Top Weekly Cyber News: August 25-31, 2019

Hi folks! You may find below the latest news about global incidents, threats and attacks handpicked by our super XM Cyber team of experts.
DarkReading – @jack Got Hacked: Twitter CEO’s Tweets Hijacked
August 30
The Twitter account of Twitter CEO Jack Dorsey, well known by his handle @jack, was apparently hijacked today. Over the course of roughly 20 minutes, the account was used to tweet and retweet dozens of racist and incendiary posts, many tagged with the name #ChucklingSquad, a group that’s been credited with several account takeover attacks recently. [More]

Data Breach Today – Breach Saga: Bulgarian Tax Agency Fined; Pen Testers Charged
August 30
Bulgaria’s Personal Data Protection Commission has fined the nation’s tax agency $2.9 million for failing to stop a breach that leaked tax records for nearly all of the country’s citizens. Meanwhile, prosecutors have filed related criminal charges against employees of a penetration testing company. [More]

Security Affairs – Ransomware attack hits DDS Safe backup service used by hundreds of dental offices
August 30
The company behind DDS Safe solution used by hundreds of dental offices was hit by a ransomware attack and it is working to restore access to client data. The company provides back-up services to hundreds of dental practice offices across the United States, the solution allows safeguarding medical records and other patients’ information. [More]

KrebsonSecurity – Phishers are Angling for Your Cloud Providers
August 30
Many companies are now outsourcing their marketing efforts to cloud-based Customer Relationship Management (CRM) providers. But when accounts at those CRM providers get hacked or phished, the results can be damaging for both the client’s brand and their customers. Here’s a look at a recent CRM-based phishing campaign that targeted customers of Fortune 500 construction equipment vendor United Rentals. [More]

DarkReading – Malware Found in Android App with 100M Users
August 28
CamScanner, an Android app commonly used to scan and organize electronic documents, was found to contain malicious components to download malware onto infected Android devices. [More]

The Hacker News – Hostinger Suffers Data Breach – Resets Password For 14 Million Users
August 26
Popular web hosting provider Hostinger has been hit by a massive data breach, as a result of which the company has reset passwords for all customers as a precautionary measure. [More]


BAS vs. Pen Testing



Find and fix the exposures that put your critical assets at risk with ultra-efficient remediation.

See what attackers see, so you can stop them from doing what attackers do.