Weekly Recap July 1 2022
Table of Contents
- By Patrick Ryan
- Jul 03, 2022
Did you know that hackers create 300,000 new malware threats daily? According to Web Arx Security, those hundreds of thousands of new forms of malware range from keyloggers to Trojans, adware, viruses, and more.
This past week was no exception to the upward trend in digital security attacks. As an example, BRATA malware has been wreaking havoc throughout recent months. Hackers bolstered the malware with several new capabilities for stealthily conducting web-based attacks against financial apps. The rogue apps even have features that set the stage for copying the bank login page to snag text messages, credentials, and more. The potential still exists for a phishing page and stolen text messages to stage a complete account takeover. Let’s take a closer look at some additional digital attacks from the final week of June.
Mitel, a VoIP specialist, has a bug of note. Ransomware attackers exploit a new bug. The attack centers on novel remote code execution, where the code performs exploits to access targeted environments. They then connect the malware to unpatched versions of Mitel VoIP. Though the software patched the bug, Mitel is unsure whether the patch will prove sufficient across posterity. Threat modeling, combined with bolstering computer and digital network defenses, will help thwart current threats and those that emerge in the future.
Baptist Medical Breach
Outside forces hacked the Baptist Medical Center. The hack resulted in the theft of information from more than a million accounts. The hack compromised accounts in late April. Baptist Medical released a statement about the attack, but the company hasn’t provided much more information to the media. The breach is significant as it ranks in the top five of the largest hacks in the history of the internet. Hackers pulled off the attack with malicious code. An unauthorized individual or group breached the system to steal the information.
Google Goes on the Offense Against Mercenary Hackers
Google is thwarting malicious domain names owned by mercenary hackers. Many believe the digital criminals responsible for the attack reside in several countries, including India, Russia, and the Middle East. The hack-for-hire setup centers on clients purchasing spyware from profit-seeking digital miscreants, deploying it, and conducting strategic intrusions to conceal the act.
Flagstar Bank Breach
Hackers breached Flagstar Bank in an attack that compromised over one million accounts. The bank data breach affected two million customers. Flagstar failed to notify the owners of the compromised accounts until six months after the event. The hackers behind the attack stole customer names, identifiable information, and other sensitive information that has the potential to lead to identity theft. The CI0P hackers behind the attack have also targeted other banks, universities, financial institutions, and government agencies.2