 MBDA, one of the largest missile developers in Europe, has denied a breach by hackers. The company stated that hackers tried to extort it by spreading false rumors about a possible breach. More: - MBDA stated that hackers have gained access to company data through an external hard drive. To profit financially, hackers published fake news that claimed the group had breached MBDA.
- The company did not give any information on how the hard drive was stolen in the first place, but it has ruled out the possibility of giving any money to the hackers. Instead, it said it is going to solve the issue by collaborating with law authorities in Italy.
- MBDA claims that the data hackers have leaked is not confidential, while hackers have claimed that they own information about secret military projects, employee contracts, technical details, etc.
- The missile manufacturer has an annual revenue of $4.2B, selling its 45 different types of missiles to 90 customers.
| |
 Chinese hackers are using a new type of cyberattack. Researchers have tracked the hacking framework, stating that it is similar to Cobalt Strike. More: - The attack is being tracked as Manjusaka. The RAT framework is being offered free on the internet, raising the chances that other threat actors will adopt it.
- This framework contains multiple remote access trojans and is capable of breaching both Windows and Linux.
- Manjusaka can steal data from all major browsers, including Chrome, Edge, Firefox, Opera, Tencent, etc. Hackers can make custom changes to the C2, enabling them to steal wi-fi passwords, take screenshots, etc.
- Since the code for this framework is written in Golang, the RAT can be adapted to other tools and can possibly bypass the security firewalls even of other systems such as macOS.
- Researchers believe that the threat actor is based in the Guangdong region.
| |
 A message from VANTA Vanta asked over 500 startups to honestly and anonymously answer questions about their security posture, their security roadmap, and how satisfied they are with their security in general. Vanta’s State of Startup Security shares how hundreds of each stage founders, CTO’s, and security professionals are going through security growing pains and get a better understanding of how others are prioritizing and proving security. In this exclusive report: - You’ll see the data breakdown – from demographics to security tools
- You’ll get a better understanding of how organizations are prioritizing and proving security
- You’ll find out which compliance standards startups are working towards achieving – and how they’re getting it done
Want to learn more? Download now
| |
 A list of over 3,000 apps that can enable hackers to gain unauthorized access to Twitter accounts has been tracked by researchers. There are at least 207 apps that can steal critical information. More: - Hackers can gain unauthorized access to a Twitter account and perform normal activities in the app, such as liking tweets, retweeting them, sending and reading direct messages, tweeting, etc.
- This breach can happen because Twitter's API keys are vulnerable to hacks. While Twitter is not the only company that has had its API keys breached, its large number of daily users leaves them particularly susceptible to hacks.
- The security flaw was reported by a Singapore-based company named CloudSEK.
| |
 A former Pakistani PM's Instagram account has been hacked. The threat actor used the account to promote a cryptocurrency scam. More: - Imran Khan, the former Pakistani PM, made the announcement himself.
- Khan stated that he recovered his self-managed account with the assistance of Meta.
- Scammers posted a picture of Elon Musk and falsely promised to donate cryptocurrencies such as Bitcoin, Ethereum, and Litecoin. There is no known report on how many people were affected by the hacking campaign.
Zoom Out: - Crypto scams have become a common occurrence. In 2020, Apple co-founder Steve Wozniak sued YouTube and Google after his image was used in a false crypto scamming campaign.
- In a more recent event, the social media accounts of the British Army were hacked and were also used to promote cryptocurrency giveaway scams.
| |
 A message from COACHHUB How much is employee attrition costing your organization? As workplaces evolve, businesses need to invest in innovative ways to meet the diverse demands of their workforce―and see a return on their investment. Forrester’s Total Economic Impact of CoachHub study measured the results of innovation in learning and development. The results: Business costs related to employee attrition can be significantly reduced through innovation in learning and development.
This study provides a framework to evaluate the potential impact of CoachHub on their organizations as well as insights that articulate the benefits, costs and risks associated with an investment in people development.
In this report you'll learn: - The net present value of coaching totaled $3.3M over three years
- Digital coaching proved a 260% ROI
- Organizations studied showed a $4.3M cost savings linked to employee retention
Access your copy
| |
 A new Golang-based security flaw has been tracked by researchers. The flaw is believed to derive from a coding issue in the new updates. More: - The bug derives specifically from a change in updates. Up to version 1.17, a semicolon was accepted as a separator for URL queries, while non-percentage setting semicolons are now not accepted.
- Hackers can potentially insert semicolons that are ignored by one side of Golang's API but are processed by the internal computing side.
- This flaw is being tracked as ParseThru, while researchers stated that they've seen the flaw being used in projects such as Harbor, Traefik, Skipper, etc.
Zoom Out: - This is not the first instance of parsing cyber incidents, as parsing bugs were found in over 10 different popular libraries earlier this year.
| |
Quick Hits: *This is sponsored content.
| |
Upcoming events at Inside:
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 Ford. | |
| |
| |
