Global Cyber Flash: 20th Aug, 2024

August 20, 2024 | Cybersecurity
By Ashwani Mishra, Editor-Technology, 63SATS 

Ransomware victims have paid $459.8 million this year, surpassing last year’s record. Toyota confirms a data breach in its U.S. branch, while a massive cyber attack targeted AWS. In another instance, thousands of e-commerce sites using Oracle NetSuite exposed sensitive customer data.  

Stay informed with our brief guide to the latest in cybersecurity. Keep up with the ever-changing landscape of cyber threats and advancements.  

Ransomware Payments Soar in 2024 

In the first half of 2024, victims have paid a staggering $459.8 million to cybercriminals, setting the stage for a potential new record if this trend continues. Despite law enforcement crackdowns, ransomware operators like LockBit continue to demand large payouts. 

Toyota Confirms Data Breach 

 Toyota has confirmed a data breach in its U.S. branch after 240GB of sensitive information was leaked online by the threat actor ZeroSevenGroup. The breach includes data on employees, customers, contracts, and financial details. 

Major AWS Cyber Attack Targets 230 Million Cloud Environments 

 Security researchers at Unit 42 have uncovered a massive cyber attack targeting over 230 million unique cloud environments on AWS. The attackers exploited exposed environment variable (.env) files, gaining unauthorized access to sensitive systems and data. 

Oracle NetSuite E-Commerce Sites Expose Sensitive Data 

A misconfiguration in Oracle NetSuite’s SuiteCommerce platform has exposed sensitive customer data across thousands of e-commerce sites. This vulnerability underscores the importance of strict access control measures in safeguarding critical information. 

Blind Eagle Threat Actor Targets Latin America 

The threat group known as Blind Eagle has been identified as a persistent attacker of entities across Latin America, including government, financial, and energy sectors. Their cyberattacks range from financial motivations to espionage. 

Iran Accused of Cyber Attacks on U.S. Election Campaigns 

The U.S. government has accused Iran of launching cyber attacks on the presidential campaigns of Kamala Harris and Donald Trump, raising concerns over foreign interference in the upcoming elections.