Cisco faces fallout from a massive data leak exposing critical files, while China accuses the U.S. of cyber espionage amid rising tech tensions. AI governance sparks debate as Europe enforces strict rules, and ASIC sues HSBC for $23M scam failures. Global cyber affairs take center stage this week.
ASIC is suing HSBC Australia over $23M in scam losses, alleging systemic failures in fraud detection and delays in resolving complaints. Meanwhile, Singapore's proposed anti-scam law aims to freeze accounts of scam victims to prevent further losses, sparking debate on privacy and autonomy.
Broadcom joins Nvidia in the $1 trillion club, reshaping the AI chip race with a 51% revenue surge in Q4 2024 and VMware's $69B acquisition. As China invests $25B to boost semiconductor self-reliance, U.S.-China tensions escalate, redefining global innovation and geopolitical power dynamics.
CISA has issued a vulnerability alert for alpitronic's Hypercharger EV Charger, which could be exploited if default credentials aren't changed. Alpitronic urges users to update passwords and secure network access to prevent unauthorized control and data breaches.
CISA has just released a new vulnerability alert, this time in regards to all versions of the electric vehicle (EV) charging devices produced by alpitronic.
The alpitronic Hypercharger EV Charger is a high power, high efficiency charging station, and alpitronic has been developing parts for the charger since 2009, and is currently used globally.
The vulnerability stems from a potential misconfiguration, whereby the device can expose a web interface protected by authentication.
If a user hasn’t changed the default credentials, which could a significant amount of users, an attacker can use the publicly available defaults to access the device with administrator privileges.
Successful exploitation of this vulnerability could result in an attacker disabling the device, bypassing payment, or accessing payment data.
Alpitronic has advised users to change default passwords on all charging devices to enhance security. They recommend connecting the device interface to internal networks with controlled access, avoiding public internet exposure.
Upon discovering security vulnerabilities, alpitronic worked with clients to disable public interfaces and remind them about the risks of using default credentials.
They are also implementing security measures for existing and new devices, including unique passwords. New passwords can be obtained via QR code inside the charger or through a portal.
CISA has recommended minimising network exposure, using firewalls, and securing remote access with VPNs while keeping VPNs updated and ensuring connected devices are secure.
China’s "Salt Typhoon" hackers have breached U.S. telecoms, raising cyber tensions. Experts warn of the threat to international stability, emphasizing the need for collaborative strategies to prevent escalation amid ongoing economic competition.
Chinese hackers allegedly breached U.S. telecoms tied to Harris and Trump campaigns, highlighting election security gaps. AI-driven deepfakes and disinformation also surge on social media, raising risks to democracy as voters near Election Day.
CrowdStrike's disastrous July 19 software update crippled Jetstar and exposed vulnerabilities, causing a global IT outage. Competitors like SentinelOne exploited the chaos, shaking customer trust and eroding CrowdStrike's market value by 25%.
This week, the cybersecurity world is in turmoil following a massive data breach at National Public Data. The breach, involving 2.9 billion records, has exposed sensitive information spanning decades.
