Cybersecurity News Bulletin - October 2023

Welcome to the latest in our cybersecurity news roundup!?

In this edition, we bring you crucial updates on cybersecurity incidents, vulnerabilities, and trends impacting organisations worldwide. From Citrix NetScaler vulnerabilities to Sony Interactive Entertainment's breach, we've got you covered.?

Plus, don't miss our Hot Topic of the Month, featuring the upcoming Cyber Security Summit 2023.?

Latest Cybersecurity News?

Citrix NetScaler Vulnerability Exploited: User Credentials at Risk

A critical Citrix NetScaler ADC vulnerability (CVE-2023-3519) is being actively exploited by criminal hackers. IBM X-Force discovered attackers exploiting the vulnerability to insert malicious code, steal credentials, and maintain persistent access. Over 600 unique victim IP addresses have been uncovered, the majority of which are located in the U.S. and Europe.

Sony Interactive Entertainment Alerts Thousands to Cybersecurity Breach

Sony Interactive Entertainment has alerted both current and former employees, along with their family members about a cybersecurity breach resulting in the exposure of their personal data. The breach, impacting approximately 6,800 individuals, was caused by a zero-day vulnerability in the MOVEit Transfer platform.

Identified as CVE-2023-34362, the vulnerability represents a critical-severity SQL injection flaw capable of leading to remote code execution. The zero-day was leveraged by the Clop ransomware group on large-scale attacks that successfully compromised numerous organisations on a global scale.

Balada Injector Attacks Compromise Over 17,000 WordPress Sites in Recent Surge

Balada Injector campaigns have breached over 17,000 WordPress sites through premium theme plugin vulnerabilities.?

Dr. Web discovered this massive operation in December 2022, which uses a Linux backdoor via known WordPress plugin and theme exploits. The backdoor redirects visitors to fraudulent tech support pages and scams.?

With a history dating back to? 2017, Balada Injector has already compromised nearly one million WordPress sites. The current campaign targets CVE-2023-3169, affecting popular premium themes.

Hackers Manipulate Online Store 404 Pages to Steal Credit Card Information

A Magecart card skimming campaign is using innovative techniques to steal credit card data by hijacking online retailers' 404 error pages.?

Akamai's Security Intelligence Group identified this approach as one of three variants used by the attackers, who primarily target Magento and WooCommerce sites. The skimmer loader hides malicious code in the default 404 error page, a concealment method not seen in previous Magecart campaigns, making it challenging to detect

Royal Website Faces Cyber Attack: DDoS Disruption Raises Security Concerns

Earlier this month the Royal Family’s official website was hit by a DDoS cyber attack. A source stated that it was not hacked and that no access had been gained to the website's systems or content.

Hot Topic of the Month

Join us at the Cyber Security Summit 2023!

Secora is delighted to announce our participation as an exhibitor at this year’s Cyber Security Summit.

Join us at Stand 16? for an exclusive opportunity to learn more about our penetration testing and cyber advisory service range.?

The Cyber Security Summit 2023 is set to be a groundbreaking event where industry leaders, experts, and innovators converge to explore the latest strategies in cybersecurity.

To secure your spot at the summit, visit: https://cybersecuritysummit.ie/, but before you do, comment below to receive a discount code for 25% off your ticket!

Join us at the Cyber Security Summit 2023, and together, let's strengthen cybersecurity resilience and protect what matters most.

Speak to our experts

If you have any questions or are unsure if the steps you are taking to keep your business secure are working, please reach out to us.

Our penetration testing and cybersecurity experts are at hand to work with you on creating a robust cybersecurity posture that provides peace of mind in an ever-evolving cyber threat landscape.