Computer hardware manufacturer Cooler Master has recently suffered a data breach after a threat actor breached the company's website and claimed to steal the Fanzone member information of 500,000 customers.  Yesterday, a threat actor by the alias "Ghostr" contacted BleepingComputer and claimed to have stolen 103 GB of data from Cooler Master on May 18th, 2024.

Stephen Schwab, director of strategy for the University of Southern California (USC) Information Sciences Institute's (ISI) Networking and Cybersecurity division, envisions symbiotic teams of humans and Artificial Intelligence (AI) models working together to strengthen security. AI can help analysts thrive in high-stakes environments. Schwab and his team use testbeds and models to study AI-assisted cybersecurity in smaller systems.

A macOS version of the "LightSpy" surveillance framework extends the tool's targeting beyond Android and iOS devices. LightSpy is a modular iOS and Android surveillance framework used to steal files, screenshots, location data and more from victims' mobile devices. Attackers have used the framework against targets in the Asia–Pacific region. ThreatFabric reports that a macOS implant has been active in the wild since January 2024. This article continues to discuss findings regarding the macOS version of the LightSpy spyware tool.

The BBC has recently disclosed a cyberattack that occurred on May 21, involving unauthorized access to files hosted on a cloud-based service, compromising the personal information of BBC Pension Scheme members.  The company noted that the incident impacted roughly 25,000 people, including current and former employees of Britain's national public service broadcaster.  The compromised data includes full names, national insurance numbers, dates of birth, sex, and home addresses.

Europol has reported that authorities in over a dozen countries have disrupted the TrickBot botnet and several other malware droppers. The law enforcement operation called "Operation Endgame" targeted "Bumblebee," "IcedID," "Pikabot," "Smokeloader," "SystemBC," and "TrickBot" from May 27 to 29 to disrupt criminal operations and arrest the cybercriminals behind them. These droppers have been used in the first stage of malicious attacks to steal data, control compromised machines, and install other malware, including ransomware.

The Seattle Public Library is trying to restore its online services after falling victim to a ransomware attack over the Memorial Day weekend.  The library says it identified the attack on May 25, which impacted all its online services.  The Library noted that the disruption began impacting access to staff and public computers, its online catalog and loaning system, e-books and e-audiobooks, in-building Wi-Fi, and its website at www.spl.org.

In late April, Financial Business and Consumer Solutions (FBCS) announced that it was affected by a cyberattack.  The company noted that a breach occurred on February 26, and in the two weeks before the discovery of the intrusion, hackers accessed some systems and may have stolen information. Names, dates of birth, Social Security numbers, driver’s licenses, other identification numbers, and account information may have been compromised.  The company initially reported that 1.9 million people were impacted.

Researchers have collected and analyzed data on SMS phishing attacks, delving into the scope and nature of the operations behind such attacks. The work also explores how additional data on phishing activities can be collected and identifies ways in which law enforcement officials can address phishing operations. SMS phishing involves scammers impersonating a bank, government agency, or other trusted party to trick victims into sharing personal information such as credit card numbers and passwords. This article continues to discuss the study of SMS phishing tactics and infrastructure.

The Cybernews research team found 58,364 unique websites vulnerable to data breaches and full takeovers. Cybernews began investigating publicly exposed environment (.env) files on April 9. These configuration files contain passwords, Application Programming Interface (API) keys, and other secrets websites need to access databases, mail servers, payment processors, Content Management Systems (CMS), and other services. A scan of publicly available indexes shows that thousands of website owners have left their keys unprotected.

Cornell Tech's Security, Trust, and Safety (SETS) Initiative will leverage Cornell University's computer security, digital safety, policy, ethics, and law faculty, as well as its partnership with the Technion. SETS will guide new teaching, research, engagement, and entrepreneurial activities to address the global threats of unsafe digital technologies. The initiative will delve into computer security, emerging threats to online safety, and more. This article continues to discuss the SETS Initiative launched by Cornell Tech.