A foreign government is believed to have orchestrated a cyberattack on the Dutch police force, exposing the contact details of nearly 63,000 officers. The breach, which occurred on September 26, 2024, was a sophisticated operation targeting a specific police account.
Microsoft and the U.S. Department of Justice (DoJ) announced the seizure of 107 internet domains linked to Russian state-sponsored threat actors, used to carry out computer fraud and abuse.
Despite the indictment of one of its alleged members, the North Korean APT group known as Stonefly (aka APT45) continues to target U.S. companies, according to warnings from Symantec threat analysts. Stonefly, also referred to as Andariel and OnyxFleet, is linked to the Reconnaissance General Bureau (RGB), a North Korean military intelligence agency.
Source: Stanchion Payments
Stanchion, a global PayTech company and a pioneer of Payment Fabric Technology, announced today that it has joined the PCI Security Standards Council (PCI SSC) as a new Associate Participating Organisation.
Active Directory (AD), Microsoft’s widely used directory service for Windows domain networks, has become a common target in cyber intrusions due to its complex structure and permissive default settings.
On Saturday, MoneyGram revealed on social media that a network outage was disrupting several of its systems. By Monday, the company acknowledged it was dealing with a cybersecurity breach affecting certain systems.
Global CrowdStrike Outage Prompts German Companies to Rethink Cybersecurity Strategies and Providers
After a significant cyber incident that disrupts business operations, organizations often take steps to improve their cybersecurity and resilience, which sometimes includes switching cybersecurity providers. The recent massive global outage caused by a faulty CrowdStrike sensor update has had this exact impact on many companies in Germany. According to a report by the German Federal Office for Information Security (BSI) and Germany's digital association Bitkom, this outage has caused many organizations to reconsider their cybersecurity strategies and partners.
SpyCloud's latest research highlights the growing threat of infostealers—malware designed to steal digital identity data, login credentials, and session cookies. According to the report, infostealers were involved in 61% of all data breaches in the past year, resulting in the theft of 343.78 million credentials. This data often ends up on the dark web, fueling further attacks. Alarmingly, one in five individuals has been affected by an infostealer infection, each exposing 10-25 third-party business application credentials, creating opportunities for ransomware operators to exploit.
