This Week’s Top 5 Cybersecurity News Stories July 2024 | 03

Cybersecurity threats are evolving constantly as threat actors look to gain access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small, as we look at threats from espionage to security flaws in every day devices:

 

1. Rite Aid Data Breach – 2.2 Million Customer Personal Data Exposed

Rite Aid, the third-largest US drugstore chain, revealed a data breach in June 2024 that exposed the personal information of 2.2 million customers. Compromised employee credentials led to unauthorized access. While no financial or health data was affected, Rite Aid is offering 12 months of credit monitoring. The company is investigating, enhancing security, and cooperating with authorities. For more about this story click here

 

2. Hacker group claims it leaked internal Disney Slack messages over AI concerns

An activist hacking group, Nullbulge, claimed it leaked 1.2 terabytes of Disney’s internal Slack data, including project information, images, codes, and logins. Allegedly based in Russia, they accessed the data through a compromised user. Disney is investigating the breach. Nullbulge targets Disney over its handling of artist contracts and AI. CNN couldn’t independently verify these claims. For more about this story click here

 

3. Mass IT outage affects airlines, hospitals, media and banks

A global IT outage affected hospitals, banks, media outlets, and airlines, causing flight delays, grounded flights, and service disruptions. The issue, impacting international airports and emergency services, was traced to a defective software update from cybersecurity firm CrowdStrike. The problem has been isolated and fixed, with assurances it wasn’t a cyberattack. Organizations are working to resolve ongoing issues. For more about this story click here

 

4. APT41 Infiltrates Networks in Italy, Spain, Taiwan, Turkey, and the U.K.

The China-based APT41 hacking group has targeted organizations in Italy, Spain, Taiwan, Thailand, Turkey, and the U.K. across multiple sectors since 2023. They infiltrated networks, extracting sensitive data using non-public malware and sophisticated tools. Google’s Mandiant identified the use of web shells, custom droppers, and data exfiltration methods. The campaign underscores APT41’s unique capabilities and prolonged unauthorized access. For more about this story click here

 

5. WazirX Cryptocurrency Exchange Loses $230 Million in Major Security Breach

Indian cryptocurrency exchange WazirX confirmed a security breach resulting in the theft of $230 million in crypto assets. The breach involved a mismatch in Liminal’s wallet interface, allowing attackers to transfer control. Suspected North Korean actors swapped stolen assets for Ether. Despite this, all WazirX wallets on Liminal remain secure. North Korea’s cyber attacks on the cryptocurrency sector aim to circumvent sanctions. For more about this story click here

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information please contact us now!