Today, we dive into the most significant cybersecurity developments that have surfaced on January 30, 2024.
Massive Data Breach: 1.8TB Database of Indian Mobile Users Sold Online
In a startling revelation, cybercrime groups, including CYBO CREW, are reportedly selling a 1.8TB database containing information on 750 million Indian mobile users. This incident underscores the growing capabilities and boldness of cybercriminals in the digital age. Read the full story here.
Network Operators’ Credentials Leaked on the Dark Web
A significant security breach has led to the circulation of network operators’ credentials on the dark web. This breach highlights the critical vulnerabilities that exist within IT and network management sectors.
Dynatrace's Strategic Move: Acquiring Runecast
Dynatrace, a leader in cloud-native security, has acquired Runecast to bolster its capabilities in AI-powered security posture management. This acquisition is a step forward in enhancing risk mitigation and vulnerability assessments in cloud environments. More information here.
Ukraine’s POW Agency Targeted in Cyberattack
Amidst ongoing geopolitical tensions, Ukraine's Coordination Headquarters for Prisoners of War has been hit by a DDoS attack. This event raises concerns about the use of cyber warfare in international conflicts.
USAID Colombia’s Facebook Page Compromised
In a striking incident, the USAID Colombia's Facebook account was hacked, illustrating the potential risks and vulnerabilities associated with social media platforms in governmental and aid sectors.
Mercedes-Benz Source Code Exposed Due to Authentication Token Leak
An inadvertent leak of an authentication token on GitHub led to the exposure of Mercedes-Benz’s source code, marking a significant security lapse.
Health Information of 1.5 Million Individuals Compromised
California's insurance broker, Keenan & Associates, reported a hacking incident affecting the personal and health information of over 1.5 million individuals, raising alarms over data security in the health sector.
New Tech Support Scam Tactics Involving Couriers
The FBI warns of a new method in tech support scams where couriers are used to collect money from victims, indicating an evolution in scamming techniques.
Schneider Electric Falls Victim to Cactus Ransomware
The Cactus ransomware group claimed responsibility for a data breach at Schneider Electric, emphasizing the continuous threat of targeted ransomware attacks on large corporations.
Telegram Emerges as a New Phishing Ground
A shift in the phishing landscape is observed as operations move from dark web forums to public Telegram channels, making illicit tools and stolen data more accessible.
