AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 07/28/2023

Android phones can now tell you if there’s an AirTag following you 

When Google announced that trackers would be able to tie in to its 3 billion-device Bluetooth tracking network at its Google I/O 2023 conference, it also said that it would make it easier for people to avoid being tracked by trackers they don’t know about, like Apple AirTagsNow Android users will soon get these “Unknown Tracker Alerts.” Based on the joint specification developed by Google and Apple, and incorporating feedback from tracker-makers like Tile and Chipolo, the alerts currently work only with AirTags, but Google says it will work with tag manufacturers to expand its coverage. 


BreachForums database and private chats for sale in hacker data breach 

While consumers are usually the ones worried about their information being exposed in data breaches, it’s now the hacker’s turn, as the notorious Breached cybercrime forum’s database is up for sale and member data shared with Have I Been Pwned. Yesterday, the Have I Been Pwned data breach notification service announced that visitors can check if their information was exposed in a data breach of the Breached cybercrime forum. “In November 2022, the well-known hacking forum “BreachForums” was itself, breached. Later the following year, the operator of the website was arrested and the site seized by law enforcement agencies,” reads the HIBP announcement. 


US contractor says info of up to 10 million leaked in MOVEit breach 

An IT firm that provides services to Medicaid, Medicare, U.S. student loan servicers and other government programs confirmed that the information of up to 10 million people may have been accessed by hackers exploiting the MOVEit file transfer software. In a regulatory filing with the U.S. Securities and Exchange Commission (SEC), U.S.-based government services company Maximus said it uses MOVEit “for internal and external file sharing purposes, including to share data with government customers pertaining to individuals who participate in various government programs.” 


Ryanair Hit With Lawsuit Over Use of Facial Recognition Technology 

Ryanair has become the latest organization to face legal action over its use of facial recognition technology. The European Center for Digital Rights, a Vienna-based digital rights group that prefers to be referred to as Noyb, filed a lawsuit this week accusing Ryanair of violating the privacy rights of some of its customers. 


Hackers are infecting Call of Duty players with a self-spreading malware 

Hackers are infecting players of an old Call of Duty game with a worm that spreads automatically in online lobbies, according to two analyses of the malware. On June 26, a user on a Steam forum alerted other players of Call of Duty: Modern Warfare 2 that hackers “attack using hacked lobbies,” and suggested running an antivirus. The malware mentioned in the thread appears to be on the malware online repository VirusTotal. Another player claimed to have analyzed the malware and wrote in the same forum thread that the malware appears to be a worm, based on a series of text strings inside the malware. A game industry insider, who asked to remain anonymous because they were not allowed to speak to the press, confirmed that the malware contains those strings, indicating a worm. 


New Cybersecurity Advisory Warns About Web Application Vulnerabilities 

The National Security Agency (NSA) has partnered with U.S. and international cyber agencies to release the Cybersecurity Advisory (CSA), “Preventing Web Application Access Control Abuse,” warning that vulnerabilities in web applications, including application programming interfaces (APIs), can allow malicious actors to manipulate and access sensitive data. Malicious cyber actors can abuse web applications and APIs to compromise sensitive data, potentially affecting web applications and cloud-based services used by National Security Systems (NSS), the Department of Defense (DoD), and the Defense Industrial Base (DIB). 

Related Posts