Oct 12, 2023, 01:47 AM
PLAY ransomware is on a roll. Just a few days back, it added six victims to its leak site, and now it’s back with seven more. Google blocked the largest volumetric DDoS attack in history, which peaked at 398 million requests per second. The attackers had exploited a zero-day bug in the HTTP/2 protocol for this purpose. Manufacturing firms continue to be the subject of different cyberattacks that even started impacting their bottom line. In one such instance, Volex fell prey to an attack that disrupted its systems across several international locations. Here are the top 10 highlights from the past 24 hours.
01
The PLAY ransomware group added seven new victims to its leak site. The victims include Hughes Gill Cochrane Tinetti, Saltire Energy, Centek Industries, NachtExpress Austria, WCM Europe, Starr Finley, and an unknown entity.
02
Google blocked a new series of DDoS attacks that peaked at 398 million rps and used a novel HTTP/2 “Rapid Reset” technique based on stream multiplexing.
03
Simpson Manufacturing, a building and structural materials producer, has disclosed a cybersecurity incident that has led to disruptions in its operations.
04
Volex, a U.K-based manufacturing technology provider, experienced a cyberattack that impacted its IT systems at multiple international sites and data.
05
The CISA, along with the JCDC, published a set of recommendations on open-source software security in operational technology, including insufficiently documented software and lack of commercial support.
06
Microsoft has linked the exploitation of a critical vulnerability (CVE-2023-22515) in Atlassian Confluence to a nation-state actor known as Storm-0062.
07
A recent report by WatchGuard highlights that 95% of malware now arrives over encrypted connections. Furthermore, double-extortion attacks by ransomware groups have risen by 72%.
08
A threat group with suspected links to the Israeli government, Predatory Sparrow, reemerged after a year of silence, indicating that cyber operations could play a significant role in the ongoing conflict between Israel and Hamas.
09
Cyble discovered a targeted spear-phishing attack on a Russian semiconductor supplier. The attackers abused a critical RCE vulnerability in WinRAR to deploy Mythic's Athena Agent.
10
Microsoft plans to phase out VBScript in upcoming Windows versions to curb malware exploiting VBScript for malicious payload distribution. This precedes its total removal from the OS.
01
The PLAY ransomware group added seven new victims to its leak site. The victims include Hughes Gill Cochrane Tinetti, Saltire Energy, Centek Industries, NachtExpress Austria, WCM Europe, Starr Finley, and an unknown entity.
02
Google blocked a new series of DDoS attacks that peaked at 398 million rps and used a novel HTTP/2 “Rapid Reset” technique based on stream multiplexing.
03
Simpson Manufacturing, a building and structural materials producer, has disclosed a cybersecurity incident that has led to disruptions in its operations.
04
Volex, a U.K-based manufacturing technology provider, experienced a cyberattack that impacted its IT systems at multiple international sites and data.
05
The CISA, along with the JCDC, published a set of recommendations on open-source software security in operational technology, including insufficiently documented software and lack of commercial support.
06
Microsoft has linked the exploitation of a critical vulnerability (CVE-2023-22515) in Atlassian Confluence to a nation-state actor known as Storm-0062.
07
A recent report by WatchGuard highlights that 95% of malware now arrives over encrypted connections. Furthermore, double-extortion attacks by ransomware groups have risen by 72%.
08
A threat group with suspected links to the Israeli government, Predatory Sparrow, reemerged after a year of silence, indicating that cyber operations could play a significant role in the ongoing conflict between Israel and Hamas.
09
Cyble discovered a targeted spear-phishing attack on a Russian semiconductor supplier. The attackers abused a critical RCE vulnerability in WinRAR to deploy Mythic's Athena Agent.
10
Microsoft plans to phase out VBScript in upcoming Windows versions to curb malware exploiting VBScript for malicious payload distribution. This precedes its total removal from the OS.