This Week’s Top 5 Cybersecurity News Stories May 2024 | 05

Cybersecurity threats are evolving constantly as threat actors look to gain access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small, as we look at threats from espionage to security flaws in every day devices:

1. Russian Hackers Target Europe with HeadLace Malware and Credential Harvesting

The Russian GRU-backed APT28, also known as BlueDelta, executed sophisticated cyber-espionage across Europe, especially targeting Ukraine with HeadLace malware and credential theft tactics. Using spear-phishing and multi-stage infection processes, their activities focused on collecting intelligence critical to Russia’s military interests amid its ongoing conflict with Ukraine, employing methods that cleverly blend into normal internet traffic.

For more about this story click here

2. OpenAI, Meta, and TikTok Crack Down on Covert Influence Campaigns, Some AI-Powered

OpenAI uncovered five clandestine campaigns from China, Iran, Israel, and Russia that misused its AI to steer online discussions and political narratives while hiding their origins. Detected recently, these operations crafted fake social media profiles, produced content in multiple languages, and automated social media interactions. However, these sophisticated efforts did not notably increase their online impact or reach.

For more about this story click here

3. Cyber Espionage Alert: LilacSquid Targets IT, Energy, and Pharma Sectors

The newly identified cyber espionage group LilacSquid has been actively targeting sectors across the U.S., Europe, and Asia since 2021 in a data theft initiative. According to Cisco Talos, the campaign seeks prolonged access to victim organizations to facilitate data extraction to attacker-controlled servers. LilacSquid employs various methods, including exploiting known vulnerabilities and compromised RDP credentials, to deliver malware like the custom Quasar RAT variant, PurpleInk. Despite unique tactics, there are operational similarities with North Korean groups, highlighting the sophisticated and versatile nature of LilacSquid’s activities.

For more about this story click here

4. Cybercriminals Abuse Stack Overflow to Promote Malicious Python Package

Cybersecurity experts have raised alarms over a malicious Python package on the Python Package Index (PyPI) designed to steal cryptocurrency. Named pytoileur, the package has been downloaded 316 times and contains code that fetches and runs a harmful Windows binary. The same threat actors appear to be promoting this package on StackOverflow, targeting novice developers. The package, which also links to past malicious campaigns, highlights ongoing risks within open-source ecosystems, emphasizing the need for heightened vigilance among developers.

For more about this story click here

5. Indian National Pleads Guilty to $37 Million Cryptocurrency Theft Scheme

Chirag Tomar, a 30-year-old Indian national, has pleaded guilty in the U.S. to charges involving the theft of over $37 million through a fraudulent website mimicking the Coinbase cryptocurrency exchange. The site, operational since June 2021, deceived users into disclosing login and two-factor authentication details, allowing the perpetrators to transfer victims’ cryptocurrency to their control. Tomar, arrested as he entered the U.S., faces a possible 20-year sentence and a $250,000 fine. His lavish expenditures included luxury cars and expensive watches, funded by the stolen cryptocurrency. For more about this story click here

 

At DIESEC, we have experts on hand waiting to help you with all of your cybersecurity needs, from ensuring your system is safe and secure to teaching your employees how not to fall victim to social engineering ploys.

For more information please contact us now!