Kansas City public transportation authority hit by ransomware


The Kansas City Area Transportation Authority (KCATA) announced it was targeted by a ransomware attack on Tuesday, January 23. [...]


https://www.bleepingcomputer.com/news/se...ansomware/

The Week in Ransomware - January 26th 2024 - Govts strike back


Governments struck back this week against members of ransomware operations, imposing sanctions on one threat actor and sentencing another to prison. [...]


https://www.bleepingcomputer.com/news/se...rike-back/

Rivian lands longtime Apple tech developer for top product post, report says

<p>DJ Novotney, who worked at Apple for nearly 25 years, was known as a senior lieutenant to many of the company’s top hardware engineering executives. Rivian sees the hire as a major coup.</p>

https://www.autonews.com/executives/appl...eport-says

Russian TrickBot Mastermind Gets 5-Year Prison Sentence for Cybercrime Spree

40-year-old Russian national Vladimir Dunaev has been sentenced to five years and four months in prison for his role in creating and distributing the TrickBot malware, the U.S. Department of Justice (DoJ) said.
The development comes nearly two months after Dunaev pleaded guilty to committing computer fraud and identity theft and conspiracy to commit wire fraud and bank fraud.
"

https://thehackernews.com/2024/01/russia...-year.html

Microsoft Warns of Widening APT29 Espionage Attacks Targeting Global Orgs

Microsoft on Thursday said the Russian state-sponsored threat actors responsible for a cyber attack on its systems in late November 2023 have been targeting other organizations and that it's currently beginning to notify them.
The development comes a day after Hewlett Packard Enterprise (HPE) revealed that it had been the victim of an attack perpetrated by a hacking crew

https://thehackernews.com/2024/01/micros...apt29.html

Malicious Ads on Google Target Chinese Users with Fake Messaging Apps

Chinese-speaking users have been targeted by malicious Google ads for restricted messaging apps like Telegram as part of an ongoing malvertising campaign.
"The threat actor is abusing Google advertiser accounts to create malicious ads and pointing them to pages where unsuspecting users will download Remote Administration Trojan (RATs) instead," Malwarebytes' Jérôme Segura said in a

https://thehackernews.com/2024/01/malici...inese.html

Perfecting the Defense-in-Depth Strategy with Automation

Medieval castles stood as impregnable fortresses for centuries, thanks to their meticulous design. Fast forward to the digital age, and this medieval wisdom still echoes in cybersecurity. Like castles with strategic layouts to withstand attacks, the Defense-in-Depth strategy is the modern counterpart — a multi-layered approach with strategic redundancy and a blend of passive and active security

https://thehackernews.com/2024/01/perfec...ategy.html

AllaKore RAT Malware Targeting Mexican Firms with Financial Fraud Tricks

Mexican financial institutions are under the radar of a new spear-phishing campaign that delivers a modified version of an open-source remote access trojan called AllaKore RAT.
The BlackBerry Research and Intelligence Team attributed the activity to an unknown Latin American-based financially motivated threat actor. The campaign has been active since at least 2021.
"Lures use Mexican Social

https://thehackernews.com/2024/01/allako...xican.html

Critical Cisco Flaw Lets Hackers Remotely Take Over Unified Comms Systems

Cisco has released patches to address a critical security flaw impacting Unified Communications and Contact Center Solutions products that could permit an unauthenticated, remote attacker to execute arbitrary code on an affected device.
Tracked as CVE-2024-20253 (CVSS score: 9.9), the issue stems from improper processing of user-provided data that a threat actor could abuse to send a

https://thehackernews.com/2024/01/critic...ckers.html

'Midnight Blizzard' Breached HPE Email Months Before Microsoft Hack

The Russian APT behind the SolarWinds attacks exfiltrated data from HPE email accounts last May.


https://www.darkreading.com/threat-intel...osoft-hack