9 November 2023
2023
Cyber-attacks on Japan soar as hackers target vulnerabilities
Nikkei
Excerpt:
"TOKYO: The number of cyber attacks in Japan is surging as hackers try to exploit the country’s weak defences. Japan has lagged other advanced nations in updating systems to detect attacks and protect data, according to cyber security experts".
New Sh1mmer ChromeBook exploit unenrolls managed devices
Lawrence Abrams
Excerpt:
"A new exploit called ‘Sh1mmer’ allows users to unenroll an enterprise-managed Chromebook, enabling them to install any apps they wish and bypass device restrictions".
JD Sports hit by cyber-attack that leaked 10m customers’ data
Mark Sweney
Excerpt:
"The fashion retailer JD Sports said the personal and financial information of 10 million customers was potentially accessed by hackers in a cyber-attack".
Ramp up security amid rise of financial fraud
Aufa Mardhiah
https://themalaysianreserve.com/2023/01/11/ramp-up-security-amid-rise-of-financial-fraud/
Excerpt:
MALAYSIA is seeing a healthy rate of digitisation in almost all aspects of its people’s daily life following the Covid-19 outbreak.
Today, despite having returned to normalcy in the endemic phase, Malaysians’ adoption of digitisation — especially in transactions — seems to be growing.
However, on the downside, this has opened more opportunities for cybercriminals to explore even more sophisticated offences against unsuspecting online users.
Chinese researchers' claimed quantum encryption crack looks unlikel
Thomas Claburn
https://www.theregister.com/2023/01/07/chinese_researchers_claimed_quantum_encryption/
"Briefly this week, it appeared that quantum computers might finally be ready to break 2048-bit RSA encryption, but that moment has passed".
Air France and KLM notify customers of account hacks
Sergiu Gatlan
https://www.bleepingcomputer.com/news/security/air-france-and-klm-notify-customers-of-account-hacks/
Excerpt:
"Air France and KLM have informed Flying Blue customers that some of their personal information was exposed after their accounts were breached".
Cybersecurity resilience emerges as top priority for organisations
Excerpt:
"CYBERSECURITY resilience is a top priority for companies in Malaysia as they look to defend against a rapidly evolving threat landscape, according to the latest edition of Cisco’s annual study, Security Outcomes Report, launched on Dec 14, 2022".
PyTorch dependency poisoned with malicious code
https://www.theregister.com/2023/01/04/pypi_pytorch_dependency_attack/
Jeff Burt
Excerpt:
"An unknown attacker used the PyPI code repository to get developers to download a compromised PyTorch dependency that included malicious code designed to steal system data".
Toyota, Mercedes, BMW API flaws exposed owners’ personal info
https://www.bleepingcomputer.com/news/security/toyota-mercedes-bmw-api-flaws-exposed-owners-personal-info/
Bill Toulas
Excerpt:
"Almost twenty car manufacturers and services contained API security vulnerabilities that could have allowed hackers to perform malicious activity, ranging from unlocking, starting, and tracking cars to exposing customers' personal information".
NATO Agency signs important cyber security agreements
Excerpt:
"The NATO Communications and Information Agency (NCI Agency) signed two multiple award, Indefinite Delivery Indefinite Quantity (IDIQ) contracts with King ICT Croatia and IBM Belgium, for the provision of cyber security deployment and configuration services across the NATO Enterprise".