☝️ TOP STORY

As phishing attacks increase, it’s crucial to be sure you’re backed up

Ransomware’s new strategy: naming and shaming victims

🤷‍♀️ What now?: Ask questions. You may reply to this email or call Hexagon Center’s hotline for help.

Meanwhile … $20B loss estimated from potential March Madness hacks

📰 Headline Highlights

• A Micronesian state suffered a ransomware attack and was forced to shut down all computers of its government health agency.

• Europe's telecoms sector under increased threat from cyber spies, warns Denmark

• 100 Car Dealerships Hit by Supply Chain Attack

• 8,000 New WordPress Vulnerabilities Reported in 2024

• £1M Lost as UK Social Media and Email Account Hacks Skyrocket

• Scareware Combined With Phishing in Attacks Targeting macOS Users

• Data breach at stalkerware SpyX affects close to 2 million, including thousands of Apple users

• BlackLock Ransomware Strikes Over 40 Organizations in Just Two Months

• Jaguar Land Rover Breached by HELLCAT Ransomware Group using Jira Credentials

• Millions Of RSA Key Exposes Serious Flaws That Can Be Exploited

• Pennsylvania education union data breach hit 500,000 people

In other news, Names, bank info, and more spills from top sperm bank

GOOD READ: Facial Recognition Company Clearview Attempted to Buy Social Security Numbers and Mugshots for its Database

This week’s newsletter has been a little challenging to parse but at the same time we saw some funny headlines. (None of them are in this edition.) That got us thinking how we are NOT a news outlet nor do we share news. Hexagon Center’s work is to warn and keep people vigilant in cybersecurity and scams.

That also got us thinking. Do you read Headlines Highlights?

Inside Hexagon

The office has been busy lately but do you know that our second anniversary is almost here? Also, we are getting ready for World Backup Day. Visit hexagoncenter.org.

HOUSEKEEPING

Glossary/Legend:

• A Server-Side Request Forgery (SSRF) attack - an attacker abusing server functionality to access or modify resources. The attacker targets an application that supports data imports from URLs or allows them to read data from URLs.

• RSA key - a public key cryptography system used to secure data transmitted over the internet.

• Phishing - a cybercrime that involves tricking people into giving away sensitive information.

• Cyberattack - A malicious attempt to gain unauthorized access to a computer system, network, or device. The goal of a cyberattack is to disrupt or damage the target, or to steal data, intellectual property, or money.

• Ransomware - A type of malware that locks or encrypts a victim's files and demands a ransom payment to unlock and decrypt them. Ransomware can infect a variety of devices, including computers, smartphones, printers, and more.

• Password manager - a software application that allows users to securely store, generate, and manage their online login credentials (passwords and usernames) across different websites and applications, typically requiring only one "master password" to access all stored information, promoting strong password hygiene by creating unique passwords for each site and automatically filling them in when needed.

Spread cybersecurity culture

Do you have any suggestions on how we can further share this newsletter? Tell your friends and family about us by sharing with them the Hexagon Center official website:

hexagoncenter.org

View archives at hxweekly.beehiiv.com

You may reply to this newsletter or email us at
[email protected]

Send us any questions or things you want to talk about. Please share some fun facts with us. We welcome feedback and suggestions.

_{Hexagon Center is formed as a nonprofit corporation in California for public benefit,
and is tax-exempt under section 501(c)(3) of the Internal Revenue Code.}

_DISCLAIMER

_{Cybersecurity is an ever-changing field, and threats may evolve. While Hexagon Center strives to provide accurate and timely information, we cannot guarantee absolute security. Users are responsible for implementing their security measures and staying informed about the latest cybersecurity developments. Hexagon Center is not responsible for any cyber or scam attacks by our readers. HX Weekly tips are advice are not official positions of Hexagon Center nor is Hexagon Center responsible for its content.}

Content of this newsletter is not an official representation of Hexagon Center.

_{SEE MORE DISCLAIMER HERE}