Global Cyber Pulse: 8th October, 2024

October 8, 2024 | Cybersecurity
By Ashwani Mishra, Editor-Technology, 63SATS

API vulnerabilities and bot attacks are costing global businesses up to $186 billion each year, while Russian state media has fallen victim to a major cyber attack. The Gorilla Botnet has launched 300,000 DDoS attacks across 100 countries, and Comcast has confirmed a data breach affecting over 237,000 customer records. In another incident, pro-Israeli hackers breached Hezbollah-affiliated Al-Mayadeen News Network, and Lego’s website was hijacked in a cryptocurrency scam promoting fake ‘Lego Tokens.’ Meanwhile, Southeast Asia’s cyber fraud industry is outpacing law enforcement with the use of AI and deepfake technology.

Stay tuned for more updates and cyber trends.

Vulnerable APIs and Bot Attacks Cost Businesses Up to $186 Billion Annually

Organizations are losing between $94 to $186 billion annually due to insecure APIs and automated bot attacks, according to a report from Imperva, a Thales company.

The study highlights that these cyber threats represent up to 11.8% of global cyber losses. Based on data from over 161,000 unique cyber incidents analyzed by the Marsh McLennan Cyber Risk Intelligence Center, the report emphasizes the increasing interconnectedness and frequency of API and bot-related breaches.

Russian State Media Hit by Major Cyber Attack

Russia’s state media company, VGTRK, was recently targeted in a significant cyber attack that disrupted its online services.

While TV and radio broadcasts continued uninterrupted, the attack is seen as an attempt on critical digital infrastructure. Kremlin spokesperson Dmitry Peskov confirmed the attack and stated that specialists are working to identify the attackers and mitigate the damage.

New Gorilla Botnet Launches 300,000 DDoS Attacks Across 100 Countries

The newly discovered Gorilla Botnet has been linked to over 300,000 Distributed Denial of Service (DDoS) attacks across 100 countries.

This botnet represents a new wave of cyber threats, with an unprecedented global reach that has disrupted internet services and business operations worldwide.

Comcast Customers’ Data Stolen in Debt Collector Breach

A cyber attack on debt collector FBCS has resulted in the theft of data from over 237,000 Comcast customers. Initial reports from FBCS indicated no customer data was affected, but further investigation in July confirmed the breach.

The stolen data includes sensitive information such as names, Social Security numbers, and Comcast account details.

Israeli Hacker Group Targets Hezbollah-Linked News Channel in Cyber Attack

An Israeli hacker group has claimed responsibility for a cyber attack targeting the Hezbollah-affiliated Al-Mayadeen News Network.

The hackers breached the news network’s social media platforms and posted a provocative political cartoon. Al-Mayadeen confirmed the attack and stated that their technical team is working to resolve the issue.

Lego Website Hijacked by Cryptocurrency Scam

On October 4, 2024, Lego’s website was briefly hijacked, displaying a banner promoting fake “Lego Tokens” in a cryptocurrency scam.

While the unauthorized banner was quickly removed, the website was manipulated to lead users to a fraudulent Ethereum-based platform. Lego has since restored the site and confirmed that no user accounts were compromised.

Southeast Asian Cyber Fraud Outpacing Law Enforcement, Warns UN

The United Nations Office on Drugs and Crime has warned that cyber fraud in Southeast Asia is growing faster than law enforcement can manage, with criminal organizations leveraging artificial intelligence and deepfake technology.

Despite increased media attention and enforcement efforts, the “crime-as-a-service” ecosystem in the region continues to expand, complicating government efforts to contain it.