Cyware Weekly Threat Intelligence - September 04–08

Weekly Threat Briefing • September 8, 2023
Weekly Threat Briefing • September 8, 2023
With cyberattacks against K-12 schools on the rise, the CISA is seeking commitments from ed-tech software manufacturers to design products that are more secure. The new initiative launched by the agency as part of this effort is believed to bolster cybersecurity in K-12 schools. Meanwhile, the U.S. and the U.K governments this week issued new sanctions against members involved in TrickBot/Conti operations. The development comes after both governments sanctioned seven members earlier this year in February.
Unfortunately, it remains an uphill task for organizations to protect the sensitive information of individuals. An Alabama-based pediatric dental care provider disclosed a cyberattack that impacted the personal and health details of nearly 130,000 patients, parents, and employees. In a separate incident, an online item exchange platform confirmed a widespread breach that resulted in the exfiltration of data belonging to over seven million users. Apart from data breaches, a global fraud investment campaign made the headlines for duping users worldwide and making a profit of $280,000.
That’s not all! A new phishing kit, capable of helping adversaries conduct scams and impersonation attacks, was observed gaining traction in the cyber threat landscape. Researchers revealed that the kit has been used by around 500 cybercriminals to target more than 56,000 Microsoft 365 corporate accounts. In other headlines, advanced versions of the Chaes malware and the Atomic macOS Stealer (AMOS) emerged to target organizations and users in separate campaigns. There’s also an important piece of news for organizations using the vulnerable MinIO Object Storage systems; attackers were found exploiting two flaws in the systems.