February 26, 2024

CyberSec Roundup
A synopsis of the Latest Cybersecurity News

Scotia and RBC Customers Targeted

Some RBC and Scotiabank customers both noticed several unauthorized transactions on their bank cards recently. RBC subsequently disclosed that a third party suffered a breach, which led to some cards being exposed, however, no details of the nature of the breach were given but it could be similar to the Aeropost breach. While Scotiabank confirmed it did not suffer a direct breach, no details were given as to the reason for the unauthorized transactions. A similar third-party breach could have affected Scotiabank cards or BIN attacks are also a possibility where no breach occurred, but cybercriminals use methods to guess valid combinations of card details.

Insomniac Confirms Ransomware Attack

Sony’s Insomniac Games, the studio behind the latest Spiderman 2 game has confirmed it was hit with a ransomware attack after the Rhysida ransomware group posted that they had breached the company’s network in November. Insomniac notified employees that their personal information was stolen and posted on the dark web. As a result, the company has offered credit monitoring and identity restoration services to employees, free of charge.

LockBit Hacked

A global operation, known as “Operation Cronos” was successful in disrupting Lockbit’s operations. While the operation is still ongoing, law enforcement took a major step by seizing the criminal’s leak site and affiliate panels. It has also been confirmed that details related to Lockbit’s victims, source code, stolen data, and funds were also seized. This is a major win for law enforcement, as Lockbit has been responsible for many major breaches worldwide. However, Lockbit is busy rebuilding its operation, as it has a new leak site and have started to post new alleged victims on it, including the FBI.

By: David Pinder
IT & Cybersecurity Consultant
Certified Ethical Hacker (Master) | CCSK | AZ-500