the release of its AI-powered Recall feature for Copilot+ PCs, initially set for broad release on June 18, 2024, due to privacy and security concerns. Instead, Recall will first be tested in the Windows Insider Program to gather feedback and ensure high standards of quality and security. The feature, which creates searchable databases from screenshots of user activities, faced backlash for potential privacy risks, prompting Microsoft to adjust it to require user authentication for access. For more about this story click here

3. Lessons from the Ticketmaster-Snowflake Breach

Last week, ShinyHunters, a well-known hacker group, allegedly stole 1.3 terabytes of data from 560 million Ticketmaster users, posing a severe privacy risk. This breach, valued at $500,000, was confirmed by Live Nation in a filing with the SEC, stating that a third-party cloud database was compromised. Both Ticketmaster and Santander have been implicated, with breaches linked to their use of the cloud data company Snowflake. Snowflake confirmed an uptick in cyber threats targeting customer accounts, particularly those using single-factor authentication. The incidents highlight the critical need for robust cybersecurity measures like multi-factor authentication and strict credential management. For more about this story click here

4. Github Paid $4,000,000 In Rewards For Bug Bounty Program

GitHub is celebrating the 10th anniversary of its Security Bug Bounty program, which has greatly enhanced the security of its platform while distributing $4 million in rewards to security researchers. Launched in 2014, the program collaborates with researchers to identify vulnerabilities through a responsible disclosure process. GitHub’s initiative, which includes partnerships and community engagement, has set a high standard in the industry and looks to expand its scope and transparency in the coming years. For more about this story click here

5. New Phishing Campaign Deploys WARMCOOKIE Backdoor Targeting Job Seekers

Cybersecurity researchers have unveiled an ongoing phishing campaign that uses job-related lures to distribute a Windows backdoor called WARMCOOKIE. This malware scouts networks and deploys additional harmful programs, capturing screenshots and machine fingerprints. The phishing emails, masquerading as messages from recruitment firms, trick users into downloading malicious documents via links. Elastic Security Labs highlights the campaign’s reliance on compromised infrastructure and sophisticated methods to avoid detection and ensure persistence. For more about this story click here

 

At DIESEC, we have experts on hand waiting to help you with all of your cybersecurity needs, from ensuring your system is safe and secure to teaching your employees how not to fall victim to social engineering ploys.

For more information please contact us now!