Another day, another crypto theft. The victims are users of a decentralized cryptocurrency exchange who lost millions. Cyberattacks against the education sector are again in the spotlight as an Australian university fell victim to a data breach, impacting thousands of students. In other news, attackers can take over your accounts, even if MFA is enabled. Here’s more cyber news from the past 24 hours.

Threat Intelligence - Hacking news

Top Breaches, Malware, Vulnerabilities Reported in the Last 24

1. A phishing attack on users of Uniswap, a decentralized cryptocurrency exchange, has caused millions of dollars in losses. The attackers compromised Uniswap V3 on the ETH blockchain.

2. Deakin University was recently targeted in a data security breach earlier this week. Deakin sincerely apologizes to those impacted by this incident and wants to assure the Deakin community that it is conducting a thorough investigation to prevent a similar incident from occurring again. The breach has potentially affected 9,997 students.

3. Bandai Namco, publisher of Dark Souls, Elden Ring and Soulcalibur, has reportedly been targeted by a ransomware attack.The gang posted that it will leak the data soon.

4. A group of hackers based in Iraq says they have managed to break into the Tel Aviv municipality website and take it down, a week after a similar cyberattack on Israeli NTA Metropolitan Mass Transit System Ltd., which is responsible for the design and construction of a mass transit system in the coastal Israeli city.

5. Microsoft warned against a large-scale phishing campaign that targeted over 10,000 organizations. It leveraged Adversary-in-the-Middle (AiTM) phishing sites to pilfer passwords, hijack a user’s sign-in session, and bypass MFA.

6. New variants of the ChromeLoader infostealer were identified by Palo Alto Networks Unit 42, indicating the quick evolution of the malware in a short span of time.

7. Zscaler observed a major rise in QBot attacks over the past six months, owing to various new techniques, such as evading detection via ZIP file extensions, code obfuscation, and multiple URLs, among others.

8. The president of the European Central Bank was targeted in a hacking attempt via a text message. However, the attempt was unsuccessful.

9. Privitar announced it has acquired Kormoon, a software platform that helps organizations manage the complexities of data privacy regulations by analyzing data usage, assessing risk, and automating compliance. The acquisition aims to expand Privitar’s data privacy capabilities and offerings.

10. Continuing its cybersecurity expansion strategy, Thales announces the signature of an agreement to acquire OneWelcome for a total consideration of €100 million.