InForce Cyber

Threat Report August 2022

Cyber Threat Report | August 2022

The exponential increase in the risk of cyberthreats over the month of August has made cybersecurity a top priority for many international industries.

The cryptocurrency exchange sites and bridge platforms was damaged by various cyber-attacks. Which led to the third-biggest crypto heist of 2020. Tornado Cash, a cryptocurrency mixer, has been blacklisted by the United States. The Treasury Department’s Office of Foreign Assets Control (OFAC) is responsible for money laundering.

Breaking Cybercrime News

Google has successfully blocked the largest distributed denialofservice (DDoS) attack to date, with a peak of 46 million requests per second (RPS). The HTTPS DDoS attack took place in early June and targeted an unnamed Google Cloud Armor customer.

 

Apple released two updates on August 17th to address zero-day vulnerabilities in iOS, iPAdOS, and macOS WebKit and Kernel. The security flaws could potentially allow malicious apps to execute arbitrary code (even with kernel privileges), allowing them to take over the devices. Improved bound checking was used to combat the threats. 

According to Apple representatives, the vulnerabilities „may have been actively exploited“ in the past, and users are urged to update their iOS devices.

A widespread phishing campaign that targeted 136 organizations, including MailChimp, Twilio, and CloudFlare, among many others, compromised 9,931 accounts. The malicious actors’ goal was to take advantage of Okta, an identity and access management company.

A ransomware attack, allegedly carried out by LockBit, has rendered Center Hospital Sud Francilien (CHSF“business )’s software, storage systems (particularly medical imaging), and the information system relating to patient admissions“ inoperable. The malicious actors have demanded a $10 million ransom in exchange for the decryption key.

The Python Package Index, PyPI, has issued a warning to Python Project Maintainers about an ongoing phishing campaign. According to representatives, „this is the first known phishing attack against PyPI.“ Using stolen developer credentials, hackers are currently attempting to insert malicious updates into legitimate packages.

The US Cybersecurity and Infrastructure Security Agency (CISA) added the flaw in Palo Alto Networks’ PAN-OS to its Known Exploited Vulnerabilities Catalog due to evidence of active exploitation.

We want to share 2022 statistics, revealing the rising cost of data breaches.

According to Black Kite’s global report „The Cost of a Data Breach: A New Perspective,“ the current average data breach cost is $15.01 million. The global cost of cybercrime is expected to reach $10 trillion in the next three years.

According to IBM’s „Cost of Data Breach 2022 Report, the healthcare sector set a new record for average breach costs of $10.10 million, and has the highest breach costs on a global scale.

Updates on the Russian-Ukrainian cyberwar

 

During a denial-of-service (DDoS) attack, pro-Russian hackers Killnet take down the Latvian parliament’s website for several hours. During the conflict with Russia, the hackers have declared „war“ on nations that have allied with Ukraine.

Here’s the top 10 list of CVEs released by Microsoft for August 2022:

 

 

 

 

CVE

Description

CVSSv3

 

 

 

 

Azure Site Recovery Elevation of Privilege Vulnerability

8.1

CVE202235802

 

 

 

 

 

 

CVE202235817

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

 

 

 

 

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

CVE202235816

 

 

 

 

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

CVE202235815

 

 

 

 

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

CVE202235789

 

 

 

 

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

CVE202235814

 

 

 

 

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

CVE202235790

 

 

 

 

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

CVE202235791

 

 

 

 

 

 

CVE202235813

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

 

 

 

 

Azure Site Recovery Elevation of Privilege Vulnerability

6.5

CVE202235786