Nearly 30,000 Fidelity Investments Life Insurance customers’ personal and financial information, including bank account and routing numbers, may have been stolen after criminals breached Infosys’ IT systems.
The vulnerabilities, tracked as CVE-2024-23225 and CVE-2024-23296, are related to kernel and RTKit memory corruptions. The affected devices include iPhone XS and later, iPad Pro, iPad Air, and iPad mini models.
Axonius, a leader in enterprise asset management, has secured an additional $200 million in funding to support its business expansion. The investment is an extension of its existing Series E round, maintaining a valuation of $2.6 billion.
The ‘WogRAT’ malware targets both Windows and Linux systems and uses the online notepad platform ‘aNotepad’ to store and retrieve malicious code, making its infection chain stealthy.
The attackers used fake Russian-language online meeting sites hosted on a single IP address to distribute malicious APK and BAT files targeting Windows and Android users.
The Mr. Green Gaming data breach compromised the sensitive information of approximately 27,000 users, highlighting the urgent need for enhanced cybersecurity measures in the gaming industry.
Canada’s financial intelligence agency FINTRAC has experienced a cybersecurity incident, prompting the agency to take its corporate systems offline as a precautionary measure.
The malware uses DLL sideloading techniques to discreetly execute malicious code, actively monitors victims’ interactions with financial portals, and communicates with a C2 server to facilitate data theft and deceptive pop-up windows.
Cybercriminal groups GhostSec and Stormous have collaborated to unleash GhostLocker 2.0 ransomware in targeted attacks across the Middle East, Africa, and Asia, affecting organizations in various sectors.
The shutdown may indicate an exit scam, with the affiliate claiming they still have critical data from Optum and other providers, while ALPHV/BlackCat has shut down its negotiation sites and messaging platform.