Targeting schools is not cool.

The LockBit ransomware gang has been hacked, exposing victim negotiations, according to a report by Bleeping Computer. Google researchers have identified a new infostealer called Lostkeys, which is being used to steal sensitive information. SonicWall is urging customers to patch three critical device vulnerabilities that are being exploited in attacks. Apple has patched a critical remote code execution flaw, known as CVE-2024-44236, which could allow attackers to take control of devices. Cisco has patched 35 vulnerabilities across multiple products, including a vulnerability in its IOS XE Wireless Controllers that could enable full device control for attackers. Iranian hackers have been impersonating a German modeling agency to spy on Iranian dissidents, using a cloned website to gather information. Researchers have bypassed SentinelOne's EDR protection, using a new technique to evade detection. CrowdStrike is leaning into AI amidst layoffs, trimming its workforce by 5 percent to focus on AI-powered solutions. The education tech firm PowerSchool is facing renewed extortion attempts, despite paying a ransom, with the hacker now targeting individual school districts. The CyberWire is discussing the mixed messages of the cyber skills gaps with Caleb Barlow, CEO of Cyberbit, and honoring the legacy of Joseph Nye, a Harvard professor who developed the "soft power" theory and was a leader in cybersecurity.