Sergiu Gatlan reports: Today, CISA ordered U.S. federal agencies to secure their systems against three recently patched Citrix NetScaler and Google Chrome zero-days actively exploited in attacks, pushing for a Citrix RCE bug to be patched within a week. The cybersecurity agency added the flaws to its Known Exploited Vulnerabilities Catalog today, saying that such vulnerabilities are “frequent attack…
Category: Business Sector
Cyberattack on Ukraine’s Kyivstar will cost parent Veon almost $100 million in sales
Reuters reports: Veon, the parent company of Ukraine’s largest mobile operator Kyivstar, will take a hit of around 3.6 billion hryvnias ($95 million) in revenue in 2024 due to a massive cyberattack in December, the Dutch telecoms group estimated on Thursday. The estimated lost revenue is associated with measures Kyivstar has taken to compensate customers…
Pharma Giant Alkem Laboratories Faces Security Breach, Rs 52 Crores at Stake
Sharad Natani reports: Pharmaceutical giant Alkem Laboratories confirmed Friday that a cybersecurity incident led to a fraudulent transfer of Rs 52 crore from one of its subsidiaries. While the company maintained the impact was minimal and confined to a specific incident, the disclosure raises concerns about vulnerabilities in India’s pharmaceutical sector to cyberattacks. Without revealing…
Ransomware wrecks Paraguay’s largest telco
I’ve said it before, and I’ll say it again: If you’re not subscribed to Catalin Cimpanu’s Risky Business Newsletter, you’re missing out. From the newsletter: A ransomware attack has wreaked havoc inside the network of Tigo, the largest mobile operator and internet service provider in Paraguay. The incident took place last Thursday, January 4, and…
Politically motivated hacks: Moscow ISP hit in response to Kyivstar cyberattack; Taiwan bombarded with cyberattacks ahead of election
Politically motivated hacks continue. Two current examples outside of the U.S.: James Pearson and Tom Balmforth report: Hackers linked to Ukraine’s main spy agency have breached computer systems at a Moscow-based internet provider in retaliation for a Russian cyber attack against Ukrainian telecom giant Kyivstar, a source with direct knowledge of the operation told Reuters…
How 50% of telco Orange Spain’s traffic got hijacked — a weak password
Kevin Beaumont explains: So here’s a funny story. Earlier today, I noticed Orange Spain had an outage, caused by what appeared to be a BGP hijack: […] So, how did it happen? The threat actor accessed Orange’s RIPE account. RIPE look after internet IP addresses, basically the phone book of the internet. From their RIPE…