Google fixes ninth Chrome zero-day exploited in attacks this year
Today, Google released a new Chrome emergency security update to patch a zero-day vulnerability, the ninth one exploited in attacks this year. […] Read More
PAX PoS Terminal Flaw Could Allow Attackers to Tamper with Transactions
The point-of-sale (PoS) terminals from PAX Technology are impacted by a collection of high-severity vulnerabilities that can be weaponized by threat actors to execute arbitrary code.
The STM Cyber R&D team, which reverse engineered the Android-based devices manufactured by the Chinese firm owing to their rapid deployment in Poland, said it unearthed half a dozen flaws that allow for Read More
The Hacker News | #1 Trusted Cybersecurity News Site
Boeing Admits Cyberattack; Lockbit Claims Zero-Day Exploit Was Used to Gain Access
Boeing, the aerospace industry leader, has recently reported a cyberattack on its systems. The attack primarily targeted the company’s parts and distribution business.
While this breach has not affected flight safety, it has raised concerns about the security of the company’s supply chain and the potential for further attacks.
Boeing has yet to release any technical details about the nature of the cyber incident or the extent of the damage caused.
“We are aware of a cyber incident impacting elements of our parts and distribution business,” Boeing told The Cyber Security News.
The aviation company stated that the incident reported did not pose any threat to the safety of the flight.
Boeing is investigating the issue and working closely with relevant authorities to identify the root cause and prevent future recurrence.
Lockbit Claim
The cybercrime group Lockbit, known for its Russian affiliations, has claimed responsibility for the attack on its dark web leak site on October 27th.
Ensure your Cyber Resiliance with the recent wave of cyber-attacks targeting the financial services sector. Almost 60% respondents not confident to recover fully from a cyber attack.
VXunderground learned that Lockbit’s ransomware affiliate got access using a 0-day exploit. However, Lockbit would not elaborate further on this exploit; hence, we cannot verify the legitimacy of these claims.
Yesterday Lockbit ransomware group listed Boeing on their victims list. Boeing is a multinational American company with an estimated annual revenue of $66,610,000,000. They have over 150,000 employees worldwide. Boeing serves both the public and private sector.
The recent breach has brought to light the issue of zero-day vulnerabilities, which the attackers reportedly exploited.
Zero-day vulnerabilities are unknown security flaws that pose a significant challenge for organizations regarding protection.
The attackers were able to leverage these vulnerabilities, making it clear that organizations must be more proactive in identifying and addressing such vulnerabilities to safeguard their critical assets.
According to the malware repository vx-underground, Later, the Boeing listing was removed from the Lockbit ransomware group’s website as they started their negotiations.
We keep getting pinged. Yes, Boeing has been removed from Lockbit ransomware groups website.
Lockbit administrative staff informed us they removed Boeing because negotiations have begun.
We don’t know anything else. It is Halloween. Cya nerds tomorrow. We’re busy.
Boeing Parts Website is offline at the time of writing with the note, “we are aware of the technical issues impacting the availability of the services websie. This incident does not affect the safety of flight.”
This story is still unfolding, so please stay tuned for further updates.
Protect yourself from vulnerabilities using Patch Manager Plus to patch over 850 third-party applications quickly. Try a free trial to ensure 100% security.