Cybersecurity Weekly: Wyze data leak, PayPal phishing scam, prison footage leak
IoT company Wyze suffers a data leak affecting millions of customers. An ambitious phishing campaign aims for more than just usernames and passwords. Security camera footage from a prison in Thailand leaks to YouTube. All this, and more, in this week’s edition of Cybersecurity Weekly.
See Infosec IQ in action
1. Wyze data leak exposed personal data of millions of users
Security camera startup Wyze confirmed it suffered a data leak in December that may have left millions of personal data records exposed on the internet. The data was accidentally exposed when transferred to a new database because the company failed to maintain security protocols during this process.
Read more »
2. Ambitious scam wants far more than just PayPal logins
Security researchers have spotted fraudulent websites that impersonate PayPal to trick users into handing over considerably more than their username and password. These phishing sites prompt users for their name, address and full credit card details, as well as answers to common security questions.
Read more »
3. Security developer creates Wi-Fi hacking module with Pi Zero
A security developer recently shared the design for a Wi-Fi hacking gadget made with a Raspberry Pi Zero W and a portable battery. In his post, he detailed everything needed to recreate his device — including how he used re4son-kernel for Wi-Fi monitoring as well as Aircrack-ng and Bettercap to do most of the heavy lifting.
Read more »
4. Ransomware shuts down The Heritage Company
The Heritage Company became the latest ransomware victim to temporarily shut down its operations after making a ransom payment. The company’s CEO alerted the 300 employees of the temporary suspension and informed them to call the office on January 2 for an update on the status of the recovery.
Read more »
5. Ryuk Ransomware stops encrypting Linux folders
A new version of the Ryuk Ransomware will purposely avoid encrypting folders commonly seen in Linux and Unix operating systems. The purpose for this is to encrypt the victim’s data without affecting the core functionality of the operating system, which will more often lead to a ransom payment.
Read more »
6. Prison surveillance footage posted on YouTube
Thailand law enforcement is looking into an incident that resulted in live surveillance footage from a local prison leaked to YouTube. Authorities didn’t say how the attacker got in, but there was a hint provided: “When installing video surveillance change the standard passwords,” reads a message on the hacker’s YouTube channel.
Read more »
7. Entercom Radio Network hit by second cyber attack this year
This is the second time the network has to recover from a security incident after the September ransomware attack that caused significant financial losses earlier in the year. Details about this recent attack have not been released but the company confirmed the attack caused an outage lasting several hours.
Read more »
8. Ransomware at IT services provider Synoptek
Synoptek, a California-based IT services provider, suffered a ransomware attack last week that disrupted operations for many of its clients. The company reportedly paid the ransom demand in order to restore operations as quickly as possible. Employees of Synoptek confirmed that the company had been hit by a strain of ransomware called “rEvil.”
Read more »
9. Hundreds of counterfeit shoe sites hit by Magecart credit card scam
Consumers have been warned to avoid sites that promise too-good-to-be-true discounts, as they risk being hit by a credit card scam. This campaign is another example of Magecart scripts, which were also used last year on high-profile websites, including those owned by Newegg, British Airways and Ticketmaster.
Read more »
See Infosec IQ in action
10. Twitter app bug used to match 17 million phone numbers to user accounts
A security researcher matched 17 million phone numbers to Twitter user accounts by exploiting a flaw in Twitter’s Android app. Ibrahim Balic found it was possible to upload lists of auto-generated phone numbers through Twitter’s contact upload feature. The company announced that it is working to “ensure this bug cannot be exploited again.”
Read more »
- Reduce security events
- Reinforce cyber secure behaviors
- Strengthen cybersecurity culture at your organization
In this Series
- Cybersecurity Weekly: Wyze data leak, PayPal phishing scam, prison footage leak
- Canada Flipper Zero ban and new RustDoor macOS malware
- AnyDesk hack and iPhone patched kernel flaw
- Tesla Pwn2Own hacks and iOS push alerts abuse
- TeamViewer breach and Atlassian Jira outage
- Moscow ISP revenge hack and Microsoft Sharepoint bug warning
- X verified accounts hack and SpectralBlur macOS malware
- CISA default password alert and SOHO KV-botnet campaign
- New 5G modem flaws and Apple’s data breach report
- Staples cyberattack, Agent Racoon backdoor and other news
- British Library ransomware attack, Windows fingerprint authentication bypass
- Samsung UK data breach and ransomware actor’s SEC complaint
- ICBC ransomware attack and ChatGPT outage
- Boeing Lockbit ransomware attack, Apple’s vulnerability and WhatsApp mods spyware
- Octo Tempest hacking group and new iLeakage attack
- Okta support system breach and Google Ads fake KeePass campaign
- Skype DarkGate malware, Shadow PC breach and AvosLocker ransomware warning
- 23andMe data theft, MGM’s $100M ransomware loss and the Azure VM breach
- Malicious Bing Chat ads and FBI’s dual ransomware warning
- T-Mobile app glitch and fake Booking.com pages
- Airbus data leak, Cisco Webex ad malware and €345 million TikTok fine
- New Apple iMessage exploit and CISA’s Apache RocketMQ warning
- Forever 21 data breach and Android BadBazaar espionage
- Duolingo data leak and the Met Police IT hack
- Discord.io data breach and Ivanti Avalanche vulnerabilities
- UK Electoral Commission hack and Microsoft’s role in China email breach
- Salesforce email zero-day exploit and Microsoft Power Platform criticism
- Airlines disclose pilot data breach and the Microsoft Teams bug
- GravityRAT Android Trojan and new MOVEit Transfer flaw
- University of Manchester hack and Honda API flaws
- MOVEit zero-day exploit and the U.S. iPhone hack accusation
- Daam Android virus and Barracuda zero-day flaw
- TP-Link router exploit and 18-year-old charged with hacking DraftKings accounts
- Discord support hack and Toyota location data leak
- Twitter private tweets bug and Cisco phone router vulnerabilities
- Cisco XSS zero-day flaw and PaperCut vulnerabilities
- 3CX hackers hit critical infrastructure and secondhand routers cause security concerns
- Hyundai data breach and Microsoft’s warning to accountants
- Western Digital cloud breach and the MSI ransomware hack
- TMX loan data breach, Italy bans ChatGPT and WordPress Elementor Pro exploit
- ChatGPT data leak and Gmail message theft by North Korean hackers
- U.S. federal agency hack and the return of FakeCalls Android malware
- Massive AT&T data breach and fake jobs targeting security researchers
- U.S. Marshals service breach and TPM 2.0 security flaws
- Dangerous ChatGPT apps and food giant Dole ransomware attack
- GoDaddy malware installations, record-breaking DDoS attack and the new WhiskerSpy malware
- Reddit’s employees phished, healthcare firms targeted and the new Screenshotter malware
- JD Sports data breached, VMware ESXi servers attacked and the HeadCrab malware
- Yandex source code leaked, 4500+ WordPress sites hacked and the new SwiftSlicer malware
- PayPal accounts breached, Fortinet VPN flaw exploited, and the new Hook malware
- Twitter users’ emails leaked, ChatGPT used to write malware and Slack’s repository breach
We’ll customize our demo to your
- Security awareness goals
- Existing security and employee training tools
- Industry and compliance requirements
