Cyber Security Hacking News

1. Tenafly Public Schools in Bergen County, New Jersey, was forced to cancel final exams as their systems were disrupted by a ransomware attack, starting June 2.

2. A newly discovered vulnerability in modern Intel and AMD processors can allow remote attackers to steal encryption keys via a power side-channel attack, dubbed Hertzbleed.

3. A misconfigured Microsoft Azure server—belonging to the data verification platform MyEasyDocs—laid bare the personal data of 57,400 students from Israel and India.

4. A new ransomware, dubbed WannaFriendMe, is selling its decryptor on Roblox using the in-game currency Robux. While the malware mimics the Ryuk ransomware, it actually is a variant of Chaos.

5. Symbiote, a new kind of Linux malware, was found to be almost undetectable by acting as a shared object library loaded on all running processes.

6. Data from the Anti Phishing Working Group (APWG) revealed that phishing attacks in Q1 2022 hit an all-time high, reaching over one million for the first time. The financial sector suffered the most, accounting for 24% of all attacks.

7. As the vacation season has almost arrived, scammers are ready to lure in unsuspecting targets via last-minute getaway deals. Travel-themed spam has been landing on inboxes since March, with the U.S. being the favorite target at 37%.

8. The Singapore Police Force stated that at least 415 individuals have fallen victim to phishing attacks involving parcel delivery, this year, resulting in a loss of more than $400,000.

9. DigiCert acquired DNS Made Easy, a managed DNS service provider, for an undisclosed amount. The integration would enable the automation of future certificate validation.

10. Vendor security assessment firm Whistic raised $35 million in its Series B round, led by JMI Equity, with participation from Album VC, Forgepoint Capital, FJ Labs, and Emergence Capital.