News Roundup — May 29th 2024 edition.

Published in

BCK Security Weekly Newsletter

3 min readMay 29, 2024

This week in cybersecurity, a critical flaw in the Replicate AI platform exposed customer data, while a Moroccan cybercrime group exploited cloud services for gift card scams. Netflix fixed a critical vulnerability, and a criminal record database of millions of Americans was leaked online. BlackBasta hacked Atlas, and Cencora’s breach exposed US health data. Rockwell advised disconnecting internet connections due to security risks.

Microsoft’s recall feature faced privacy criticism, and two brothers were charged with a $25 million Ethereum theft. A stalkerware app was found on hotel systems, and WhatsApp discovered an encryption flaw. Over 90 malicious Android apps were found on Google Play, and a severe Fortinet RCE bug exploit was released. BreachForums returned, claiming to have user data from Live Nation and Ticketmaster, raising concerns about its legitimacy.

Critical Flaw in AI Platform Exposes Proprietary Data

The finding underscores the challenges of protecting data from multiple customers across AI-as-a-service solutions…

www.darkreading.com

Moroccan cybercrime group impersonates nonprofits and abuses cloud services to rake in gift card…

Microsoft researchers say the group, tracked as Storm-0539 or Atlas Lion, targets employees with major U.S. retailers…

cyberscoop.com

Persistent Burnout Is Still a Crisis in Cybersecurity

Burnout has been an oft-reported problem among security professionals for years. Are there any new ideas for supporting…

www.darkreading.com

Critical Netflix Genie Bug Opens Big Data Orchestration to RCE

The severe security vulnerability (CVE-2024-4701, CVSS 9.9) gives remote attackers a way to burrow into Netflix's Genie…

www.darkreading.com

Criminal record database of millions of Americans dumped online | Malwarebytes

A notorious cybercriminal involved in breaches has released a database containing 70 million US criminal records.

www.malwarebytes.com

Blackbasta group claims to have hacked Atlas, one of the largest US oil distributors

The Blackbasta extortion group claims to have hacked Atlas, one of the largest national distributors of fuel in the…

securityaffairs.com

Hackers release corporate data stolen from London Drugs

Posted: May 23, 2024 Last Updated: May 23, 2024 Retailer London Drugs says cybercriminals who stole files from its…

www.cbc.ca

Casino cyberattacks put a bullseye on Scattered Spider

Mandiant CTO chats to The Reg about the looming fate of this ransomware crew

www.theregister.com

US pharma giant Cencora says Americans' health information stolen in data breach | TechCrunch

About half a million patients have been notified so far, but the number of affected individuals is likely far higher.

techcrunch.com

Rockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber Threats

Rockwell Automation urges customers to disconnect industrial control systems from the public internet due to heightened…

thehackernews.com

Microsoft's 'Recall' Feature Draws Criticism From Privacy Advocates

Despite Microsoft's reassurances, multiple security researchers describe the technology as problematic for users and…

www.darkreading.com

MIT Brothers Charged With Exploiting Ethereum to Steal $25 Million

The two MIT graduates discovered a flaw in a common trading tool for the Ethereum blockchain. Does it presage problems…

www.darkreading.com

Stalkerware App With Security Bug Infests Hotel Systems

The spyware is able to capture screenshots of a user device every few seconds from any location globally.

www.darkreading.com

WhatsApp Engineers Fear Encryption Flaw Exposes User Data, Memo

WhatsApp's security team warned that despite its encryption, users remain vulnerable to government surveillance…

www.hackread.com

How Researchers Cracked an 11-Year-Old Password to a $3 Million Crypto Wallet

Thanks to a flaw in a decade-old version of the RoboForm password manager and a bit of luck, researchers were able to…

www.wired.com

Over 90 malicious Android apps with 5.5M installs found on Google Play

Over 90 malicious Android apps were found installed over 5.5 million times through Google Play to deliver malware and…

www.bleepingcomputer.com

Exploit released for maximum severity Fortinet RCE bug, patch now

Security researchers have released a proof-of-concept (PoC) exploit for a maximum-severity vulnerability in Fortinet's…

www.bleepingcomputer.com

Russian influence op keeps trying but struggles to win hearts and minds

Meta researchers said the influence operation known as Doppelganger continues to target European elections and Ukraine…

cyberscoop.com

Data leak site BreachForums is back, boasting Live Nation/Ticketmaster user data. But is it a trap…

The notorious BreachForums seem to have returned, but the question is: who is actually running the new forums?

www.malwarebytes.com

News Roundup — May 29th 2024 edition.

Critical Flaw in AI Platform Exposes Proprietary Data

The finding underscores the challenges of protecting data from multiple customers across AI-as-a-service solutions…

Moroccan cybercrime group impersonates nonprofits and abuses cloud services to rake in gift card…

Microsoft researchers say the group, tracked as Storm-0539 or Atlas Lion, targets employees with major U.S. retailers…

Persistent Burnout Is Still a Crisis in Cybersecurity

Burnout has been an oft-reported problem among security professionals for years. Are there any new ideas for supporting…

Critical Netflix Genie Bug Opens Big Data Orchestration to RCE

The severe security vulnerability (CVE-2024-4701, CVSS 9.9) gives remote attackers a way to burrow into Netflix's Genie…

Criminal record database of millions of Americans dumped online | Malwarebytes

A notorious cybercriminal involved in breaches has released a database containing 70 million US criminal records.

Blackbasta group claims to have hacked Atlas, one of the largest US oil distributors

The Blackbasta extortion group claims to have hacked Atlas, one of the largest national distributors of fuel in the…

Hackers release corporate data stolen from London Drugs

Posted: May 23, 2024 Last Updated: May 23, 2024 Retailer London Drugs says cybercriminals who stole files from its…

Casino cyberattacks put a bullseye on Scattered Spider

Mandiant CTO chats to The Reg about the looming fate of this ransomware crew

US pharma giant Cencora says Americans' health information stolen in data breach | TechCrunch

About half a million patients have been notified so far, but the number of affected individuals is likely far higher.

Rockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber Threats

Rockwell Automation urges customers to disconnect industrial control systems from the public internet due to heightened…

Microsoft's 'Recall' Feature Draws Criticism From Privacy Advocates

Despite Microsoft's reassurances, multiple security researchers describe the technology as problematic for users and…

MIT Brothers Charged With Exploiting Ethereum to Steal $25 Million

The two MIT graduates discovered a flaw in a common trading tool for the Ethereum blockchain. Does it presage problems…

Stalkerware App With Security Bug Infests Hotel Systems

The spyware is able to capture screenshots of a user device every few seconds from any location globally.

WhatsApp Engineers Fear Encryption Flaw Exposes User Data, Memo

WhatsApp's security team warned that despite its encryption, users remain vulnerable to government surveillance…

How Researchers Cracked an 11-Year-Old Password to a $3 Million Crypto Wallet

Thanks to a flaw in a decade-old version of the RoboForm password manager and a bit of luck, researchers were able to…

Over 90 malicious Android apps with 5.5M installs found on Google Play

Over 90 malicious Android apps were found installed over 5.5 million times through Google Play to deliver malware and…

Exploit released for maximum severity Fortinet RCE bug, patch now

​Security researchers have released a proof-of-concept (PoC) exploit for a maximum-severity vulnerability in Fortinet's…

Russian influence op keeps trying but struggles to win hearts and minds

Meta researchers said the influence operation known as Doppelganger continues to target European elections and Ukraine…

Data leak site BreachForums is back, boasting Live Nation/Ticketmaster user data. But is it a trap…

The notorious BreachForums seem to have returned, but the question is: who is actually running the new forums?

Cencora data breach exposes US patient info from 11 drug companies

Some of the largest drug companies in the world have disclosed data breaches due to a February 2024 cyberattack at…

Written by BCK Security Inc

Security researchers have released a proof-of-concept (PoC) exploit for a maximum-severity vulnerability in Fortinet's…