Tux Machines

Security Leftovers

Posted by Roy Schestowitz on Sep 16, 2023

=> Free Software: WordPress Alternatives, Instagram Scrapping, and Classroom Tools for GNU/Linux | today's howtos

In Other News: China Blames NSA for Hack, AI Jailbreaks, Netography Spin-Off

=> ↺ In Other News: China Blames NSA for Hack, AI Jailbreaks, Netography Spin-Off

Noteworthy stories that might have slipped under the radar: China blames NSA for a cyberattack, AI jailbreaks, and Netography spin-off.

MGM Hackers Broadening Targets, Monetization Strategies [Ed: Windows TCO]

=> ↺ MGM Hackers Broadening Targets, Monetization Strategies

The financially motivated UNC3944 group that hacked MGM has hit at least 100 organizations, mainly in the US and Canada.

MS report: North Korea hacked Finnish defence industries [Ed: Microsoft is the problem, not the expert, and this is a redirection with political slant. Why does Yle help Microsoft lie about or distract from its own incompetence?]

=> ↺ MS report: North Korea hacked Finnish defence industries

The report noted that North Korea's cyber intelligence units have targeted defence companies in Brazil, the Czech Republic, Italy, Norway, Poland, and Finland.

APT36 Using Customized Malware to Attack Indian Government Linux and Windows Servers

=> ↺ APT36 Using Customized Malware to Attack Indian Government Linux and Windows Servers

The Program class’s dosome() method displays a distraction decoy PDF from the .NET binary’s resources, designed to mislead the user into thinking an error occurred.

Personal information of thousands of Sanford Health patients potentially compromised

=> ↺ Personal information of thousands of Sanford Health patients potentially compromised

Note that DMS Health Technologies first disclosed this breach on June 16, 2023 on its website and it was reported in the media then. At that time, they disclosed on behalf of Avera Health and stated that 1,500 were affected.

Caesars Entertainment confirms ransom payment, customer data theft

=> ↺ Caesars Entertainment confirms ransom payment, customer data theft

Caesars Entertainment, self-described as the largest U.S. casino chain with the most extensive loyalty program in the industry, says it paid a ransom to avoid the online leak of customer data stolen in a recent cyberattack.

Caesars discovered on September 7th that the attackers stole its loyalty program database, which stores driver’s license numbers and social security numbers for many customers.

“We are still investigating the extent of any additional personal or otherwise sensitive information contained in the files acquired by the unauthorized actor,” says an 8-K form filed by Caesars with the U.S. Securities and Exchange Commission on Thursday.

Colombia Reports Cyberattack With Impact Across Latin America

=> ↺ Colombia Reports Cyberattack With Impact Across Latin America

Colombia has reported a massive cyberattack affecting dozens of government websites and impacting countries across Latin America.

Local media said Thursday that key websites — such as the justice, health, and culture ministries as well as several hospitals — had been affected by a ransomware attack.

The presidency said in a statement Wednesday the attack had targeted the US-owned company IFX Networks, which provides web hosting services to 17 countries in the Americas.

Colombia Reports Cyberattack With Impact Across Latin America

=> ↺ Colombia Reports Cyberattack With Impact Across Latin America

Additional coverage at Segu-Info, who report that the attack may be the work of RansomHouse. A screencap of what is alleged to be the ransom note to IFX Networks is included in their report...

=> gemini.tuxmachines.org