Hackers Hide Trojan in Minesweeper Clone, Ticketmaster Data Breach Exposes 560 M Customers, Sav-Rx Data Breach! - Find More
We are yet again back with this week's new edition of Threat Digest, bringing you curated bytes across the evolving threat landscape prepared by our team at Secure Blink Threat Intel lab.
Critical RCE Flaw in TP-Link Archer C5400X Gaming Router Fixed
The TP-Link Archer C5400X is a high-performance tri-band gaming router known for its advanced features and robust performance. However, recent research has uncovered a critical security flaw, designated CVE-2024-5035, which permits unauthenticated remote command execution (RCE).
Hackers Hide Trojan in Minesweeper Clone to Breach Financial Firms
In a sophisticated cyber attack targeting financial organizations in Europe and the United States, hackers have utilized a Python clone of Microsoft's classic Minesweeper game to conceal malicious scripts. This technique, reported by Ukraine's CSIRT-NBU and CERT-UA, is attributed to the threat actor identified as UAC-0188.
Massive Ticketmaster Data Breach Exposes 560 M Customers, Sparks Lawsuit
On May 28, 2024, the hacker group ShinyHunters reportedly compromised the personal information of 560 million Ticketmaster customers. The breach, now subject to a proposed class action lawsuit, highlights severe lapses in cybersecurity protocols at Ticketmaster and its parent company, Live Nation Entertainment.
2.8M Records Stolen in Sav-Rx Data Breach, What You Need to Know
领英推荐
In October 2023, Sav-Rx, a pharmacy benefit management (PBM) company, experienced a significant data breach that compromised the personal data of over 2.8 million individuals.
How 25,000 Employees' Personal Info EXPOSED in BBC Data Breach
The BBC disclosed a significant data security incident on May 21, 2023. This breach involved unauthorized access to files stored on a cloud-based service. The incident compromised the personal information of approximately 25,000 individuals, including current and former employees of the BBC.
Critical Check Point VPN Zero-Day CVE-2024-24919 Exposed and Fixed
On May 27, 2024, Check Point disclosed a high-severity zero-day vulnerability, CVE-2024-24919. This flaw affects Check Point's VPN devices, potentially allowing attackers to gain unauthorized access and read sensitive information.
That wraps up this week's Threat Digest?edition. Until next time with a new edition!
Stop fighting security battles alone. Threatspy empowers both Developers and Security Teams with AI-powered Vulnerability Detection, Intelligent Prioritization, and Automated Remediation Workflows in securing their Applications & APIs.
Work together, build with confidence, and Ship Secure Code like a SuperHero duo. Start Your 14-Day Free Trial Today & Win together with Threatspy!