Afternoon Dessert - 2022-08-29

Welcome to another Afternoon Dessert breakout:

Montenegro says Russian cyberattacks threaten key state functions
Members of the government in Montenegro are stating that the country is being hit with sophisticated and persistent cyberattacks that threaten the country's essential infrastructure. [...]
Read more....

US govt sues Kochava for selling sensitive geolocation data
The U.S. Federal Trade Commission (FTC) announced today that it filed a lawsuit against Idaho-based data broker Kochava for selling sensitive and precise geolocation data (in meters) collected from hundreds of millions of mobile devices. [...]
Read more....

Cloudflare CDN clients caught in Austrian fight against pirate sites
Excessive and indiscriminate blocking is underway in Austria, with internet service providers (ISPs) complying to a court order to block pirate sites causing significant collateral damage. [...]
Read more....

Firefox 104 is out – no critical bugs, but update anyway
Two trust-spoofing bugs were the main culprits this month - but neither one was a zero-day.
Read more....

LastPass source code breach – do we still recommend password managers?
What does the recent LastPass breach mean for password managers? Just a bump in the road, or a reason to ditch them entirely?
Read more....

Windows malware delays coinminer install by a month to evade detection
A new malware campaign disguised as Google Translate or MP3 downloader programs was found distributing cryptocurrency mining malware across 11 countries. [...]
Read more....

Leading library services firm Baker & Taylor hit by ransomware
Baker & Taylor, which describes itself as the world's largest distributor of books to libraries worldwide, today confirmed it's still working on restoring systems after being hit by ransomware more than a week ago. [...]
Read more....

New Golang-based 'Agenda Ransomware' Can Be Customized For Each Victim
A new ransomware strain written in Golang dubbed "Agenda" has been spotted in the wild, targeting healthcare and education entities in Indonesia, Saudi Arabia, South Africa, and Thailand. "Agenda can reboot systems in safe mode, attempts to stop many server-specific processes and services, and has multiple modes to run," Trend Micro researchers said in an analysis last week. Qilin, the threat
Read more....

Nelnet Servicing breach exposes data of 2.5M student loan accounts
Nelnet Serving, a Nebraska-based student loan technology services provider, has been breached by unauthorized network intruders who exploited a vulnerability in its systems. [...]
Read more....

FBI: Hackers increasingly exploit DeFi bugs to steal cryptocurrency
The U.S. Federal Bureau of Investigation (FBI) is warning investors that cyber criminals increasingly exploiting security vulnerabilities in Decentralized Finance (DeFi) platforms to steal cryptocurrency. [...]
Read more....