Ransomware

Hackread reports Microsoft, Gmail, Yahoo, and other authentication services' login credentials are being targeted by the newly emergent Astaroth phishing kit, which leverages an evilginx-style reverse proxy enabling man-in-the-middle attacks while evading two-factor authentication.

Operations of the Virginia Attorney General's office were reported by the Richmond Times-Dispatch to have been significantly impacted by a cyberattack this week, which took down most of its computer systems, according to The Associated Press.

Individuals traveling to Singapore, Malaysia, and the UK have been subjected to a novel phishing campaign exploiting online arrival card submissions in a bid to exfiltrate personal details, SiliconAngle reports.

Major Taiwanese printed circuit board manufacturer Unimicron had its systems claimed to be compromised in an attack by the newly emergent Sarcoma ransomware operation, which purportedly resulted in the theft of 377 GB of data, including SQL files, that would be exposed next week should the firm refuse to pay the demanded ransom, reports BleepingComputer.

Operations of several critical services at Michigan's Sault Ste. Marie Tribe of Chippewa Indians, also known as Sault Tribe, have been interrupted by a ransomware intrusion on Sunday, which took down numerous computer and phone systems, according to The Record, a news site by cybersecurity firm Recorded Future.

Widely known personal data leak platform Doxbin was reported by vx-underground to have been purportedly compromised by the Tooda cybercrime group as payback for having one of its members accused of being a pedophile by the leak site's admins, according to Cybernews.

Numerous school districts impacted by the sweeping cyberattack against major education technology provider PowerSchool disclosed having their students' highly sensitive information compromised as a result of the incident, which was noted to have affected more than a third of the firm's 18,000 clients and claimed to have compromised over 70 million students and faculty members, reports The Record, a news site by cybersecurity firm Recorded Future.

Hackread reports that widely used artificial intelligence-based chatbot OmniGPT was allegedly compromised by the threat actor dubbed "Gloomer," who proceeded to leak over 34 million lines of user conversations and 30,000 user emails and phone numbers.