Cam Wilson reports: Tens of thousands of patients from Australia’s biggest medical imaging provider I-MED have had swaths of sensitive health and personal information exposed in a data breach using details that have been public for a year. This sounds like another case where a threat actor found credentials online. Crikey reports: In this case,…
Nightsleeper-style’ cyber attack hits 20 railway stations: Passengers logging on to public wi-fi at UK’s biggest transport hubs ‘are met with screen about terror attacks in Europe’
The Daily Mail reports: Nineteen major railway stations across Britain including ten in London have been hit by a major cyber attack impacting their public wi-fi systems for passengers. Network Rail confirmed London Euston, Manchester Piccadilly, Liverpool Lime Street, Birmingham New Street and Glasgow Central were among those impacted. British Transport Police launched an investigation after travellers logging into…
China’s ‘Salt Typhoon’ Cooks Up Cyberattacks on US ISPs
Tara Seals reports: A freshly discovered advanced persistent threat (APT) dubbed “Salt Typhoon” has reportedly infiltrated Internet service provider (ISP) networks in the US, looking to steal information and potentially set up a launchpad for disruptive attacks. Citing “people familiar with the matter,” the Wall Street Journal broke the news on Sept. 25 that the Chinese-sponsored state…
Star Health sues Telegram after hacker uses app’s chatbots to leak data
Reuters reports: Star Health has sued Telegram and a self-styled hacker after Reuters reported that the hacker was using chatbots on the messaging app to leak personal data and medical reports of policy holders. The lawsuit comes amid growing scrutiny of Telegram globally and the arrest of its founder Pavel Durov in France last month,…
Massive French citizens data leak exposes 95 million records
The Express Tribune reports: A serious data breach has exposed the personal information of millions of French citizens. Cybersecurity researchers at Cybernews discovered an open Elasticsearch server containing a trove of data from at least 17 separate data breaches. This database, nicknamed “vip-v3,” held information on an estimated 95 million French individuals, representing a significant…
SANS Institute: Top 5 dangerous cyberattack techniques in 2024
Josh Nadeau writes: SANS Institute — a leading authority in cybersecurity research, education and certification — released its annual Top Attacks and Threats Report. This report provides insights into the evolving threat landscape, identifying the most prevalent and dangerous cyberattack techniques that organizations need to prepare for. This year’s report also highlighted the main takeaways from the SANS…