This week in InfoSec (07:40)

With content liberated from the “today in infosec” twitter account and further afield

3 July 1996 - a mere 28 years ago the movie Independence Day was released. In it, Jeff Goldblum and Will Smith fly into an alien vessel in a 50-year-old space junker, then upload a computer virus in less than 5 minutes

https://twitter.com/todayininfosec/status/1808464060972667170

Rant of the Week (11:07)

Cancer patient forced to make terrible decision after Qilin attack on London hospitals

https://www.theregister.com/2024/07/05/qilin_impacts_patient/

EXCLUSIVE The latest figures suggest that around 1,500 medical procedures have been canceled across some of London's biggest hospitals in the four weeks since Qilin's ransomware attack hit pathology services provider Synnovis. But perhaps no single person was affected as severely as Johanna Groothuizen.

Hanna – the name she goes by – is now missing her right breast after her skin-sparing mastectomy and immediate breast reconstruction surgery was swapped out for a simple mastectomy at the last minute.

Billy Big Balls of the Week (18:20)

Ransomware scum who hit Indonesian government apologizes, hands over encryption key

https://www.theregister.com/2024/07/04/hackers_of_indonesian_government_apologize/

Industry News (24:28)

Vinted Fined €2.3m Over Data Protection Failure

Europol Warns of Home Routing Challenges For Lawful Interception

Meta Faces Suspension of AI Data Training in Brazil

New Ransomware Group Phones Execs to Extort Payment

UK’s NCA Leads Major Cobalt Strike Takedown

Cyber Extortion Soars: SMBs Hit Four Times Harder

New RUSI Report Exposes Psychological Toll of Ransomware, Urges Action

Dozens of Arrests Disrupt €2.5m Vishing Gang

Health Tech Execs Get Jail Time For $1bn Fraud Scheme

Tweet of the Week (31:07)

Come on! Like and bloody well subscribe!

This Week in InfoSec (12:30)

With content liberated from the “today in infosec” twitter account and further afield

24th June 1987: The movie Spaceballs was released. With a budget of $23 million, it grossed $38 million at the box office in North America. Though 37 years have passed, the secret code scene remains a reminder of why security is hard.

Watch the secret code scene from Spaceballs and weep. Or laugh. Or both. Has much changed when it comes to password security since the movie was released 37 years ago today?

The 64 second scene: https:///youtu.be/a6iW-8xPw3k

https://x.com/todayininfosec/status/1805302016451002501

27th June 2011: Anonymous released its first cache from Operation AntiSec, information from a US anti-cyberterrorism program.

https://x.com/todayininfosec/status/1806302186487345226

Rant of the Week (18:15)

Korean telco allegedly infected its P2P users with malware
A South Korean media outlet has alleged that local telco KT deliberately infected some customers with malware due to their excessive use of peer-to-peer (P2P) downloading tools.

The number of infected users of “web hard drives” – the South Korean term for the online storage services that allow uploading and sharing of content – has reportedly reached 600,000.

Billy Big Balls of the Week (26:33)

Crypto scammers circle back, pose as lawyers, steal an extra $10M in truly devious plan
The FBI says in just 12 months, scumbags stole circa $10 million from victims of crypto scams after posing as helpful lawyers offering to recover their lost tokens.

Between February 2023-2024, scammers were kicking US victims while they were already down, preying on their financial vulnerability to defraud them for a second time in what must be seen as a new low, even for that particular breed of dirtball.

It's the latest update from the FBI's Internet Crime Complaint Center (IC3) on the ongoing issue which was first publicized in August last year.

Industry News (34:24)

US Bans Kaspersky Over Alleged Kremlin Links

Sellafield Pleads Guilty to Historic Cybersecurity Offenses

Polish Prosecutors Step Up Probe into Pegasus Spyware Operation

Credential Stuffing Attack Hits 72,000 Levi’s Accounts

Google's Naptime Framework to Boost Vulnerability Research with AI

Fake Law Firms Con Victims of Crypto Scams, Warns FBI

IT Leaders Split on Using GenAI For Cybersecurity

Majority of Critical Open Source Projects Contain Memory Unsafe Code

CISOs Reveal Firms Prioritize Savings Over Long-Term Security

Tweet of the Week (43:08)

https://twitter.com/StuAlanBecker/status/1806137799248359443

Comments: https://twitter.com/derJamesJackson/status/1806307954586538205

Alternate TotW:

https://twitter.com/susisnyder/status/1806222280382406836

Come on! Like and bloody well subscribe!