Security BSides Bangalore

📌 LockBit Ransomware Developer Arrested: U.S. Charges Key Member U.S. authorities have arrested Rostislav Panev, a core member of the notorious LockBit ransomware group. The 51-year-old dual Russian-Israeli national was apprehended in Israel in August 2024 and is currently awaiting extradition to the U.S.. Panev, a key developer for LockBit, is accused of playing a pivotal role in the group's operations from its inception in 2019 through February 2024, contributing to 2,500+ victim attacks globally, including 1,800 in the U.S.. Exploiting vulnerabilities in ransomware tactics, LockBit is believed to have caused $500 million in ransom payments and billions in damages. This arrest is part of an ongoing global effort to dismantle LockBit, with several other members facing charges. Read More: https://lnkd.in/gM7ptP8S #LockBit #Ransomware #Cybersecurity #Cybercrime #FBI #RansomwareAttack #Malware #DataBreach #USAuthorities #CyberThreats #TechNews #CyberDefense #Infosec #Privacy #DigitalSecurity #LockBitRansomware #Extradition #CyberInvestigations #Hackers #CryptoCrime #RansomwareGang

📌 Cybersecurity Trends to Watch in 2025 Expect a rise in AI-powered cyberattacks like autonomous malware and AI phishing. Zero-Trust models will become essential to secure remote work and cloud environments. Ransomware targeting critical infrastructure will escalate. Stricter data privacy regulations will push businesses to automate compliance. The cybersecurity workforce shortage will continue, demanding AI-driven defenses and outsourced solutions. Read More: https://lnkd.in/gqCiJVcm #Cybersecurity #AI #ZeroTrust #Ransomware #DataPrivacy #CyberThreats #TechTrends #WorkforceShortage #Compliance #AIinSecurity

📌 US Considers Banning TP-Link Routers Over Cybersecurity Risks The U.S. government is reportedly considering a ban on TP-Link routers due to concerns over cybersecurity risks. These concerns stem from the potential for vulnerabilities or backdoors in networking devices made by Chinese companies, which could be exploited for espionage or cyberattacks. The decision is part of broader efforts to address national security threats posed by foreign-made telecommunications equipment. Read More: https://lnkd.in/eyxJ6HSf #Cybersecurity #TPLink #USGovernment #NationalSecurity #TechNews #RouterSecurity #China #CyberThreats #Espionage #Networking

📌 Hackers Exploiting Microsoft Teams for Remote Access Cybercriminals are using Microsoft Teams to trick users into installing remote access tools like AnyDesk. By impersonating trusted contacts during Teams calls, they deceive victims into granting system access. This technique has been linked to the deployment of DarkGate malware, enabling unauthorized control over compromised systems. Read more: https://lnkd.in/gy_iZn-4 #CyberSecurity #MicrosoftTeamsHack #RemoteAccessAttack #DarkGateMalware #InfoSec #TechNews #CyberThreats #OnlineSafety #DataProtection #MalwareAlert #StaySafeOnline

📌 Class Action Lawsuits: Deloitte Hit Following RI Bridges Cyberattack Deloitte has been targeted with multiple class action lawsuits in the aftermath of the RI Bridges cyberattack. The breach, allegedly linked to a vulnerability introduced by Brain Cipher, has exposed sensitive data, leaving affected individuals seeking legal recourse. Reports indicate that the attack may have compromised critical infrastructure and personal information, leading to significant financial and reputational damage for both Deloitte and the entities involved. Read More: https://lnkd.in/gqar3Bqf #Deloitte #Cybersecurity #ClassActionLawsuit #Cyberattack #RIbridges #BrainCipher #DataBreach #TechNews #CyberRisk #LegalNews #DataPrivacy #InfoSec #CyberDefense #TechLawsuits #BreachResponse #CyberThreats

📌 Serbian Authorities Use Novispy Spyware & Cellebrite Forensic Tools to Hack Journalists Reports have emerged revealing that Serbian authorities have used Novispy spyware and Cellebrite forensic tools to target journalists. These tools enable the unauthorized access of sensitive data, including messages, calls, and location information, through surveillance on mobile devices. The use of these tools has raised serious concerns about press freedom, privacy violations, and the increasing use of spyware for political and journalistic targeting. Read More: https://lnkd.in/d_RG7cdx #Serbia #Novispy #Cellebrite #Spyware #Journalism #PressFreedom #Privacy #Surveillance #Cybersecurity #HumanRights #DataPrivacy

📌 BADBOX Malware Disruption: 30,000 Devices Secured German authorities dismantled the BADBOX malware network, which infected 30,000 devices worldwide. Using a sinkhole operation, they severed its control infrastructure, halting data theft and ransomware activity. This marks a major win in combating cybercrime against enterprise systems. Read More: https://lnkd.in/drhvbp93 #CyberSecurity #MalwareRemoval #BADBOX #BotnetTakedown #SinkholeAction #CyberCrime #InfoSec #ThreatIntel #DigitalSecurity #CyberThreats

📌 IOCONTROL Malware: Targets SCADA and Linux-Based IoT Platforms Researchers have discovered a significant malware campaign, IOCONTROL, linked to Iranian cyber actors. This malware specifically targets SCADA systems and Linux-based IoT platforms, aiming to exploit vulnerabilities in critical infrastructure. Threat actors can manipulate these systems to disrupt operations or steal sensitive data, posing a serious risk to industries like energy, manufacturing, and water management. Read More: https://lnkd.in/gcpv-bxK #CyberSecurity #Malware #SCADA #IoT #Iran #CriticalInfrastructure #IoTsecurity #CyberThreat #Hacking #CyberAttack #InfoSec #TCC #SecurityVulnerability

📌 Symlink Exploit: TCC Bypass in iOS and macOS Researchers have discovered a critical vulnerability in Apple’s Transparency, Consent, and Control (TCC) framework, allowing attackers to bypass safeguards on macOS and iOS. Exploiting a symlink mechanism, threat actors could manipulate system-protected files to gain unauthorized access to sensitive data, such as files, camera, or microphone permissions. Read More: https://lnkd.in/gwbJ_SxK #CyberSecurity #iOS #macOS #TCCBypass #SymlinkExploit #AppleVulnerability #DataProtection #EthicalHacking #InformationSecurity #ThreatIntel #CyberAwareness #SecureYourDevices #VulnerabilityDisclosure

📌 Microsoft MFA AuthQuake Flaw: Unlimited Brute-Force Vulnerability A critical flaw in Microsoft’s MFA system allowed threat actors to perform unlimited brute-force attempts without triggering alerts. By exploiting the vulnerability, attackers bypassed safeguards to compromise accounts, emphasizing the need for enhanced anomaly detection and rate-limiting measures in MFA setups. Read More: https://lnkd.in/g5gcm-Ah #Cybersecurity #MFA #ThreatIntelligence