News Roundup — June 5th 2024 edition.

This week in cybersecurity, Ticketmaster confirmed a cloud breach, and Mandiant reported a rise in ransomware attacks for 2023. Kenya and the US bolstered digital security efforts in Africa. Hackers stole auth tokens from AI platform Hugging Face, and DMM Bitcoin warned of a $300 million theft.

Europol identified eight cybercriminals tied to malware botnets, while Okta warned of credential stuffing attacks. Everbridge and Cooler Master reported data breaches, and Pegasus spyware continued to threaten Europe. A supply chain attack hit courtroom software.

Discord faced malware attacks with 50,000 malicious links, and the mastermind behind a Biden AI deepfake was indicted. Rural hospitals were hit by ransomware, and data firm execs were convicted for aiding fraudsters. Microsoft’s India X account was hijacked in a crypto scam, and Cox fixed an API auth bypass. BreachForums resurfaced after an FBI takedown, and 361 million stolen accounts were leaked on Telegram.

Ticketmaster Confirms Cloud Breach, Amid Murky Details

Ransomware saw a resurgence in 2023, Mandiant reports

As Allies, Kenya & US Aim to Bolster Digital Security in Africa

AI platform Hugging Face says hackers stole auth tokens from Spaces

Lawyers Ask Forensics Investigators for Help Outside Cybersecurity

DMM Bitcoin warns that hackers stole $300 million in Bitcoin

Federal agency warns critical Linux vulnerability being actively exploited

Europol identifies 8 cybercriminals tied to malware loader botnets

Russia and China are using OpenAI tools to spread disinformation

Key misinformation "superspreaders" on Twitter: Older women

Law enforcement operation takes aim at an often-overlooked cybercrime linchpin

Okta Warns Once Again of Credential-Stuffing Attacks

Everbridge warns of corporate systems breach exposing business data

Cooler Master confirms customer info stolen in data breach

Phones of journalists and activists in Europe targeted with Pegasus

Supply Chain Attack against Courtroom Software

Leak Site BreachForums Springs Back to Life Weeks After FBI Takedown

Surge in Discord Malware Attacks as 50,000 Malicious Links Uncovered

Mastermind Behind Biden AI Deepfake Indicted for Robocall Scheme

Researchers crack 11-year-old password, recover $3 million in bitcoin

Rural hospitals are particularly vulnerable to ransomware, report finds

Data firm execs convicted for helping fraudsters target the elderly

Microsoft India's X account hijacked in Roaring Kitty crypto scam

Cox fixed an API auth bypass exposing millions of modems to attacks

Europol's Hunt Begins for Emotet Malware Mastermind

361 million stolen accounts leaked on Telegram added to HIBP

Azure Service Tags tagged as security risk, Microsoft disagrees

Popular WordPress Plugins Leave Millions Open to Backdoor Attacks

Exploit for critical Progress Telerik auth bypass released, patch now

Big name TikTok accounts hijacked after opening DM | Malwarebytes

London hospitals declare emergency following ransomware attack

Microsoft deprecates Windows NTLM authentication protocol

NIST Commits to Plan to Resume NVD Work