By Ashwani Mishra, Editor-Technology, 63SATS
UN Women’s database breach exposes sensitive global financial and personal data, Akira ransomware resumes file encryption in a shift back to aggressive tactics, US Senate campaigns remain vulnerable to cyber attacks due to weak email security, the UK government mulls overhauling cyber laws amid rising threats, and Cisco confirms a data breach after a hacker offers stolen files for sale.
Stay tuned for more updates in the cybersecurity world.
UN Women’s Database Breach Exposes Sensitive Global Financial and Personal Data
An unsecured database from the United Nations Trust Fund to End Violence Against Women left over 115,000 files exposed online, revealing sensitive information. T
he data includes financial audits, personal details, and documents from organizations collaborating with UN Women, putting vulnerable communities, especially in repressive regions, at risk.
Akira Ransomware Resumes File Encryption in Shift Back to Aggressive Tactics
After a period of focusing solely on data theft, the Akira ransomware group has returned to encrypting victims’ files, security researchers from Cisco Talos reported.
Experts believe the move indicates the group is seeking greater operational efficiency through its affiliate program, signaling a renewed focus on ransomware payloads.
UK Government Mulls Overhaul of Cyber Laws Amid Rising Threats
The UK government is exploring all possible measures to counter cyberthreats, according to Security Minister Dan Jarvis.
Speaking after the Labour Party’s election victory, he highlighted potential updates to the 1990 Computer Misuse Act, which could impact cybersecurity professionals and the forthcoming Cyber Security and Resilience Bill expected next year.
US Senate Campaigns Vulnerable to Cyber Attacks Due to Weak Email Security
Nearly three-quarters of US Senate campaign websites lack Domain-based Message Authentication, Reporting, and Conformance (DMARC) protection, according to a Red Sift report.
The absence of DMARC makes campaigns susceptible to phishing attacks, risking exposure of sensitive voter and donor information and compromising election integrity.
Cisco Confirms Data Breach After Hacker Offers Stolen Files for Sale
Cisco has acknowledged a data breach after a hacker named IntelBroker offered stolen information for sale on a cybercrime forum.
The hacker claims to have obtained sensitive data, including source codes, API tokens, and credentials from various major organizations such as Microsoft, Verizon, and Bank of America, raising concerns over potential security risks.
