Global Cyber Pulse: 10th September, 2024

September 10, 2024 | Cybercrime
By Ashwani Mishra, Editor-Technology, 63SATS

Slim CD, a payment gateway provider, has disclosed a breach compromising the data of 1.7 million credit card holders, while German intelligence accuses Russia’s GRU of conducting global cyberattacks. Meanwhile, the China-linked APT group ‘Mustang Panda’ is reportedly targeting Southeast Asian governments using Visual Studio Code, and Avis Car Rental has revealed a data breach affecting 300,000 customers. Additionally, CISA has issued an alert regarding the exploitation of a SonicWall vulnerability amid rising ransomware concerns.

Stay tuned for more updates in the ever-evolving world of cybersecurity.

Payment Gateway Breach Exposes Data of 1.7 Million Credit Card Holders

Slim CD, a payment gateway provider, has revealed a data breach affecting the credit card and personal information of nearly 1.7 million individuals. According to a notice sent to impacted clients, hackers had unauthorized access to the company’s network from August 2023 to June 2024. Slim CD offers payment processing solutions via web terminals, mobile, and desktop apps.

German Intelligence Accuses Russia’s GRU of Global Cyberattacks

Germany’s domestic intelligence agency, BfV, has accused Russia’s GRU military intelligence of orchestrating cyberattacks against NATO and EU countries. The BfV’s Joint Cybersecurity Advisory, issued with international partners like the FBI and NSA, highlights GRU Unit 29155’s global cyber activities targeting critical infrastructure for espionage, sabotage, and reputational harm.

Poland Disrupts Saboteur Group Planning Cyberattacks for Russia and Belarus

Poland’s government announced the recent dismantling of a group of saboteurs working for Russia and Belarus, targeting Polish institutions for information extortion, blackmail, and cyberwarfare. Digital Affairs Minister Krzysztof Gawkowski reported a spike in cyberattacks in Poland this year, including a significant breach at the Polish Anti-Doping Agency (POLADA).

CISA Alerts on Exploited SonicWall Vulnerability Amid Ransomware Concerns

The Cybersecurity and Infrastructure Security Agency (CISA) warns of active exploitation of a SonicWall vulnerability (CVE-2024-40766) and mandates a patch for federal civilian agencies by month-end. The bug affects SonicWall Gen 5, 6, and certain Gen 7 devices, allowing unauthorized access and potential firewall crashes. SonicWall has released patches to address the issue.

China-Linked APT Group ‘Mustang Panda’ Targets Southeast Asian Governments Using Visual Studio Code

The Mustang Panda APT group is leveraging Visual Studio Code’s reverse shell feature to infiltrate government networks in Southeast Asia, according to Palo Alto Networks Unit 42. This new technique, demonstrated in September 2023, continues previous espionage efforts against regional government entities.

Avis Car Rental Data Breach Exposes Personal Information of 300,000 Customers

Avis Car Rental has disclosed a data breach involving the personal information of approximately 300,000 customers. The breach, which occurred between August 3 and August 6, 2024, was detected on August 5 after unauthorized access to one of its business applications was identified.