100s of IPs behind Targeted Attacks on Apache RocketMQ Servers, Mandiant X Acc HACKED!, $86 Million Crypto EXPOSED - Find More
Welcome to the 2024's first edition of Threat Digest, bringing you curated bytes across the evolving threat landscape prepared by our team at Secure Blink Threat Intel Lab.
Hundreds of IPs Exploited Apache RocketMQ Vulnerabilities
Security researchers discovered malicious activities targeting Apache RocketMQ services. The vulnerabilities in question, CVE-2023-33246 and CVE-2023-37582, pose a severe threat, persisting despite initial vendor patches in May 2023.
Elon Mode UNLOCKED in Tesla Autopilot HACK Allowing Critical Data Access
In a public live stream, three cybersecurity researchers under the doctoral program at Technische Universit?t Berlin (TU Berlin) successfully hacked into Tesla’s autopilot system, shedding light on the underlying vulnerabilities and raising concerns about the safety of Tesla vehicles. The exploit not only allowed access to internal hardware but also unlocked a hidden “Elon mode” with enhanced capabilities.
23andMe Blames VICTIMS for Massive 6.9 M Healthcare Data Breach Fallout
In a twist of blame-shifting dynamics, 23andMe, after facing over 30 lawsuits following a massive healthcare data breach impacting 6.9 million users, is now blatantly deflecting blame onto its victims and is accused of downplaying the severity of the breach.
领英推荐
Exposing $86 Million Crypto Heist of Orbit Chain from 2023 Fintech HACK
Orbit Chain, a blockchain infrastructure project facilitating interoperability among decentralized applications and services, recently fell victim to a sophisticated security breach. On December 31, 2023, at 9:07:59 PM UTC, unidentified hackers executed a series of drain attacks, resulting in a staggering loss of $86 million in cryptocurrency.
USA Cybersecurity Firm’s Twitter/X Account of Mandiant HIJACKED
X, formerly known as the Twitter account of Mandiant, a US-based cybersecurity firm and Google subsidiary, was compromised three days ago. The attacker not only seized control but also perpetrated a cryptocurrency scam by impersonating the Phantom crypto wallet.
That wraps up this week's Threat Digest edition. Until next time with a new edition!
Explore the dynamic dimensions of Application and API Security with Threatspy.
Stay tuned for more alarming updates across the Threat landscape in our upcoming editions.
Great dad | Inspired Risk Management and Security | Cybersecurity | AI Governance & Security | Data Science & Analytics My posts and comments are my personal views and perspectives but not those of my employer
1 年The highlight this week is definitely the Tesla article. This will be a heated topic in the upcoming months