Hackers Target Colombia’s Healthcare System With Ransomware
The attack disrupted IT operations, websites and scheduling of medical appointments
Cyber News, Cyber Threat TrendsUnwrapping Some of the Holiday Season’s Biggest Scams
Even with the holidays in full swing, scammers won’t let up. In fact, it’s high time for some of their nastiest cons as people travel, donate to charities, and simply try to enjoy their time with friends and family. Unfortunate as it is, scammers see this time of year as a tremendous opportunity to profit. […]
Cyber News, Cyber Threat Trends
- December 1, 2022
Researchers found security pitfalls in IBM’s cloud infrastructure
Security researchers recently probed IBM Cloud’s database-as-a-service infrastructure and found several security issues that granted them access to the internal server used to build database images for customer deployments. The demonstrated attack highlights some common security oversights that can lead to supply chain compromises in cloud infrastructure. Developed by researchers from security firm Wiz, the […]
Cyber News, Cyber Threat TrendsWhatsApp Files on Dark Web Show Millions of Records For Sale
The list went on sale for four days and is now being distributed for free among dark web users
Cyber News, Cyber Threat TrendsSpyware Vendor Variston Exploited N-Days in Chrome, Firefox, Windows
The claims come from Google’s Threat Analysis Group, which published an advisory about the threat
Cyber News, Cyber Threat Trends
- December 1, 2022
Google Accuses Spanish Spyware Vendor of Exploiting Chrome, Firefox, and Windows Zero-Days
A Barcelona-based surveillanceware vendor named Variston IT is said to have surreptitiously planted spyware on targeted devices by exploiting several zero-day flaws in Google Chrome, Mozilla Firefox, and Windows, some of which date back to December 2018. “Their Heliconia framework exploits n-day vulnerabilities in Chrome, Firefox, and Microsoft Defender, and provides all the tools necessary […]
Cyber News, Cyber Threat TrendsSirius XM Software Vulnerability
This is new: Newly revealed research shows that a number of major car brands, including Honda, Nissan, Infiniti, and Acura, were affected by a previously undisclosed security bug that would have allowed a savvy hacker to hijack vehicles and steal user data. According to researchers, the bug was in the car’s Sirius XM telematics infrastructure […]
Cyber News, Cyber Threat Trends
- December 1, 2022
Software projects face supply chain security risk due to insecure artifact downloads via GitHub Actions
The way build artifacts are stored by the GitHub Actions platform could enable attackers to inject malicious code into software projects with CI/CD (continuous integration and continuous delivery) workflows that don’t perform sufficient filtering when downloading artifacts. Cybersecurity researchers have identified several popular artifacts download scripts used by thousands of repositories that are vulnerable to […]
Cyber News, Cyber Threat Trends
- December 1, 2022
Scheduling Meetings with Amazon Chime
Getting started with Amazon Chime In my last post I wrote a summary of my posts on AWS Security. In this post I’ll explain how to use Amazon Chime, which I was using to host an online class recently. I’ve been using Chime successfully for a long time but this post might help people understand a […]
Cyber News, Cyber Threat Trends