Plus: Researchers track security flaws that hackers can use to open Nexx garage doors remotely
| Part of  Network | |
 |
 Thailand has identified an army member who is believed to be responsible for stealing the data of over 55 million citizens. The data was stolen from Thailand's government-funded vaccination app. More: - The app, Mor Prom, was initially launched by Thailand's government to track COVID-19 cases.
- Later, the app was developed into a platform now used to store health data on tens of millions of citizens.
- Thai residents can use the app to access vaccine reservations and receive updated information on COVID-19.
- It also includes a feature that enables post-vaccination monitoring to check for side effects.
- The hacker, a Sergeant in Thailand's army, allegedly posted on the infamous hacker website BreachForums, threatening to release the data to the public if his demands aren't met.
- In an attempt to publicize the case even more, the threat actor is believed to have texted several news reporters their personal details, such as phone numbers, addresses, and ID numbers.
| |
Microsoft has secured a court order to remove illegal Cobalt Strike copies in an attempt to take down hacking campaigns that use the software. The latter has been used by hackers regularly for many years. More: - Cobalt Strike is used to escalate privileges, move laterally across a network, and encrypt files.
- The software was initially created in 2012 as a tool to simulate cyberattacks but was later misused by threat actors.
- According to Microsoft, Cobalt Strike has deployed over 68 ransomware cyberattacks in over 19 countries.
- Microsoft added that these attacks are mainly used by hacker groups based in Russia, China, Vietnam, and Iran.
- Hackers in China, U.S., and Russia use their infrastructure to host Cobalt Strike.
| |
42% of IT staff is directed by management not to say that their company has been breached, according to a new report. The U.S. was at the top of the list for many of the responses. More: - The U.S. topped the list regarding the share of respondents who claimed they’d been told to keep a breach secret, with 71%.
- In other developed countries such as France, Italy, Germany, Spain, and the U.K., this figure was under the global average.
- When asked if they kept a breach to themselves even though they knew it should be reported, 55 % of U.S. IT experts said yes, compared to an average of 30%.
- This report polled 400 IT professionals in organizations with over 1000 employees.
| |
Researchers have tracked at least five security flaws hackers can use to open Nexx garage doors remotely. Hackers can also steal information such as home addresses, device IDs, and first names. More: - There are five flaws tracked overall:
- CVE-2023-1748,
- CVE-2023-1749,
- CVE-2023-1750,
- CVE-2023-1751,
- CVE-2023-1752.
- CVE-2023-1748 has the highest CVSS score (9.1).
- According to estimates, as many as 40,000 devices and 20,000 individual accounts could be at risk of being hacked.
- Researchers have recommended that users disconnect their Nexx devices from the internet and use them only with VPNs.
| |
True Anomaly has raised a $17M Series A funding round to provide secure space technology for the U.S. and its allies. Founded in 2022, the company has already raised $30M. More: - True Anomaly builds spacecraft, AI pilots, and wargaming software to help the U.S. reach its national security goals and protect life on Earth.
- Its signature product is the Jackal, an autonomous spacecraft used for intelligence-gathering.
- The device will be launched in an upcoming SpaceX mission in 2023.
- True Anomaly works with the Department of Defense and commercial space companies.
- The company aims to use the funding to invest in its products and scale its manufacturing capabilities.
- Eclipse led the funding round, with participation from Riot Ventures, Champion Hill Ventures, Space.VC, and Narya.
- The company is based in Colorado Springs, Colo.
| |
Quick Hits: - Unleash Google Cloud's full potential! Learn with hands-on tutorials in the GCP Cookbook. Download your copy now.*
- Microsoft has announced that the Edge Workspaces feature, which allows users to share groups of tabs with friends and family, is now available for a select number of users.
- HP has stated that it will fix the CVE-2023-1707 bug in 90 days. The flaw affects numerous printer devices made by the company.
- A new hacker group named Money Message' has been tracked. The group is demanding million-dollar ransoms from victims in multiple countries, while its ties with any existing threat actor are unknown.
- Brilliant is the best way to improve cutting-edge technology like AI, neural networks, etc. Try it free for 30 days.*
*This is sponsored content.
| |
Upcoming events at Inside: - April 07 - US Visa and Green Card Options for Immigrant Founders and Employees (Watch Here)
- April 12 - Monthly Meditation guided by Nicholas Whitaker (Register Here)
- April 13 - Inside Interview with Lacework - The Evolution of Cloud Security w/ Ulfar Erlingsson (Watch On Demand)
- April 14 - Inside Interview with Landing - The Ultimate Corporate Housing Resource with Torger Philosophos (Register Here)
- April 18 - Human Resources Summit'23 (Register Here)
- April 18 - Inside Interview with TravelBank: Why Employee Happiness Is Falling More Into The Financial Sector (Watch On Demand)
*This is a sponsored listing.
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Christopher Hachey is an editor based in the New York City area. Reach out to him at chris@inside.com | |
| 767 Bryant St. #203, San Francisco, CA 94107
Copyright © 2023 Inside.com | |
| |
