Adrian Johnson
TLDR:
- Nissan, France’s unemployment agency, Roku, South African Government, Birmingham, MarineMax, and the IMF have all experienced cyber attacks.
- Microsoft, Adobe, and Fortinet have patched critical vulnerabilities in their software.
In the latest Threat Intelligence Report dated 18th March, Check Point Research revealed several major cyber attacks and breaches that occurred recently. Nissan disclosed a ransomware attack compromising personal information in Australia and New Zealand, while France’s unemployment agency reported a data leak affecting 43 million individuals. Roku confirmed a credential stuffing attack leading to fraudulent transactions, and the LockBit ransomware gang targeted the South African Government. Birmingham is facing a network outage due to a cyber attack, and MarineMax detected unauthorized access in its system. The IMF also investigated a cyber security incident involving 11 email accounts.
On the vulnerability front, Microsoft’s March 2024 Patch Tuesday addressed 60 vulnerabilities, including critical issues in Windows Hyper-V and Open Management Infrastructure. Adobe fixed critical vulnerabilities in various products, and Fortinet patched a critical SQL injection vulnerability. Researchers identified security flaws in the ChatGPT plugin platform that could be exploited by malicious actors.
Check Point Research also released its Most Wanted Malware report for February 2024, highlighting a new campaign targeting WordPress websites with FakeUpdates. The report also mentioned the emergence of the Play ransomware group and phishing attacks leveraging Venmo. A new ransomware gang named “Donex” was identified, along with malicious campaigns targeting Chinese users.
