Cl0p, a notorious hacking group, has claimed responsibility for accessing data from a third Big Four accounting firm. The group posted the stolen data from Deloitte, which they allegedly hacked by exploiting vulnerabilities in MOVEit, a file transfer software. This comes after Cl0p targeted PricewaterhouseCoopers (PWC) and Ernst & Young (EY) earlier this month. Deloitte has acknowledged the breach but stated that their global network’s use of MOVEit Transfer software is limited, and there is no evidence of impact on client data.
In another concerning development, a new malicious AI tool called FraudGPT has emerged on the dark web. Researchers at Netenrich have discovered that FraudGPT is designed to write malicious code, create phishing pages, and craft scam emails. This AI tool, priced at $200 per month or $1700 per year, raises concerns about the potential for abuse of AI technology without adequate safeguards.
According to a report by ReliaQuest, the number of ransomware victims has increased by 66% from the first quarter (Q1) to the second quarter (Q2) of 2023. In Q2 alone, close to 1,400 organizations were targeted by ransomware and data-extortion campaigns. Cl0p’s MOVEIt campaign was identified as the most impactful during this period. However, it is important to note that Cl0p’s campaign is categorized as an extortion campaign rather than a pure ransomware attack, as they have not yet encrypted the stolen files. LockBit, on the other hand, had the highest number of victims among the cybercriminal groups, with nearly 250 organizations targeted.
Data breaches continue to be a significant concern, with IBM’s Cost of a Data Breach report revealing that the average cost of a breach in 2023 is $4.5 million. This represents a 2.3% increase from the previous year. The healthcare industry has seen a significant rise in data breach costs since 2020, with an average cost of $10.93 million. The report also highlights the importance of involving law enforcement in response to ransomware attacks, as victims who did so saved an average of $470,000 compared to those who did not seek law enforcement assistance.
Norway is currently investigating a zero-day attack that targeted several government organizations earlier this month. Twelve ministries using a common ICT platform were affected, but the Prime Minister’s Office, the Ministry of Defense, the Ministry of Justice, and the Ministry of Foreign Affairs, which use a different platform, remained unaffected. The attack’s origin is yet to be determined, but there is speculation about potential Russian involvement given the country’s history of cyberattacks against neighboring nations.
In Ukraine, a significant counteroffensive has been launched against Russia in the Zaporizhzhia Oblast region, with the objective of reaching the Sea of Azov. This offensive aims to sever occupied Crimea from Russia proper. While Russian President Putin claimed that the Ukrainian attack had already failed, Ukrainian President Zelensky expressed optimism about the progress made without revealing specific details.
In the realm of cybersecurity, Kenya’s eCitizen portal experienced a cyberattack by Anonymous Sudan, a front for Russian intelligence services. The attack targeted government services accessible through the portal, but no data loss has been reported, and efforts are underway to secure and restore the system.
Meanwhile, Russia has increased domestic censorship on social media platform Vkontakte as internal stress escalates due to the ongoing conflict with Ukraine. The University of Toronto’s Citizen Lab reported a “thirty-fold” increase in censorship on Vkontakte, with numerous videos, community accounts, and personal accounts being blocked. The censorship mainly affects Russia-based users and includes media reports on Russia’s war against Ukraine.
Apple has also released security patches to address sixteen vulnerabilities affecting iPhones, Macs, and iPads. Two of these flaws are believed to have been exploited in the wild, with one affecting the kernel and the other WebKit. Apple warned that the kernel flaw may have been actively exploited on older versions of iOS.
In conclusion, cybersecurity threats continue to evolve and pose significant risks to organizations and individuals. The actions of hacking groups like Cl0p and the emergence of malicious AI tools highlight the need for robust cybersecurity measures. Governments and businesses must remain vigilant and prioritize cybersecurity to protect sensitive data and prevent cyberattacks.