Weekly Cybersecurity Digest: Top 5 News Stories in the Digital Sphere

1. Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor

New Windows Malware "BadSpace" Delivered Through Fake Browser Updates on Popular Websites!

German cybersecurity company G DATA discovered a new Windows malware named BadSpace. This malware targets users by hiding behind fake browser update pop-ups on compromised websites, including those built on WordPress. Researchers kevross33 and Gi7w0rm first uncovered this multi-stage attack that steals user information and grants remote access to attackers.

Read more

2. Pakistani Hackers Use DISGOMOJI Malware in Indian Government Cyber Attacks

Emoji Espionage! Pakistani Hackers Target Indian Government with Novel DISGOMOJI Malware

Pakistani hackers are using a custom malware called DISGOMOJI to target Indian government entities. This malware, written in Golang and controlled via Discord servers using emojis, can steal data, capture screenshots, and even escalate privileges. Researchers at Volexity warn that DISGOMOJI is a sophisticated threat and urge vigilance against spear-phishing emails containing Golang binaries.

Read more

3. Meta Pauses AI Training on EU User Data Amid Privacy Concerns

Privacy Clash! Meta Pauses EU AI Training on Facebook & Instagram User Data

Meta is hitting the brakes on its plan to train AI models using public content from Facebook and Instagram users in the EU. This follows concerns raised by the Irish Data Protection Commission (DPC) regarding user privacy under GDPR (General Data Protection Regulation). Meta argues this data is crucial for training effective AI that reflects European languages and culture. However, privacy advocacy groups like noyb believe it violates GDPR by not obtaining explicit user consent and potentially using data for unspecified purposes.

Read more

4. Microsoft Delaying Recall Feature to Improve Security

Microsoft scraps plans to launch "Recall" with Copilot+ PCs due to security worries. Recall, an AI feature capturing PC screenshots to find past info, raised concerns about exposing sensitive data.

• Initially planned as opt-out feature on Copilot+ PCs.
• Security experts flagged potential exposure of sensitive data.
• Microsoft now seeking feedback through Windows Insider Program before wider rollout.
• "Just-in-time decryption" planned to address security concerns.

Read more

5. Medical-Targeted Ransomware Is Breaking Records After Change Healthcare’s $22M Payout

Ransomware attacks on hospitals and medical facilities are exploding, with a record number of incidents following Change Healthcare's massive $22 million payout in March. Cybersecurity firm Recorded Future saw a staggering 44 healthcare ransomware cases in April, the highest ever in a single month.

Experts warn this is just the beginning. Here's why healthcare is a target:

• High Stakes: Healthcare organizations have critical data and systems, making disruptions potentially life-threatening.
• Easy Target: Many healthcare systems may have outdated security measures, making them vulnerable.
• Profitable: The belief that healthcare providers will pay high ransoms attracts attackers.

Read more

Stay ahead of the curve!?? Follow us on LinkedIn and Subscribe to our newsletter ?? for the latest cyber security updates, insightful articles, and exclusive content to help you navigate the ever-changing threat landscape. Don't forget to check out our Website ?? for making your cyberspace safe and secure ??, and join our growing community on Instagram ?? for bite-sized cyber security tips and trends. ?? ??