HopeNet (HopeNetCISO.com) reviews a variety of security news sources so you do not have to! The list below represents items relevant to churches, nonprofits, and charities. The headlines and our added comments are meant to provide enough to get an overview of recent happenings, but links are also provided for readers that want to explore certain topics deeper.

General

• Cyber Operations Intensify in Middle East, With Israel the Main Target – Another example of how modern warfare includes a cyber aspect.
• Destructive ICS Malware Used by Ukraine Against Russian Infrastructure – This sounds a lot like StuxNet from over a decade ago in both name and what it does. And more cyber warfare.
• Cisco Warns of Massive Surge in Password Spraying Attacks on VPNs – a spray account uses the same common password across a wide range of accounts, hoping for a hit on just a couple. This is one of the reasons we stay away from common passwords.

Operational Disruption

• Change Healthcare’s ransomware attack costs edge toward $1B
• Daixin ransomware gang claims attack on Omni Hotels– This attack impacted reservation, hotel room door lock, and point-of-sale (POS) systems nationwide.  Even though Omni was able to restore from backups, it appears that the culprits got away with data which they are now using to extort Omni.

Data Loss

• Wells Fargo Suffers Data Breach – This really wasn’t a breach, but a leak.  A legitimate Wells Fargo employee sent sensitive information to their personal email account.  Security is challenging enough without giving the other side help.
• Nationwide Optometry To Pay $3.4M Over 2021 Data Breach – this was due to a ransomware attack that lasted a month, so it is fair to assume that the total cost will well exceed this settlement.
• Roku cyberattack impacts 576,000 accounts
• Hacker claims Giant Tiger data breach, leaks 2.8M records online

Social Engineering

• Chinese hackers are using AI to inflame social tensions in US – Unfortunately, AI has made it impossible to trust our eyes.  No matter how real it looks, it might not be.
• FBI Warns of Massive Toll Services Smishing Scam – Do not click on those links in texts from unknown sources. 
• QR code scams: What to know and how to avoid them – The same advice as above, but with QR Codes.  Do not scan them unless you know they are legit.
• Cisco: Hacker breached multi factor authentication message provider on April 1 – credentials were obtained through an employee phishing attack.  Even cyber security professionals can get scammed.
• Authorities take down LabHost, phishing-as-a-service platform – For a monthly fee below $250, anyone could take advantage of a range of customizable phishing attacks.

Vulnerabilities / Malware

• Threat Actors Manipulate GitHub Search to Deliver Malware – Free code sounds fantastic and efficient, but you have to scan any libraries that you use.
• Palo Alto Networks Releases Fixes for Firewall Zero-Day as Exploits Emerge
• Juniper Networks Publishes Dozens of New Security Advisories
• Ivanti Releases Fixes for More Than 2 Dozen Vulnerabilities

If this was shared with you and you would like to receive a copy directly to your email, please subscribe at HopeNetCISO.com.  Thanks for reading!