News Roundup — July 3rd 2024 edition.

Published in

BCK Security Weekly Newsletter

4 min readJul 4, 2024

This week in cybersecurity, several significant incidents occurred. A cyberattack led to the closure of Co-op locations, and research showed IoT devices, including grills, can be hacked. HealthEquity and Prudential Financial suffered data breaches, with the latter impacting 2.5 million people. A hacker was arrested for stealing airline passenger data via an evil twin Wi-Fi attack, and hackers exploited an API to verify millions of Authy MFA phone numbers.

The Formula 1 governing body and South Africa’s healthcare lab faced data breaches, and LockBit ransomware hit Croatia’s biggest hospital. Authentication issues were prominent, affecting GitHub and Microsoft. Juniper patched a critical flaw in smart routers, and hackers exploited a D-Link router flaw. A former IT employee accessed data of over 1 million US patients, and an authenticator for X and TikTok exposed user info for 18 months. China’s state-sponsored attackers targeted 40,000 corporate users, and the US banned Kaspersky products. Additionally, hundreds of thousands were impacted by a cyberattack on a children’s hospital. These incidents underscore ongoing cybersecurity challenges.

Cybersecurity incident results in closure of Co-op locations

Federated Co-operatives Limited has confirmed that a cybersecurity incident has resulted in the closure of its retail…

www.cheknews.ca

Any IoT Device Can Be Hacked, Even Grills

Researchers uncover a way to hack the summer cookout - but firmware updates will stop that grilled meat (or tofu) from…

www.darkreading.com

HealthEquity data breach exposes protected health information

Healthcare fintech firm HealthEquity is warning that it suffered a data breach after a partner's account was…

www.bleepingcomputer.com

Hacker Busted for 'Evil Twin' Wi-Fi That Steals Airline Passenger Data

Australian cops arrest man found with a portable Wi-Fi access device in his carry-on luggage, allegedly used for…

www.darkreading.com

"Everything's frozen": Ransomware locks credit union users out of bank accounts

Patelco Credit Union in Calif. shut down numerous banking services after attack.

arstechnica.com

Hackers abused API to verify millions of Authy MFA phone numbers

Twilio has confirmed that an unsecured API endpoint allowed threat actors to verify the phone numbers of millions of…

www.bleepingcomputer.com

Formula 1 governing body discloses data breach after email hacks

FIA (Fédération Internationale de l'Automobile), the auto racing governing body since the 1950s, says attackers gained…

www.bleepingcomputer.com

New Open SSH Vulnerability

It's a serious one: The vulnerability, which is a signal handler race condition in OpenSSH's server (sshd), allows…

www.schneier.com

LockBit Hits Croatia's Biggest Hospital, Demands Ransom for Data

The cyber attack was a ransomware incident perpetrated by the LockBit 3.0 group, which forced the hospital to shut down…

hackread.com

South Africa Lab Still Reeling from Ransomware Attack

The cyberattack disrupted national laboratory services, which could slow response to disease outbreaks such as mpox…

www.darkreading.com

Passkey Redaction Attacks Subvert GitHub, Microsoft Authentication

Adversary-in-the-middle attacks can strip out the passkey option from login pages that users see, leaving targets with…

www.darkreading.com

Prudential Financial data breach impacts 2.5 million people, not 36,000 as first thought |…

It turns out that a breach at the Prudential impacted a lot more people than was initially thought. The company is now…

www.malwarebytes.com

Juniper Rushes Out Emergency Patch for Critical Smart Router Flaw

Although not yet exploited in the wild, the authentication bypass bug could allow adversaries to take over unpatched…

www.darkreading.com

Dev rejects CVE severity, makes his GitHub repo read-only

The popular open source project, 'ip' had its GitHub repository archived, or made "read-only" by its developer as a…

www.bleepingcomputer.com

Hackers exploit critical D-Link DIR-859 router flaw to steal passwords

Hackers are exploiting a critical vulnerability that affects all D-Link DIR-859 WiFi routers to collect account…

www.bleepingcomputer.com

Inside a violent gang's ruthless crypto-stealing home invasion spree

More than a dozen men threatened, assaulted, tortured, or kidnapped 11 victims.

arstechnica.com

Hundreds of Thousands Impacted in Children's Hospital Cyberattack

Though the hospital did not pay a ransom, a host of sensitive medical information is now at risk.

www.darkreading.com

Former IT employee accessed data of over 1 million US patients

Geisinger, a prominent healthcare system in Pennsylvania, has announced a data breach involving a former employee of…

www.bleepingcomputer.com

Authenticator for X, TikTok Exposes Personal User Info for 18 Months

With many popular apps, users must hand over personal information to prove their identity, and the big downside is they…

www.darkreading.com

Shopping app Temu is "dangerous malware," spying on your texts, lawsuit claims

Temu "surprised" by the lawsuit, plans to "vigorously defend" itself.

arstechnica.com

Your Phone's 5G Connection Is Vulnerable to Bypass, DoS Attacks

Wireless service providers prioritize uptime and lag time, occasionally at the cost of security, allowing attackers to…

www.darkreading.com

China-Sponsored Attackers Target 40K Corporate Users in 90 Days

The attacks infiltrate enterprise networks through browsers, and show an evolution in evasive and adaptive tactics from…

www.darkreading.com

News Roundup — July 3rd 2024 edition.

Cybersecurity incident results in closure of Co-op locations

Federated Co-operatives Limited has confirmed that a cybersecurity incident has resulted in the closure of its retail…

Any IoT Device Can Be Hacked, Even Grills

Researchers uncover a way to hack the summer cookout - but firmware updates will stop that grilled meat (or tofu) from…

HealthEquity data breach exposes protected health information

Healthcare fintech firm HealthEquity is warning that it suffered a data breach after a partner's account was…

Hacker Busted for 'Evil Twin' Wi-Fi That Steals Airline Passenger Data

Australian cops arrest man found with a portable Wi-Fi access device in his carry-on luggage, allegedly used for…

"Everything's frozen": Ransomware locks credit union users out of bank accounts

Patelco Credit Union in Calif. shut down numerous banking services after attack.

Hackers abused API to verify millions of Authy MFA phone numbers

Twilio has confirmed that an unsecured API endpoint allowed threat actors to verify the phone numbers of millions of…

Formula 1 governing body discloses data breach after email hacks

FIA (Fédération Internationale de l'Automobile), the auto racing governing body since the 1950s, says attackers gained…

New Open SSH Vulnerability

It's a serious one: The vulnerability, which is a signal handler race condition in OpenSSH's server (sshd), allows…

LockBit Hits Croatia's Biggest Hospital, Demands Ransom for Data

The cyber attack was a ransomware incident perpetrated by the LockBit 3.0 group, which forced the hospital to shut down…

South Africa Lab Still Reeling from Ransomware Attack

The cyberattack disrupted national laboratory services, which could slow response to disease outbreaks such as mpox…

Passkey Redaction Attacks Subvert GitHub, Microsoft Authentication

Adversary-in-the-middle attacks can strip out the passkey option from login pages that users see, leaving targets with…

Prudential Financial data breach impacts 2.5 million people, not 36,000 as first thought |…

It turns out that a breach at the Prudential impacted a lot more people than was initially thought. The company is now…

Juniper Rushes Out Emergency Patch for Critical Smart Router Flaw

Although not yet exploited in the wild, the authentication bypass bug could allow adversaries to take over unpatched…

Dev rejects CVE severity, makes his GitHub repo read-only

The popular open source project, 'ip' had its GitHub repository archived, or made "read-only" by its developer as a…

Hackers exploit critical D-Link DIR-859 router flaw to steal passwords

Hackers are exploiting a critical vulnerability that affects all D-Link DIR-859 WiFi routers to collect account…

Inside a violent gang's ruthless crypto-stealing home invasion spree

More than a dozen men threatened, assaulted, tortured, or kidnapped 11 victims.

Hundreds of Thousands Impacted in Children's Hospital Cyberattack

Though the hospital did not pay a ransom, a host of sensitive medical information is now at risk.

Former IT employee accessed data of over 1 million US patients

Geisinger, a prominent healthcare system in Pennsylvania, has announced a data breach involving a former employee of…

Authenticator for X, TikTok Exposes Personal User Info for 18 Months

With many popular apps, users must hand over personal information to prove their identity, and the big downside is they…

Shopping app Temu is "dangerous malware," spying on your texts, lawsuit claims

Temu "surprised" by the lawsuit, plans to "vigorously defend" itself.

Your Phone's 5G Connection Is Vulnerable to Bypass, DoS Attacks

Wireless service providers prioritize uptime and lag time, occasionally at the cost of security, allowing attackers to…

China-Sponsored Attackers Target 40K Corporate Users in 90 Days

The attacks infiltrate enterprise networks through browsers, and show an evolution in evasive and adaptive tactics from…

The US Is Banning Kaspersky

This move has been coming for a long time. The Biden administration on Thursday said it's banning the company from…

Written by BCK Security Inc