A hacker group known as ‘Al-Aqsa Flood’ has claimed the breach of the Israeli Defense Ministry’s website, allegedly accessing sensitive data concerning over 11,000 Israeli soldiers. The compromised information may include photographs, addresses, contact details, military enlistment numbers, and the reported Ukrainian origins of some soldiers. A video released on Telegram by the group showcases personal details of certain soldiers, serving as evidence of the breach. The hackers have also warned that the obtained data is now in the hands of Palestinian fighters groups. Hackers claims responsibi ..read more

Critics of Serbia’s government who have documented the country’s endemic corruption were targeted with military-grade spyware earlier this year. The attempted hacking on the two civil society activists was ultimately not successful because both individuals’ Apple iPhones had been updated with the latest iOS software, which protected the devices from being infiltrated. The attacks took place during the summer, when the authorities faced a series of mass protests under the ‘Serbia against violence’ banner. The individuals were first notified by Apple of the attempted hack, which sent both an ale ..read more

The law enforcement agencies from seven nations in cooperation with Europol and Eurojust have arrested in Ukraine, the core members of a ransomware group linked to attacks against organizations in 71 countries. Five individuals including the suspected ringleader of a prolific ransomware affiliate believed to have made hundreds of millions of dollars from cyber-attacks were arrested. On November 21st, coordinated raids at 30 locations in Kyiv, Cherkasy, Rivne, and Vinnytsia resulted in the arrest of the group’s 32-year-old mastermind and the capture of four accomplices. Some members of the gang ..read more

The ALPHV/BlackCat ransomware operation has filed a U.S. Securities and Exchange Commission complaint against one of their alleged victims for not complying with the four-day rule to disclose a cyberattack. The hacker group listed the software company MeridianLink on their data leak with a threat that they would leak allegedly stolen data unless a ransom is paid in 24 hours. MeridianLink is a publicly traded company that provides digital solutions for financial organizations such as banks, credit unions, and mortgage lenders. The ALPHV ransomware gang breached MeridianLink’s network on Novembe ..read more

Black Friday and Cyber Monday are here. Customers are looking for deals­ and discounts, but before you shop, make sure to take note of these tips to help keep your personal and financial information safe. Phishing attacks Phishing is a prevalent threat during the holiday season. Cybercriminals send deceptive emails, messages, or advertisements mimicking legitimate retailers, attracting users to click on malicious links or provide personal information. You must be cautious of unsolicited emails, verify the legitimacy of emails before clicking on links, and avoid providing personal information t ..read more

The Idaho National Laboratory (INL) reveals they suffered a cyberattack after ‘SiegedSec’ hacktivists leaked stolen human resources data online. INL is a nuclear research center run by the U.S. Department of Energy that employs 5,700 specialists in atomic energy, integrated energy, and national security. The INL complex that extends over an 890-square-mile (2,310 km2) area, encompasses 50 experimental nuclear reactors, including the first ones in history to produce usable amounts of electricity and the first power plant designed for nuclear submarines. Now, INL is occupied with research on nex ..read more

Microsoft has launched a new bug bounty program with the aim of making its Microsoft Defender-branded products and services more resilient to attack. The Microsoft Defender Bounty Program will offer ethical hackers between $500 and $20,000 for significant vulnerabilities that have a direct and demonstrable impact on the security of its customers. The largest sum for a novel vulnerability will go to researchers who could find critical remote code execution bugs and deliver a high-quality report. In-scope vulnerabilities include cross-site scripting, cross-site request forgery, server-side reque ..read more

The Canadian government declared that two of its contractors have been hacked, exposing sensitive information belonging to an undisclosed number of government employees. The breaches which occurred last month impacted Brookfield Global Relocation Services (BGRS) and SIRVA Worldwide Relocation & Moving Services, both providers of relocation services to Canadian government employees. Government-related information stored on compromised BGRS and SIRVA Canada systems dates back to 1999, and it belongs to a broad spectrum of affected individuals, including members of the Royal Canadian Mounted ..read more

The Rhysida ransomware gang has claimed responsibility for the cyberattack on the British Library in October, which has caused a major ongoing IT outage. Rhysida is auctioning off the data it stole from the United Kingdom’s national library systems. The gang is accepting bids from interested parties over the next seven days. The gang states that they sell only to one hand, and no reselling. The ransomware group also leaked a low-resolution screenshot of what looks like ID scans stolen from the library’s compromised system. The FBI and CISA warned of Rhysida’s opportunistic attacks targeting or ..read more

A state-sponsored Russian hacker group, APT29, is leveraging the CVE-2023-38831 vulnerability in WinRAR for cyberattacks. APT29 which is also known by the names (UNC3524,/NobleBaron/Dark Halo/NOBELIUM/Cozy Bear/CozyDuke, SolarStorm) has been targeting embassy entities with a BMW car sale lure. The CVE-2023-38831 security flaw affects WinRAR versions before 6.23 and allows crafting .RAR and .ZIP archives that can execute in the background code prepared by the attacker for malicious purposes. The vulnerability has been exploited as a zero-day since April by threat actors targeting cryptocurrency ..read more