In Other News: Canadian Hacker Jailed, 14 Million Affected by KDDI Data Breach, Two Sentenced for ATM Jackpotting

Published:

spot_img

In Other News: Canadian Hacker Jailed, 14 Million Affected by KDDI Data Breach, Two Sentenced for ATM Jackpotting

In recent cybersecurity developments, significant incidents have emerged that underscore the evolving threat landscape. These events highlight vulnerabilities, emerging attack methodologies, and the ongoing challenges faced by organizations in safeguarding their digital assets.

Aubrey Cottle Sentenced for Texas GOP Cyberattack

Aubrey Cottle, a Canadian hacker linked to the hacktivist group Anonymous, has been sentenced to 18 months in prison for his role in a cyberattack on the Texas Republican Party’s website in September 2021. Cottle, 39, from Oshawa, Ontario, pleaded guilty to defacing the website, exfiltrating sensitive data from a Texas GOP server, and subsequently publishing that data online. This case illustrates the legal repercussions of cybercrime and the ongoing efforts by authorities to hold individuals accountable for their actions in the digital realm.

KDDI Data Breach Affects 14 Million Users

Japanese telecommunications provider KDDI recently disclosed a data breach that is likely to impact the email addresses and passwords of approximately 14.22 million individuals. The breach affected several Internet Service Providers (ISPs), including BIGLOBE, Chubu Telecommunications, JCOM Co., NIFTY Corporation, and STNet. This incident raises concerns about the security measures in place at major telecom companies and the potential risks to user data in the event of a breach.

Push Security Targeted in Poisoned Tenant Attack

Push Security has reported a targeted attack utilizing a poisoned tenant technique via OpenAI’s organization invitation feature. Employees received invitations to join Push Security Inc., which allowed the attacker to potentially monitor their activities or engage in further social engineering tactics. This incident highlights the vulnerabilities associated with organizational collaboration tools and the importance of vigilance in verifying the authenticity of invitations and communications.

Rust-based PamStealer Targets macOS Users

Jamf has identified a new information-stealing malware known as PamStealer, which specifically targets macOS systems. This malware validates harvested credentials through Pluggable Authentication Modules (PAM) before utilizing them. Distributed as a compiled AppleScript file masquerading as the open-source clipboard manager Maccy, PamStealer exemplifies the evolving sophistication of malware targeting macOS users and the need for robust security measures on this platform.

Russian Hackers Behind 2025 Jaguar Land Rover Cyberattack

A cyberattack that significantly disrupted operations at Jaguar Land Rover in September 2025 has been attributed to Russian hackers. Reports indicate that Microsoft alerted the car manufacturer about the hacking group involved, with assistance from Mandiant, Palo Alto Networks, and law enforcement agencies from both the US and UK. This incident underscores the geopolitical implications of cyberattacks and the necessity for organizations to bolster their defenses against state-sponsored threats.

Pegasus Spyware Targets European Parliament Member

Stelios Kouloglou, a former member of the European Parliament, was reportedly hacked using NSO Group’s Pegasus spyware while investigating cases of Pegasus abuse as part of the PEGA committee. The attack has not been linked to any specific government, and there is no evidence implicating the Greek government. This incident raises concerns about the use of spyware against individuals involved in oversight and accountability efforts, highlighting the ongoing challenges in protecting privacy and civil liberties.

Researcher Publishes Zero-Day Vulnerabilities in Open Source Projects

A researcher known as Bikini has released proof-of-concept code targeting numerous zero-day vulnerabilities across various open source projects, including FFmpeg, Gogs, Gitea, Ghidra, 7-Zip, OpenVPN, and VLC. Nine of these vulnerabilities have been assigned a CVE identifier. The researcher claims these issues were identified through LLM fuzzing, emphasizing the ongoing risks associated with open source software and the importance of timely vulnerability disclosures.

Shifting Pro-Russia Influence Operations

As the conflict in Ukraine continues, pro-Russia influence operations are reportedly shifting focus from Ukraine to broader geopolitical objectives. Google has noted that these covert operations are now targeting the US, EU members, NATO, and various regions, including the Middle East and Africa. The operations aim to influence global events, elections, and emerging geopolitical developments, increasingly leveraging generative AI technologies. This shift highlights the evolving nature of information warfare and the need for vigilance in countering disinformation campaigns.

Venezuelans Sentenced for ATM Jackpotting

In the United States, two Venezuelan nationals, Carlos Javier Padron, 36, and Arnoldo Cabrera Torrealba, 37, have been sentenced to 78 months in prison for their involvement in an ATM jackpotting scheme. The duo was part of a sophisticated criminal organization that deployed a variant of the Ploutus malware to ATMs across the US, enabling unauthorized withdrawals. They were also ordered to pay $1.5 million in restitution. This case underscores the ongoing threat posed by organized crime in the realm of financial cybercrime.

Cisco and Synology Security Patches Released

Cisco has issued fixes for seven vulnerabilities in ClamAV affecting Secure Endpoint Connector for Windows, Linux, and macOS, as well as a flaw in Catalyst Center. Meanwhile, Synology has resolved three security defects in MailPlus Server, including two critical vulnerabilities that could allow attackers to read or write arbitrary files and potentially cause denial-of-service conditions. These updates highlight the importance of timely patch management in maintaining cybersecurity hygiene.

For further insights into the latest cybersecurity developments, threat intelligence, and breaking updates from across the Middle East.

Source: www.securityweek.com

spot_img

Related articles

Recent articles

In Kinshasa, President Tshisekedi Accelerates Ebola Response as President Ramaphosa Promotes African Solidarity

In Kinshasa, President Tshisekedi Accelerates Ebola Response as President Ramaphosa Promotes African Solidarity In a significant move to combat the ongoing Ebola outbreak, President Félix...

North Korea-Linked npm Packages Masquerade as Rollup Polyfills to Exfiltrate Developer Secrets

North Korea-Linked npm Packages Masquerade as Rollup Polyfills to Exfiltrate Developer Secrets Recent cybersecurity developments have revealed a new wave of malicious npm packages linked...

UK’s National Cyber Action Plan Delayed Amid Labour Leadership Crisis

UK's National Cyber Action Plan Delayed Amid Labour Leadership Crisis Britain's National Cyber Action Plan, a crucial initiative aimed at bolstering the economy against state-sponsored...

HPE Advances Virtualisation Strategy to Combat Rising Costs and Meet AI Demands

HPE Advances Virtualisation Strategy to Combat Rising Costs and Meet AI Demands As enterprises grapple with escalating licensing costs, increasing demands for artificial intelligence (AI),...