Last week cyber news
- The American Express company reports that customers’ credit cards were exposed following a hacking of one the company’s vendors. At this point, the company has yet to share details with the media regarding the scope of the attack, when it occurred or who the hacked vendor was.
- Apple publishes a fix for two zero-day vulnerabilities that are currently being exploited by attackers around the world. Make sure all devices are updated to the latest version.
- The Israeli startup Flow Security, which was established only 3 years ago, was purchased by CrowdStrike for 200-220 million dollars. Flow Security developed a platform that automatically catalogs all the sensitive data in an organization’s environment, including external services, mapping the immediate threats to that organization’s information, and deploying a series of ways to handle the risks identified by the system.
- Hackers from Iran hacked into colleges in Israel – stole and deleted a lot of data. The hack happened through the supply chain, following an intrusion into Rashim – a subsidiary of Malam Team. According to the hackers, the databases to which they were able to gain access include, among others, Ariel College, Sapir College, Beit Berel, Daat Nissim, Gur Ashdod, Hamada Academic College, Israel College, Police College in Beit Shemesh and Sakhenin College.
Iran’s cybersecurity war
Microsoft published a study on Iran’s cyber activities in Israel starting in October 2023. This is a long and comprehensive study that describes Iran’s cyber-enabled influence operations, which combined targeted hacks with social media influence, and intensified support for Hamas during the Israel-Hamas war.
