Jai Vijayan reports: Some 75,000 email inboxes have been impacted so far in what appears to be an email phishing campaign motivated by credential harvesting. Security researchers from Armorblox this week reported observing the attack on customer systems across Office 365, Microsoft Exchange, and Google Workspace environments. Read more on DarkReading.
Apple Pay with VISA lets hackers force payments on locked iPhones
Ionut Ilascu reports: Academic researchers have found a way to make fraudulent payments using Apple Pay from a locked iPhone with a Visa card in the digital wallet with express mode enabled. The method is akin to a digital version of pickpocketing. It works over the air even if the iPhone is in a bag…
Ransomware attack disrupts hundreds of bookstores across France, Belgium, and the Netherlands
Catalin Cimpanu reports: Hundreds of bookstores across France, Belgium, and the Netherlands have had their operations disrupted this week after a ransomware attack crippled the IT systems of TiteLive, a French company that operates a SaaS platform for book sales and inventory management. The incident, which took place earlier this week, has impacted bookstore chains such…
Trucking giant Forward Air reports ransomware data breach
Lawrence Abrams reports: Trucking giant Forward Air has disclosed a data breach after a ransomware attack that allowed threat actors to access employees’ personal information. In December 2020, Forward Air suffered a ransomware attack by what was believed to be a new cybercrime gang known as Hades. This attack caused Forward Air to shut down its…
Group-IB founder arrested in Moscow on state treason charges
Catalin Cimpanu reports: Russian law enforcement agencies have raided the office of cybersecurity company Group-IB and detained its founder and chief executive officer, Ilya Sachkov, for two months, on state treason charges. The raids, first reported by Russian news outlet RTVI, took place on Tuesday, September 28. Read more on The Record.
My: No security breach, data leakage on MAF’s end or SSM’s end
The Star reports: The issue over the alleged data leak involving personal information of the public does not involve any security breach on the part of the Malaysian Armed Forces, says Chief of Defence Force Tan Sri Affendi Buang. He said MAF always emphasised the confidentiality of all data, whether it was in a closed…