Ionut Arghire reports: A Chinese threat actor was seen disrupting the drone supply chain in multi-wave attacks against various organizations in Taiwan and South Korea, Trend Micro reports. Dubbed Earth Ammit and believed to be tied to Chinese APTs, the hacking group was seen launching two attack campaigns between 2023 and 2024, targeting organizations across…
Coinbase says hackers bribed staff to steal customer data and are demanding $20 million ransom
Tanaya Macheel reports on what appears to be a very costly attack that involved bribing overseas agents: Coinbase on Thursday reported that cyber criminals bribed overseas support agents to steal customer data to use in social engineering attacks. The incident may cost Coinbase up to $400 million to fix, the company estimated. The crypto exchange operator…
$28 million in Texas’ cybersecurity funding for schools left unspent
How often have we heard about cyberattacks affecting Texas school districts? And how often have we heard that k-12 districts are underfunded for cybersecurity and/or don’t have trained personnel? Yet when they are offered money, many districts have not availed themselves of the support. Why? Brian New, Lexi Salazar, Scott Fralicks, and Mike Lozano have a somewhat…
Cybersecurity incident at Central Point School District 6
Another day, another school district hit. KDRV in Oregon reports: Central Point School District 6 is addressing a cybersecurity incident that impacted its digital systems. According to the district, unauthorized access was detected on Wednesday, leading to immediate activation of cybersecurity protocols. The affected systems were isolated to prevent further issues. Cybersecurity experts and law…
Official Indiana .gov email addresses are phishing residents
Colin Wood reports: Indiana state agencies on Tuesday are warning residents to delete phony emails sent using official state government email addresses. Phishing emails emanating from numerous departments — from the Department of Child Services to the Indiana Horse Racing Commission — fraudulently inform recipients of unpaid toll fees and warn of financial penalties or…
Turkish Group Hacks Zero-Day Flaw to Spy on Kurdish Forces
Chris Riotta reports: Turkish-linked cyber spies used a zero-day exploit housed in a popular chat software to target Kurdish military operations in Iraq, Microsoft Threat Intelligence reported Monday. Microsoft’s cybersecurity research arm said the threat actor tracked as “Marbled Dust” exploited unpatched user accounts in the Output Messenger Server Manager application, allowing the group to collect user…