AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 6/20/2024

Clever macOS malware delivery campaign targets cryptocurrency users

Cryptocurrency users are being targeted with legitimate-looking but fake apps that deliver information-stealing malware instead, Recorded Future’s researchers are warning. The threat actor behind this complex scheme is going after both Windows and Mac users, and leverages social media and messaging platforms to trick them into installing the apps, i.e., the malware. Vortax – supposedly in-browser virtual meeting software – looks like a legitimate app at first glance.

 

CDK Global cyberattack impacts thousands of US car dealerships

Car dealership software-as-a-service provider CDK Global was hit by a massive cyberattack, causing the company to shut down its systems and leaving clients unable to operate their business normally. CDK Global provides clients in the auto industry a SaaS platform that handles all aspects of a car dealership’s operation, including CRM, financing, payroll, support and service, inventory, and back office operations.

 

Threat actor claims to have breached Apple, allegedly stealing source code of several internal tools

Notorious threat actor IntelBroker, who previously claimed responsibility for other high-profile data breaches, including those of U.S. government systems in April, allegedly leaked the source code of several internal tools used at Apple via a post on a dark web forum. According to the post by IntelBroker, “In June 2024, Apple.com suffered a data breach,” presumably at their hands, that led to the exposure. The threat actor claims to have obtained source code for the following internal tools.

 

UN Security Council to debate cybersecurity threats, despite Russian veto

The United Nations Security Council is set to debate cybersecurity on Thursday as part of South Korea’s presidency for the month of June. The debate — intended to be the signature event of the South Korean presidency — comes just weeks after Russia used its veto to disrupt U.N. investigations into how North Korea’s hacking activities are funding the country’s sanctioned weapons programs. “Sophisticated and intrusive malicious cyber activities are raising serious concerns for international peace and security,” wrote Joonkook Huang, South Korea’s permanent representative to the UN, in a note about the debate circulated among attendees.

 

Slack wants to become the ‘long-term memory’ for organizations

Slack’s CEO said AI will be infused into every aspect of the application, allowing users to address tasks and create new projects without ever leaving the collaboration and productivity platform. Slack CEO Denise Dresser this week laid out what she sees as her company’s primary use for artificial intelligence (AI) in the future: making it easier for users to find key channel conversations and turn them into the basis for tasks and projects.

Related Posts