Summary:
- LastPass vault hacking, Russia targeting Ukraine energy facility, and NXP data breach are notable cybersecurity stories this week.
- SentinelOne ends collaboration with Wiz following acquisition rumors.
- Threat actors may be breaking into compromised LastPass vaults.
- Dutch semiconductor company NXP discloses a data breach affecting user email addresses.
- Golf equipment maker Callaway discloses a data breach impacting over one million people.
- China is weaponizing software vulnerabilities, leveraging mandatory flaw reporting.
- Vulnerability found in Mend.io platform allows access to other users' data.
- Flipper Zero hacking device can be used to spam Apple devices via Bluetooth.
- MinIO object storage suite vulnerabilities exploited in a new cloud attack vector.
- Russian APT group targets an energy facility in Ukraine.
- Interesting behaviors observed in the dynamically seeded domain generation algorithm used by the Pushdo and Necurs botnets.
- W3LL phishing kit used to target corporate Microsoft 365 accounts.
- TXOne Networks announces the second generation of its Edge engine for industrial cybersecurity.
Hashtags:
- #Cybersecurity
- #LastPass
- #Russia
- #Ukraine
- #NXP
- #DataBreach
- #China
- #Vulnerability
- #Phishing
- #IoTSecurity
- #EdgeSecurity