Security breach was traced back to an employee that followed a phishing link to a bogus login page and entered their credentials on October 13. The attackers then took the credentials and used them to raid some 130 GitHub repositories belonging to Dropbox.
The good news is that the cybersecurity workforce has grown to about 4.7 million strong worldwide. But a workforce gap of 3.4 million remains in spite of good recent growth.
The Twilio hack in August was not the first by that particular threat actor. An investigation has turned up an earlier breach by the same party, in which a vishing attack was used to steal a smaller amount of customer information.
The fine of the government supplier was the fourth largest ever issued in the UK. The ICO ruled that the company lacked employee security training, used outdated operating systems and failed to respond to antivirus warning.
At least 17,500 of the leaked ACL records contained some sort of pathology patient data. About 28,000 of the records went to the dark web accompanied by a credit card number, and 3,300 included a CVV.
Australia has been experiencing a string of high-profile data breaches since late September, and the latest incident in the trend is the theft of 200 GB of medical records from health insurance provider Medibank.
64% of security decision makers believe they have been targeted or impacted by a nation-state attack, and a similar majority say they have shifted their cybersecurity strategy due to the Russia-Ukraine conflict.
Over half of board members appreciate the risk of cyber attacks and are anticipating them in the next 12 months, but just under half (47%) say they feel equipped to deal with them at present.
Dark web marketplaces periodically offer stolen credit cards for free as a promotional stunt, but a recent offering from an outfit calling itself “BidenCash” appears to be the largest one yet with a total of 1.2 million cards.
The malicious apps appeared to evade Apple and Google security by not including malware or recognized threat elements. Users are asked for Facebook login information at the startup screen, which was then skimmed by the attacker and used to take over the account.