Cloud Security Alliance News Clipping Site

Tag: incident

  • The Register: Healthcare attacks spread beyond US – just ask India’s Star Health

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/11/star_health_breach/ Source: The Register Title: Healthcare attacks spread beyond US – just ask India’s Star Health Feedly Summary: Acknowledges bulk customer data leak weeks after Telegram channels dangled it online Leading Indian health insurance provider Star Health has admitted to being the victim of a cyber attack after criminals claimed they had posted…

  • Alerts: Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies

    by

    system automation
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2024/10/10/best-practices-configure-big-ip-ltm-systems-encrypt-http-persistence-cookies Source: Alerts Title: Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies Feedly Summary: CISA has observed cyber threat actors leveraging unencrypted persistent cookies managed by the F5 BIG-IP Local Traffic Manager (LTM) module to enumerate other non-internet facing devices on the network. F5 BIG-IP is a suite of hardware and…

  • The Register: Fore-get about privacy, golf tech biz leaves 32M data records on the fairway

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/10/trackman_unprotected_database/ Source: The Register Title: Fore-get about privacy, golf tech biz leaves 32M data records on the fairway Feedly Summary: Researcher spots 110 TB of sensitive info sitting in unprotected database Nearly 32 million records belonging to users of tech from Trackman were left exposed to the internet, sitting in a non-password protected…

  • Slashdot: Chinese Hack of US ISPs Show Why Apple Is Right About Backdoors

    by

    system automation
    in

    Source URL: https://apple.slashdot.org/story/24/10/10/025236/chinese-hack-of-us-isps-show-why-apple-is-right-about-backdoors?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Chinese Hack of US ISPs Show Why Apple Is Right About Backdoors Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a significant cybersecurity incident involving Chinese hackers accessing U.S. ISPs’ systems, which were compromised due to security backdoors created for law enforcement wiretaps. This situation emphasizes…

  • Hacker News: Mozilla fixes Firefox zero-day actively exploited in attacks

    by

    system automation
    in

    Source URL: https://www.bleepingcomputer.com/news/security/mozilla-fixes-firefox-zero-day-actively-exploited-in-attacks/ Source: Hacker News Title: Mozilla fixes Firefox zero-day actively exploited in attacks Feedly Summary: Comments AI Summary and Description: Yes Summary: Mozilla has released an emergency update for Firefox to patch a serious use-after-free vulnerability (CVE-2024-9680) that is actively exploited by attackers. This flaw allows unauthorized code execution due to improper memory…

  • The Register: OpenAI says Chinese gang tried to phish its staff

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/10/china_phish_openai/ Source: The Register Title: OpenAI says Chinese gang tried to phish its staff Feedly Summary: Claims its models aren’t making threat actors more sophisticated – but is helping debug their code OpenAI has alleged the company disrupted a spear-phishing campaign that saw a China-based group target its employees through both their personal…

  • Wired: Internet Archive Breach Exposes 31 Million Users

    by

    system automation
    in

    Source URL: https://www.wired.com/story/internet-archive-hacked/ Source: Wired Title: Internet Archive Breach Exposes 31 Million Users Feedly Summary: The hack exposed the data of 31 million users as the embattled Wayback Machine maker scrambles to stay online and contain the fallout of digital —and legal—attacks. AI Summary and Description: Yes Summary: The Internet Archive recently confirmed a major…

  • The Register: Internet Archive leaks user info and succumbs to DDoS

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/10/internet_archive_ddos_data_leak/ Source: The Register Title: Internet Archive leaks user info and succumbs to DDoS Feedly Summary: 31 million users’ usernames, email addresses and salted-encrypted passwords are out there The Internet Archive had a bad day on the infosec front, after being DDoSed and exposing user data.… AI Summary and Description: Yes Summary: The…

  • Slashdot: Turkey Blocks Discord

    by

    system automation
    in

    Source URL: https://tech.slashdot.org/story/24/10/09/2030216/turkey-blocks-discord?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Turkey Blocks Discord Feedly Summary: AI Summary and Description: Yes Summary: The text discusses Turkey’s recent decision to block access to the messaging platform Discord due to its refusal to cooperate with authorities in sharing potentially illegal information, particularly regarding child sexual abuse and obscenity. This action underscores tensions…

  • The Register: Moscow-adjacent GoldenJackal gang strikes air-gapped systems with custom malware

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/09/goldenjackal_custom_malware/ Source: The Register Title: Moscow-adjacent GoldenJackal gang strikes air-gapped systems with custom malware Feedly Summary: USB sticks help, but it’s unclear how tools that suck malware from them are delivered A cyberespionage APT crew named GoldenJackal hacked air-gapped PCs belonging to government and diplomatic entities at least twice using two sets of…