Securing your cloud storage is proving to be of utmost importance. Unsecured buckets result in huge data losses, as in the case of a Seattle-based non-denominational church. Threat actors never take their eyes off of the educational sector. This time, a community college in Palm Desert fell victim to a cyberattack. Threats by North Korean adversaries are on the rise against the healthcare sector, warn federal agencies. Here’s more from the past 24 hours.

Threat Intelligence - Hacking news

Top Breaches, Malware, Vulnerabilities Reported in the Last 24 Hrs

1. American Marriage Ministries, a wedding officiant training company, exposed 630GB of data on 185,000 officiants and 150,000 married couples and their wedding guests, owing to an unsecured Amazon bucket.

2. College of the Desert, California, was hit by a cyberattack that knocked off its online services and campus phone lines, along with the school’s website.

3. Nation-state threat actors are leveraging Brute Ratel, a red-teaming attack simulation tool, to evade detection by EDR and antivirus. The tool is sold for $2,500 for a one-year, single-user license.

4. A joint advisory published by the CISA, the FBI, and the Treasury Department states that North Korean hackers have been attacking healthcare entities with the Maui ransomware since at least May 2021.

5. A security advisory for a flaw issued by MITRE was found inadvertently exposing links to remote admin consoles of several vulnerable IP devices, since at least April.

6. A new, undetected Linux malware, named OrBit, was found to implement sophisticated evasion techniques and persistence on the compromised system, enabling attackers to gain remote access.

7. A report by SentinelOne states that Chinese hackers are targeting the Russian government and organizations in the telecom sector via the decade-old Bisonal RAT.

8. ENISA published this year's Threat Landscape Methodology, which aims to set a standard for systematic and transparent delivery of horizontal, sectorial, and thematic cybersecurity threat landscapes.

9. MI5 and FBI leaders warned academics and business leaders against the rising threat of cyberespionage by Chinese threat actors attempting to steal trade secrets and academic research.

10. Arizona-based Cerberus Cyber Sentinel acquired CyberViking, a cybersecurity firm, for an undisclosed sum. The acquisition aims to fortify incident response strategy and application security.