π What are the latest cybersecurity alerts, incidents, and news?
Mac Malware, Fake Arc Browser Ads, Malwarebytes, Trojanized Notezilla Installers, Conceptworld Website, Rapid7, Unfurling Hemlock Malware Campaign, Outpost24, Kimusky,Β Malicious Chrome Extension, Zscaler, Juniper, 7News YouTube, CoinTelegraph, Crypto Scammers, TeamViewer Compromised, Shoe Zone, Research Tree, Interpol, Ministry of Information of the Republic of Crimea, DDoS Attacks, Lee Hsien Loong Deepfake Scam Videos, Peacock AI-Powered Olympic Recaps, NBC Universal, Al Michaels, Center for Investigative Reporting Sues OpenAI, Clearview,Β AI Facial Recognition, Manila Hacking Spree
Listen to the full podcast
π¨Β Cyber Alerts
Malicious ads on Google have been spreading Mac malware disguised as the Arc browser. The malware steals passwords, cryptocurrency wallets, and other sensitive data. Users are advised to download software only from official websites and be wary of suspicious installation instructions.
On June 18th, 2024, Rapid7 began investigating suspicious activity linked to Notezilla, a sticky notes program for Windows. They discovered that installers for Notezilla, RecentX, and Copywhiz from Conceptworld’s official domain contained information-stealing malware. Rapid7 contacted Conceptworld, which promptly replaced the malicious installers with legitimate versions within 12 hours.
KrakenLabs’ investigation has revealed a global malware campaign called “Unfurling Hemlock,” utilizing nested cabinet files to distribute diverse malware types. These files contain multiple levels of malware, including Redline, RisePro, Amadey, and SmokeLoader, aiming to maximize infections and financial gain. The campaign’s Eastern European origins and sophisticated distribution strategy underscore its threat, requiring heightened cybersecurity defenses.
Zscaler ThreatLabz has uncovered Kimsuky’s latest cyber espionage tactic using the TRANSLATEXT Chrome extension, designed to pilfer sensitive data like email credentials and browser screenshots. Uploaded to a GitHub repository, this tool targets South Korean academics researching North Korean affairs, using deceptive file names to lure victims into unwittingly installing malware.
Juniper Networks has revealed a critical vulnerability impacting its Session Smart Router (SSR) and Session Smart Conductor products. This flaw allows attackers to bypass authentication and potentially gain control of devices in high-availability setups. Users are urged to promptly update their systems to the latest patched versions to mitigate these risks effectively.
π₯ Cyber Incidents
The YouTube channel of Australia’s Seven Network was hijacked by crypto scammers, featuring a deepfake Elon Musk promoting a fraudulent crypto giveaway. Despite broken links, the channel displayed Seven’s verification tick, attracting over 150,000 viewers, with suspicions of bot involvement. Seven Network is collaborating with YouTube to resolve the issue, while scammers continue to exploit Musk’s likeness in cryptocurrency scams.
TeamViewer, a provider of remote connectivity software, has detected a compromise within its corporate network, reportedly orchestrated by the Russian APT group APT29, also known as Cozy Bear or Midnight Blizzard. The incident, identified on June 26, triggered immediate response measures from TeamViewer’s security team, who have assured stakeholders that their product environment and customer data remain secure and unaffected.
Shoe Zone faces a cyber attack with unauthorized access to its systems and data, prompting swift security measures. The retailer has engaged third-party experts to investigate and implement an incident response plan, reporting the breach to regulatory bodies. Despite the incident, Shoe Zone reassures customers and suppliers of operational continuity and minimal expected financial impact.
Crimean telecom operators are under siege from massive DDoS attacks, causing potential interruptions to internet services, warned local authorities. The attacks, targeting providers like Miranda Media in Sevastopol, are impacting local subscribers and essential services, including emergency call centers. Despite efforts to repel the attacks, the situation remains tense as authorities work to restore full connectivity amid the ongoing cyber threats.
Lee Hsien Loong, Singapore’s former prime minister, has once again been targeted by deepfake videos, this time misrepresenting his views on international affairs. Posting on Instagram, he expressed concern over these malicious attempts to attribute false statements to him and the Singapore government, emphasizing their potential harm to national interests.
π’ Cyber News
Police from 61 countries collaborate in Operation First Light 2024, arresting 3950 suspects and identifying 14,643 more involved in various online scams. Interpol-led efforts also freeze 6745 bank accounts and seize assets worth $257m, disrupting transnational crime networks. The operation’s success includes intercepting $135m in fiat currency and $2m in cryptocurrency, alongside seizing over $120m in assets like real estate and luxury goods worldwide.
Peacock introduces “Your Daily Olympic Recap on Peacock,” leveraging AI to personalize highlights narrated by Al Michaels. Subscribers can curate their 10-minute recaps from a vast array of NBCU’s live Olympic coverage, enhancing viewer engagement and customization. This initiative marks Peacock’s dedication to merging sports coverage with cutting-edge technology for an immersive Olympics experience.
The Center for Investigative Reporting has sued OpenAI and Microsoft for using its content to train AI models without permission. CIR claims this violates copyright laws and undermines public access to accurate information. OpenAI and Microsoft have yet to comment on the lawsuit, part of a growing trend of legal actions by publishers.
In the past year, Clearview AI’s facial recognition searches surged to 2 million, while its database now holds 50 billion images, up from 40 billion. Law enforcement’s use of this technology has sparked controversy, with instances of misuse prompting fears over privacy violations and ethical concerns. Despite legal challenges, the company continues to be used by federal agencies and police departments nationwide, impacting millions of Americans’ privacy.
A Manila Bulletin data security officer known as “Kangkong” has confessed to hacking 93 websites, including government and private company sites, exposing significant cybersecurity vulnerabilities. Arrested alongside two others by the NBI Cybercrime Division, Kangkong issued a public apology for his actions, acknowledging the potential risks to national security and sensitive data. His revelation underscores the critical need for strengthened cybersecurity measures in the Philippines to prevent future breaches and safeguard digital infrastructure.
Copyright Β© 2024 CyberMaterial. All Rights Reserved.
