This report selects and summarizes 3 topics that are considered to be especially important from among various information security incidents and events that occurred during November 2023 and the changes in the surrounding environment.
Ransomware group files complaint against victim organization with the US Securities and Exchange Commission,
A shortened URL created by an online service directs customers to a malicious site and Microsoft's VS Code tool could reveal passwords
The intent of the complaint made by ALPHV is likely an attempt at harassment and intimidation due to unsuccessful ransom negotiations with their victim.
On November 9, Inageya Co., Ltd., a supermarket operator, announced that when QR codes on posters and leaflets were scanned, redirection to a malicious site caused the theft of credit card information.
If an SFTP plug-in that transfers files is incorrectly configured in Microsoft's VS Code development tool, a file containing the password used for SFTP connections is uploaded and published on the Internet.
Topics include Blackbaud pays fine for response to cyberattack, North Korean hacker 'Kimsuky', and Owner of BreachForums arrested.Download
Topics include Russian Hacktivists DDoS attacks, cybercrime using Google's Advertising platform, and Chinese hacker group cyberattacks on South Korean organizations.Download
Topics include unauthorized access to password management services, leveraging chatGPT and cyberattacks, and ransomware attacks on government agencies.Download
Topics include Ubiquiti internal fraudster sentenced to prison, sim swap scams, and website tampering checks.Download
Topics include CISA issues binding operational directives for exposed management interfaces, ransomware hits Shalom and BreachForums revived after owner's arrest.Download
Topics include Ransomware attack halts Nagoya Port operations, US agencies' Outlook email accounts hacked by Chinese attackers, and increase in APT attacks using USB thumb drives.Download
Topics include: AKIRA attacks on Cisco ASA and ransomware attack manual, Pentagon unveils 2023 cyber strategy, and falsified bankruptcy notices and tampering of Japanese official corporate websites.Download