CyberWire Daily
Follow
Inside Intel’s internal web maze.
Intel experienced a significant security breach where vulnerabilities in its internal websites exposed sensitive employee and supplier data. The Kimsuky group, also known as APT43, has been actively targeting South Korean diplomatic missions. A new vulnerability has emerged that can bypass the "Rapid Reset" fix designed to mitigate DDoS attacks in 2023. Drug development firm Inotiv has reported a ransomware attack to the SEC, highlighting the ongoing threat to critical infrastructure. The UK has reportedly dropped its demand for Apple to provide access to encrypted iCloud accounts. Hackers are now disguising the PipeMagic backdoor as a fake ChatGPT desktop application to trick users. The source code for a powerful Android banking trojan, known as ERMAC, has been leaked online. In a separate incident, a Nebraska man was sentenced to prison for defrauding cloud providers in a scheme that generated nearly $1 million in cryptocurrency. On the Threat Vector podcast, discussions focused on the challenges of context switching in Security Operations Centers (SOCs). Finally, a UK police force failed to call for backup, leading to a significant loss of digital evidence.