Thought Leadership
Affected customers contacted
Cyber criminals have gained access to Adidas customer data via an external customer service provider.
64 GB of data
The world’s largest Coca-Cola bottler, Coca-Cola Europacific Partners, has become the target of a hacker attack, according to darknet actors. The company’s Salesforce infrastructure is apparently affected.
Notorious ransomware gang
The ransomware group LockBit, known for numerous extortion attacks, has itself become the victim of a hack. Unknown attackers have overwritten the affiliate platforms in the dark web with a clear message: “Don’t do crime. CRIME IS BAD xoxo from Prague.”
New social engineering weapon in cyber warfare
What began as a ploy by commercial cybercriminals is now becoming a method used by state-supported hacker groups: The ClickFix technique. Originally used by financially motivated attackers to circumvent security mechanisms, it is now being used specifically by actors from North Korea, Iran and Russia for espionage purposes.
Old gaps, new access
Despite security updates being installed, cyber criminals have managed to gain permanent access to FortiGate devices. The attackers exploit known vulnerabilities that have long since been closed – but they go one better: they leave behind a so-called backdoor through which they retain access even after the patch.
An old trick with a new twist
Despite its age, the ClickFix method remains a popular tool in the arsenal of cybercriminals. Security researchers from Sophos X-Ops came across the sophisticated attack tactic again in their latest analysis.
WK Kellogg has confirmed a data breach in which sensitive employee data was compromised by exploiting a vulnerability in its Cleo file transfer software.
Car rental company is being blackmailed
The Europcar Mobility Group has been the victim of a targeted cyber attack. Unknown persons gained access to the international car rental company’s GitLab repositories and captured both the source code of the mobile applications and customer data.
Session tokens are also recorded
Security researchers from Sophos X-Ops have investigated the workings of Evilginx. The malware, which is based on the widely used open source web server nginx, poses a significant threat to IT security by enabling targeted adversary-in-the-middle attacks and can even bypass multi-factor authentication (MFA).
The invisible danger
More and more free file converters on the Internet are turning out to be treacherous traps. The FBI warns of manipulated online tools that not only convert files, but also smuggle malware or even ransomware onto victims’ computers. Converters for documents, music files and file mergers are particularly affected.
