Cyber News Of The Week - 10th March 2023

North America and Canada have hogged the headlines in #CyberSecurity this week, with plenty of stories hitting the news surrounding the #USGovernment and the FBI, alongside a huge breach for Canadian engineering giant,? Black & McDonald Limited .?

Keep reading for the highlights from this week’s #CyberNews….

1. The #FBI just admitted to purchasing US location data

In a move that privacy advocates are calling “deeply problematic”, the Federal Bureau of Investigation (FBI) has reportedly admitted for the first time that it bought American location data rather than getting a warrant.

Find out more at CNBC - https://www.cnbctv18.com/world/fbi-admits-to-buying-american-location-data-without-warrant-for-the-first-time-16125921.htm?

2. OpenAI 's #ChatGPT is being integrated into #CyberSecurity products

ChatGPT is increasingly integrated into cybersecurity products and services as the industry continues to test its capabilities and limitations.

Find out more at SecurityWeek - https://www.securityweek.com/chatgpt-integrated-into-cybersecurity-products-as-industry-tests-its-capabilities/

3. Security researchers decode the locations of drone pilots

Security researchers have identified no less than 16 vulnerabilities in several DJI drones that could have let attackers crash the drones or even discover the pilot's location.

Find out more at 比特梵德 - https://www.bitdefender.com/blog/hotforsecurity/security-researchers-find-vulnerabilities-that-could-crash-dji-drones-and-pinpoint-pilots/?

4. #CyberAttack hits Canadian engineering giant with contracts for military bases and power plants

An engineering organisation in Canada whose work involves critical military, power and transportation infrastructure across the country has been hit with a ransomware attack.

Find out more CTV News - https://www.ctvnews.ca/business/cyber-attack-hits-engineering-giant-with-contracts-for-military-bases-power-plants-1.6304657?

5. LastPass is a sobering reminder of the dangers of failing to keep software up-to-date.

The latest information released on the LastPass hack of summer 2022 reveals that the breach was the result of one of its engineers failing to update Plex on their home computer.?

Find out more The Hacker News - https://thehackernews.com/2023/03/lastpass-hack-engineers-failure-to.html?

6. #CyberCrime marketplace leaks over 2.1 million payment cards

Notorious carding marketplace #BidenCash last week released information on more than 2.1 million stolen credit and debit cards.

Find out more at SecurityWeek - https://www.securityweek.com/cybercrime-marketplace-leaks-over-2-1-million-payment-cards/?

7. US states told to check on security of water supplies

The US government has asked states to assess the cyber security capabilities of their drinking water systems ad part of the White House's broader efforts to protect the nation's critical infrastructure from attacks by nation-states and other cyber threats.

Find out more at The Register - https://www.theregister.com/2023/03/06/epa_security_public_water/?

8. New threat uses Meta 's #FacebookAds to target critical infrastructure

Cybersecurity researchers have discovered a new information stealer dubbed #SYS01stealer targeting critical government infrastructure employees, manufacturing companies, and other sectors since November 2022.

Find out more The Hacker News - https://thehackernews.com/2023/03/sys01stealer-new-threat-using-facebook.html?

–

Want to stay updated on all things #CyberSecurityNews? Subscribe to our weekly newsletter by clicking 'Subscribe' at the top of this page!