Sep 28, 2023, 02:06 PM
The Dark Angels ransomware group spread its dark wings over building automation giant Johnson Controls International and claimed to have stolen 27TB of data. Wait until you get to know the ransom demand. The Chinese state-sponsored threat group, BlackTech, has been abusing network edge devices to target multiple industries - warned U.S. and Japanese law enforcement. Serving as a warning to secure your internet-connected devices, new research found that hundreds of thousands of such devices are exposing millions of files. Here are the top 10 highlights from the past 24 hours.
01
Johnson Controls International experienced a massive ransomware attack claimed by Dark Angels. The ransomware group allegedly stole over 27TB of corporate data and is demanding a ransom of $51 million.
02
The CISA, the NSA, and the FBI, along with Japanese law enforcement agencies, warned about the China-sponsored threat group BlackTech modifying router firmware to obtain access to entire networks.
03
Baruch College, NYC, extended remote learning until October 1 due to a malware attack that caused network outages. The library will offer limited services, but other services remain unavailable.
04
ChildFund in New Zealand alerted the public about a data breach involving a telemarketing company called Pareto Phone Limited. The compromised data includes names, addresses, phone numbers, and reference numbers.
05
Chinese attackers breached Microsoft's email platform and stole 60,000 emails from 10 State Department accounts, with nine of the victims working in East Asia and the Pacific and one in Europe, according to a Senate staffer.
06
An analysis by Censys found that 314,000 internet-connected devices are exposing millions of files across the internet. Over 9,000 files are related to financial data, with the other potentially containing authentication and credential data, network packet capture files, and others.
07
The China-linked threat actor Budworm (APT27) targeted government and telecom entities in the Middle East and Asia using a never-before-seen version of SysUpdate in August - reported Symantec.
08
A total of 45 malicious packages on npm and PyPI platforms have been discovered stealing sensitive data such as machine and user details, SSH private keys, and Kubernetes configurations.
09
A spear-phishing campaign exploiting the Azerbaijan-Armenia conflict has been discovered, targeting management teams with malware disguised as a memo about the border clash.
10
Threat detection solution provider Lumu bagged $30 million in a Series B funding round led by Forgepoint Capital, with participation from BIP Ventures, Exceptional Capital, and SIMMA Capital.
01
Johnson Controls International experienced a massive ransomware attack claimed by Dark Angels. The ransomware group allegedly stole over 27TB of corporate data and is demanding a ransom of $51 million.
02
The CISA, the NSA, and the FBI, along with Japanese law enforcement agencies, warned about the China-sponsored threat group BlackTech modifying router firmware to obtain access to entire networks.
03
Baruch College, NYC, extended remote learning until October 1 due to a malware attack that caused network outages. The library will offer limited services, but other services remain unavailable.
04
ChildFund in New Zealand alerted the public about a data breach involving a telemarketing company called Pareto Phone Limited. The compromised data includes names, addresses, phone numbers, and reference numbers.
05
Chinese attackers breached Microsoft's email platform and stole 60,000 emails from 10 State Department accounts, with nine of the victims working in East Asia and the Pacific and one in Europe, according to a Senate staffer.
06
An analysis by Censys found that 314,000 internet-connected devices are exposing millions of files across the internet. Over 9,000 files are related to financial data, with the other potentially containing authentication and credential data, network packet capture files, and others.
07
The China-linked threat actor Budworm (APT27) targeted government and telecom entities in the Middle East and Asia using a never-before-seen version of SysUpdate in August - reported Symantec.
08
A total of 45 malicious packages on npm and PyPI platforms have been discovered stealing sensitive data such as machine and user details, SSH private keys, and Kubernetes configurations.
09
A spear-phishing campaign exploiting the Azerbaijan-Armenia conflict has been discovered, targeting management teams with malware disguised as a memo about the border clash.
10
Threat detection solution provider Lumu bagged $30 million in a Series B funding round led by Forgepoint Capital, with participation from BIP Ventures, Exceptional Capital, and SIMMA Capital.
