August 6, 2022

UK NHS Suffers Outage After Cyberattack on Managed Service Provider United Kingdom’s National Health Service (NHS) 111 emergency services are affected by a significant and ongoing outage triggered by a cyberattack that hit the systems of British managed service provider (MSP) Advanced. Advanced’s Adastra client patient management solution, which is Read more…

The Week in Ransomware – August 5th 2022 – A look at Cyber Insurance For the most part, it has been a quiet week on the ransomware front, with a few new reports, product developments, and attacks revealed. Mandiant revealed this week that an Iranian threat actor is behind ransomware attacks on Read more…

Slack Resets Passwords After Exposing Hashes in Invitation Links Slack notified roughly 0.5% of its users that it reset their passwords after fixing a bug exposing salted password hashes when creating or revoking shared invitation links for workspaces. “When a user performed either of these actions, Slack transmitted a hashed version of Read more…

Hackers are Actively Exploiting Password-stealing Flaw in Zimbra The Cybersecurity and Infrastructure Security Agency (CISA) has added the Zimbra CVE-2022-27824 flaw to its ‘Known Exploited Vulnerabilities Catalog,’ indicating that it is actively exploited in attacks by hackers. This high-severity vulnerability allows an unauthenticated attacker to steal email account credentials in cleartext form Read more…

Twitter Confirms zero-day Used to Expose Data of 5.4 million Accounts Twitter has confirmed a recent data breach was caused by a now-patched zero-day vulnerability used to link email addresses and phone numbers to users’ accounts, allowing a threat actor to compile a list of 5.4 million user account profiles. Last Read more…

Facebook Finds New Android Ualware used by APT Hackers Meta (Facebook) has released its Q2 2022 adversarial threat report, and among the highlights is the discovery of two cyber-espionage clusters connected to hacker groups known as ‘Bitter APT’ and APT36 (aka ‘Transparent Tribe’) using new Android malware. These cyberspying operatives Read more…

DuckDuckGo Browser Now Blocks All Microsoft Trackers, Most of the Time DuckDuckGo announced today that they will now be blocking all third-party Microsoft tracking scripts in their privacy browser after failing to block them in the past. This change comes after the company faced massive blowback in May for not blocking Read more…

Critical RCE Vulnerability Impacts 29 Models of DrayTek Routers Researchers at Trellix have discovered a critical unauthenticated remote code execution (RCE) vulnerability impacting 29 models of the DrayTek Vigor series of business routers. The vulnerability is tracked as CVE-2022-32548 and carries a maximum CVSS v3 severity score of 10.0, categorizing Read more…

New Traffic Light Protocol Standard Released After Five Years The Forum of Incident Response and Security Teams (FIRST) has published TLP 2.0, a new version of its Traffic Light Protocol (TLP) standard, five years after the release of the initial version. The TLP standard is used in the computer security incident response Read more…

Hackers Try to Extort Survey Firm QuestionPro After Alleged Data Theft Hackers attempted to extort the online survey platform QuestionPro after claiming to have stolen the company’s database containing respondents’ personal information. QuestionPro is an online service allowing businesses to create and conduct surveys to perform market research. The company Read more…