Monday 6th May 2024
Aidan Dickenson
Sales pressure weighing you down? I help you beat rejection and stress so you can sell with confidence and live a balanced life.
Good morning everyone! Thank you for clicking on today's edition of Cyber Daily. Today, we look deep into the digital abyss, not in search of mythical sea monsters, but to unveil the shadowy operations of Bahamut, a sophisticated cyber mercenary group named after one.
It seems the digital world's creatures can be just as formidable as those of ancient times, lurking in the murky waters of cyberspace to target diplomats, separatists, and execs across the globe.
NYC Public Schools Cyber Attack: Over 1 Million Students Affected
In a startling escalation of cybersecurity breaches, the New York City Department of Education revealed that an additional 381,000 students were compromised, raising the total affected to over 1 million. This breach stemmed from a 2021-2022 incident with former software vendor Illuminate, impacting students' names, birth dates, ethnicity, and academic records—fortunately, no financial details were leaked.
The DOE has since cut ties with Illuminate and is now offering two years of free credit and identity-monitoring services to the victims, urging them to sign up before the July 30, 2024 deadline. The department is tightening its cybersecurity measures and vendor compliance to prevent future incidents and protect student data more effectively.
领英推荐
Cyber Threats and Chinese EVs: A New Geopolitical Risk
The potential for cyber sabotage in Chinese electric vehicles (EVs) is becoming a growing concern amidst rising geopolitical tensions. As EVs evolve into sophisticated "computers on wheels," they present new avenues for cyber attacks, with fears that Beijing could exploit these technologies against Western countries. Cliff Steinhauer, a cybersecurity expert, highlighted the potential for remote control over EV functionalities, from steering to braking, posing serious threats to both personal security and national safety.
As Chinese technology pervades global markets, the risk extends beyond mere vehicle control to broader data privacy concerns. The interconnected nature of these vehicles allows for significant data collection, potentially serving as tools for espionage. This has led to heightened scrutiny and preventive measures, such as the U.S.'s investigation into the security risks of foreign-made, internet-connected vehicles.
Bahamut: The Mythical Cyber Monster
In a report by BlackBerry Corp, a sophisticated hack-for-hire group known as Bahamut has been targeting a broad spectrum of high-profile individuals and entities. The group, which takes its name from the mythical sea creature, has reportedly aimed its cyber-attacks at Saudi diplomats, Sikh separatists, and top Indian executives among others, leveraging complex digital strategies to infiltrate their targets.
The hackers utilised mobile applications, including a fitness tracker and password manager, found in Apple and Google app stores to track their victims. While Google has removed the implicated apps, Apple is still investigating. The diversity and range of Bahamut's operations suggest they are serving multiple, undisclosed clients, highlighting the murky world of digital mercenaries where the line between state and non-state actors blurs.