---
title: "EasyPark Data Breach, Ohio Lottery Cyberattack, GTA 5 Leak, Cybersecurity News [December 25, 2023] | DuoCircle"
description: "Stay a step ahead of threat actors with our latest coverage in cybersecurity."
image: "https://www.duocircle.com/images/og-default.png"
canonical: "https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-1-of-2024/"
---

Quick Answer

Week 1 of 2024 covered: the EasyPark data breach (discovered December 10, 2023) exposing names, phone numbers, addresses, emails, and partial credit card numbers of European users of the Swedish parking app; the DragonForce ransomware attack on the Ohio Lottery on Christmas Eve, with 600 GB of data including SSNs and birth dates of more than 3 million entrants; the GTA V source code leak via Discord, dark web, and a Telegram channel one year after the LAPSUS$ Rockstar Games breach (Arion Kurtaj sentenced to indefinite hospital stay); and a new Python project, Wall of Flippers, that detects Bluetooth LE spam attacks from Flipper Zero and Android devices by capturing MAC addresses and signal strength.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-1-of-2024%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=EasyPark%20Data%20Breach%2C%20Ohio%20Lottery%20Cyberattack%2C%20GTA%205%20Leak%2C%20Cybersecurity%20News%20%5BDecember%2025%2C%202023%5D&url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-1-of-2024%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-1-of-2024%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-1-of-2024%2F&title=EasyPark%20Data%20Breach%2C%20Ohio%20Lottery%20Cyberattack%2C%20GTA%205%20Leak%2C%20Cybersecurity%20News%20%5BDecember%2025%2C%202023%5D "Share on Reddit") [ ](mailto:?subject=EasyPark%20Data%20Breach%2C%20Ohio%20Lottery%20Cyberattack%2C%20GTA%205%20Leak%2C%20Cybersecurity%20News%20%5BDecember%2025%2C%202023%5D&body=Check out this article: undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-1-of-2024%2F "Share via Email") 

![cybersecurity](https://media.mailhop.org/duocircle/images/2024/01/phishing-protection.jpg) 

Stay a step ahead of threat actors with our latest coverage in [cybersecurity](/). This week’s news brings both troubling developments and new tools in **online security**. We’ll take a look at the EasyPark data breach, the cyberattack on Ohio Lottery, the GTA V source code leak, and details of the new Python project that can help you detect Bluetooth spam attacks. Let us get into it.

## EasyPark Reveals Data Breach Potentially Affecting Millions of Users

The EasyPark app developer shared a notice informing us of a [data breach](https://www.bbc.com/news/uk-england-cambridgeshire-67639234). The breach was discovered on 10 December 2023.

EasyPark is a Swedish organization that is known for its mobile and web applications. These applications help in parking space location, booking, and finding EV charging points. The organization was hit by the breach which has affected a portion of its **European users**. They [mentioned](https://www.easypark.com/en-de/comm) that the names, phone numbers, residential addresses, emails, and digits of their credit/debit cards were stolen in the breach.

Such crucial information can be used by threat actors to carry out [spear phishing attacks](https://www.scmagazine.com/brief/numerous-backdoors-deployed-in-new-kimsuky-spear-phishing-attacks) against the organization’s users. They have not disclosed the details of the breach or how it took place. _However, if you’re impacted by the breach, you will receive **personalized notices** via in-app messages, notifications, SMS, or email._

The application is accessible and working normally and the Swedish, British, and Swiss data protection authorities have been notified about the breach. For the sake of your security, it’s advisable to **reset any passwords** that you’ve reused. Additionally, implementing a robust [spear phishing prevention](/content/spear-phishing-prevention) solution can provide an extra layer of defense.

[![Cybersecurity Predictions](https://media.mailhop.org/duocircle/images/2024/01/SPF-record-checker.jpg)](https://media.mailhop.org/duocircle/images/2024/01/SPF-record-checker.jpg)

## DragonForce Ransomware Targets Ohio Lottery in Cyberattack

The Ohio Lottery had to **shut down its key systems** after suffering a [cyberattack on Christmas Eve](https://www.hipaajournal.com/anna-jaques-hospital-cyberattack/).

The incident is still under investigation but the lottery is working now. The state lottery has not linked the attack to any known [threat actor groups](https://www.infosecurity-magazine.com/news/healthcare-warned-ransomware/) but it was claimed by DragonForce ransomware. The threat actors say they have **encrypted devices and stolen data** in the attack and also have access to SSNs (Social Security Numbers) and birth dates.

DragonForce added a new entry to their data leak site hinting that the stolen files contain information related to Ohio Lottery customers and employees. _The site shows that they have access to names, emails, residential addresses, and winning amounts of over 3,000,000 people who entered the lottery._ The size of the data is **over 600 GB**. Meanwhile, if you’ve won a prize, visit [here](https://www.ohiolottery.com/Claiming/HowToClaim) to claim the winnings.

We know little about the [DragonForce ransomware gang](https://www.bleepingcomputer.com/news/security/yakult-australia-confirms-cyber-incident-after-95-gb-data-leak/) as they are a new operation. However, their tactics, style of negotiation, and data leak site indicate there’s an **experienced group** behind it.

## GTA 5 Source Code Allegedly Leaked Online One Year After Rockstar Hack

_Another alarming news hit the cybersecurity world on **Christmas Eve** when the source code for GTA 5 was leaked._ This incident underscores the importance of implementing robust [phishing protection](/email/phishing-protection) measures, as leaks of this nature can often stem from successful [phishing attempts](https://www.theblock.co/post/270105/crypto-phishing-attacks-2023).

Many links to download the [source code were shared](https://www.aljazeera.com/economy/2023/3/27/twitter-source-code-partially-leaked-online-court-filing-says) on multiple channels on Discord, the dark web, and a GTA leak channel on Telegram. The owner of the Telegram channel is a person named “Phil,” and he paid homage to the [LAPSUS$ hacker](https://thehackernews.com/2023/08/two-lapsus-hackers-convicted-in-london.html) who leaked the videos of the **upcoming GTA 6**.

The actor behind the GTA 6 video leak is Arion Kurtaj, who has been sentenced to an indefinite hospital stay as a result of his Rockstar Games and Uber hack. Rockstar was hacked in 2022 by [LAPSUS$](/email-security/lapsus-breaches-microsoft-and-okta-the-event-the-impact-and-the-remedy/) and the Discord leaker says that the source code was [received](https://twitter.com/vxunderground/status/1739263588408164859) by him in August 2023\. The leaked code shows a lot of information about **unreleased titles and secret alternate endings** that the developers did not use.

[![SIM swapping attacks](https://media.mailhop.org/duocircle/images/2024/01/spf-record-tester-5492.jpg)](https://media.mailhop.org/duocircle/images/2024/01/spf-record-tester-5492.jpg)

LAPSUS$ is known for its [social engineering](/phishing-protection/social-engineering-is-a-growing-threat/) and [SIM swapping attacks](https://www.techtarget.com/whatis/definition/SIM-swap-attack-SIM-intercept-attack) and **extorting organizations** in exchange for not leaking stolen data.

## ‘Wall of Flippers’ Identifies Bluetooth Spam Attacks on Flipper Zero

There is a new Python project in the market called “Wall of Flippers” that can **detect Bluetooth spam attacks** launched by Flipper Zero and Android machines.

If you can detect the attack, you will be able to take targeted measures to protect yourself, making this a huge win. Techryptic was the first one who demonstrate how [Flipper Zero portable wireless pen-testing and hacking tool](https://www.linkedin.com/pulse/flipper-zero-portable-pen-testing-tool-hackers-all-skill-vishnu-m-p) can be used to launch **Bluetooth LE spam attacks**.

The attack can allow [threat actors](/email-security/threat-actors-attack-thousands-of-computers-following-the-ion-incident/) to [spam](https://twitter.com/%5Fmattata/status/1730974745657548892) Apple devices with fake Bluetooth connection notifications. This later developed into a custom Flipper Zero firmware that could launch **spam against Android and Windows** devices, too. _It was then turned into an Android app using which the attack could be carried out._

The Wall of Flippers is a project that can detect the attackers of the [Bluetooth LE spam attack](https://www.androidauthority.com/flipper-zero-bluetooth-spoofing-ios-17-crash-3382001/) and respond. It runs continuously and detects potential threats.

You can easily capture the [MAC address](https://www.geeksforgeeks.org/mac-address-in-computer-network/) and the **signal strength** and use these things to determine how far away the threat is and the device they’re using. And Flipper will get updates as it is still a work in progress. Here’s how to [download](https://github.com/K3YOMI/Wall-of-Flippers) it.

## Topics

NewsSecurityUpdates 

![Brad Slavin](https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg) 

Brad Slavin 

General Manager

General Manager at DuoCircle. Product strategy and commercial lead across the email security portfolio.

## Secure your email infrastructure

Protect, authenticate, and deliver. Contact our team to find the right solution.

[Contact Sales](/contact/) [Explore Products](/products/) 

## Related Articles

[  News 3m  Alert: Fix SPF & DKIM Settings For Your Email Forwarding Set Up Through Microsoft o365 SMTP Server Or Your Emails May End Up In Spam  Jul 20, 2021 ](/blog/announcements/alert-fix-spf-dkim-settings-for-your-email-forwarding-set-up-through-microsoft-o365-smtp-server-or-your-emails-may-end-up-in-spam/)[  News 6m  Cyber Security News Update, Week 1 of 2022  Jan 7, 2022 ](/blog/announcements/cyber-security-news-update-week-1-of-2022/)[  News 7m  Cybersecurity News Update, Week 1 of 2023  Jan 1, 2023 ](/blog/announcements/cyber-security-news-update-week-1-of-2023/)[  News 6m  Microsoft Cybersecurity Transparency, Chrome Update Required, Google Calendar Phishing, Cybersecurity News \[December 23, 2024\]  Jan 2, 2025 ](/blog/announcements/cyber-security-news-update-week-1-of-2025/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}],"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://www.g2.com/products/phish-protection-by-duocircle/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://support.duocircle.com"},"knowsAbout":["Email Security","Email Authentication","SPF","DKIM","DMARC","Phishing Protection","Spam Filtering","SMTP Relay","Email Deliverability","Email Forwarding"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"DuoCircle LLC","url":"https://www.duocircle.com","description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}
```

```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"EasyPark Data Breach, Ohio Lottery Cyberattack, GTA 5 Leak, Cybersecurity News [December 25, 2023]","description":"Stay a step ahead of threat actors with our latest coverage in cybersecurity.","url":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-1-of-2024/","datePublished":"2024-01-04T15:15:08.000Z","dateModified":"2025-05-19T12:18:09.000Z","dateCreated":"2024-01-04T15:15:08.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-1-of-2024/"},"articleSection":"announcements","keywords":"News, Security, Updates","wordCount":853,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2024/01/phishing-protection.jpg","caption":"cybersecurity","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}},{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":2,"name":"News"},{"@type":"ListItem","position":3,"name":"EasyPark Data Breach, Ohio Lottery Cyberattack, GTA 5 Leak, Cybersecurity News [December 25, 2023]","item":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-1-of-2024/"}]}]
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://www.duocircle.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":3,"name":"News","item":"https://www.duocircle.comundefined"},{"@type":"ListItem","position":4,"name":"EasyPark Data Breach, Ohio Lottery Cyberattack, GTA 5 Leak, Cybersecurity News [December 25, 2023]","item":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-1-of-2024/"}]}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"EasyPark Data Breach, Ohio Lottery Cyberattack, GTA 5 Leak, Cybersecurity News [December 25, 2023]","description":"Stay a step ahead of threat actors with our latest coverage in cybersecurity.","url":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-1-of-2024/","datePublished":"2024-01-04T15:15:08.000Z","dateModified":"2025-05-19T12:18:09.000Z","dateCreated":"2024-01-04T15:15:08.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-1-of-2024/"},"articleSection":"announcements","keywords":"News, Security, Updates","wordCount":853,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2024/01/phishing-protection.jpg","caption":"cybersecurity","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```