π’ Southwest Health Center hit by data breach π’
π Read
via "ITPro".
So far, there have been no reports of foul play or misuse of exposed dataπ Read
via "ITPro".
IT PRO
Southwest Health Center hit by data breach | IT PRO
So far, there have been no reports of foul play or misuse of exposed data
π’ Online Safety Bill: Messaging apps 'forced to scan messages' for child abuse content in fresh amendment π’
π Read
via "ITPro".
Apps utilising end-to-end encryption would require backdoors or new mechanisms to allow user data to be scanned and passed on to authoritiesπ Read
via "ITPro".
IT PRO
Online Safety Bill: Messaging apps 'forced to scan messages' for child abuse content in fresh amendment | IT PRO
Apps utilising end-to-end encryption would require backdoors or new mechanisms to allow user data to be scanned and passed on to authorities
π’ Kaspersky appoints new territory manager for UK&I π’
π Read
via "ITPro".
Channel veteran Stuart Peters is tasked with expanding the cybersecurity providerβs presence in the regionπ Read
via "ITPro".
IT PRO
Kaspersky appoints new territory manager for UK&I | IT PRO
Channel veteran Stuart Peters is tasked with expanding the cybersecurity providerβs presence in the region
π1
π’ The new wave of cyber security threats facing critical national infrastructure (CNI) π’
π Read
via "ITPro".
CNI is increasingly becoming a viable target, thanks to a litany of new malware strains, with cyber attacks threatening to have serious consequencesπ Read
via "ITPro".
IT PRO
The new wave of cyber security threats facing critical national infrastructure (CNI) | IT PRO
CNI is increasingly becoming a viable target, thanks to a litany of new malware strains, with cyber attacks threatening to have serious consequences
π’ QR codes are just as insecure as anything else π’
π Read
via "ITPro".
A browser locked down tighter than a duckβs derriere wonβt save you from phishing attacks β but getting to grips with the latest advice and best practice mightπ Read
via "ITPro".
IT PRO
QR codes are just as insecure as anything else | IT PRO
A browser locked down tighter than a duckβs derriere wonβt save you from phishing attacks β but getting to grips with the latest advice and best practice might
π’ UK government must 'engage with tech giants' on foreign policy π’
π Read
via "ITPro".
The Foreign Affairs Committee urge the government to work more closely with big tech, which is becoming the new battleground for threats to national privacy and securityπ Read
via "ITPro".
IT PRO
Engage with tech giants on foreign policy or risk national security, MPs tell government | IT PRO
The Foreign Affairs Committee urge the government to work more closely with big tech, which is becoming the new battleground for threats to national privacy and security
π’ Apple launching Lockdown Mode with iOS 16 π’
π Read
via "ITPro".
Apple breaks its bug bounty record with $2 million top prize, alongside $10 million grant funding, as it launches industry-first protections for highly targeted individualsπ Read
via "ITPro".
IT PRO
Apple launching Lockdown Mode with iOS 16 to guard against Pegasus-style spyware | IT PRO
Apple breaks its bug bounty record with $2 million top prize, alongside $10 million grant funding, as it launches industry-first protections for highly targeted individuals
π’ EU inches closer to blocking Meta from sending personal data to US π’
π Read
via "ITPro".
The decision still needs to be approved by other European data regulators, but could see the shut down of Instagram and Facebook on the continentπ Read
via "ITPro".
IT PRO
EU inches closer to blocking Meta from sending personal data to US | IT PRO
The decision still needs to be approved by other European data regulators, but could see the shut down of Instagram and Facebook on the continent
π’ US unveils next-gen encryption tools to withstand quantum computing attacks π’
π Read
via "ITPro".
The National Institute of Standards and Technology (NIST) hopes to offer a variety of tools for quantum-proof encryptionπ Read
via "ITPro".
IT PRO
US unveils next-gen encryption tools to withstand quantum computing attacks | IT PRO
The National Institute of Standards and Technology (NIST) hopes to offer a variety of tools for quantum-proof encryption
π’ Maui ransomware actively targeting US healthcare organizations π’
π Read
via "ITPro".
North Korean state-sponsored attackers are said to have been targeting critical services since at least May 2021π Read
via "ITPro".
IT PRO
Maui ransomware actively targeting US healthcare organizations | IT PRO
North Korean state-sponsored attackers are said to have been targeting critical services since at least May 2021
π’ Why are ransomware gangs pivoting to Rust? π’
π Read
via "ITPro".
The developer-favourite language is fast becoming a delight for ransomware criminalsπ Read
via "ITPro".
IT PRO
Why are ransomware gangs pivoting to Rust? | IT PRO
The developer-favourite language is fast becoming a delight for ransomware criminals
π’ SoftBank under pressure over links with 'blacklisted' Chinese facial recognition firm π’
π Read
via "ITPro".
A subsidiary of the Japanese tech giant that conducts business with Mastercard and Visa relies on tech by the sanctioned SenseTimeπ Read
via "ITPro".
IT PRO
SoftBank under pressure over links with 'blacklisted' Chinese facial recognition firm | IT PRO
A subsidiary of the Japanese tech giant that conducts business with Mastercard and Visa relies on tech by the sanctioned SenseTime
π’ Microsoft identifies sophisticated Hive ransomware variant written in Rust π’
π Read
via "ITPro".
The move away from Go and an encryption redesign makes the new strain even more of a threat to business targetsπ Read
via "ITPro".
ITPro
Microsoft identifies sophisticated Hive ransomware variant written in Rust
The move away from Go and an encryption redesign makes the new strain even more of a threat to business targets
π’ MI5 and FBI warn businesses over mass Chinese IP theft π’
π Read
via "ITPro".
The security services urged organisations to consolidate security practices and approach Chinese business relationships with cautionπ Read
via "ITPro".
IT PRO
MI5 and FBI warn businesses over mass Chinese IP theft | IT PRO
The security services urged organisations to consolidate security practices and approach Chinese business relationships with caution
π1
βΌ CVE-2022-27910 βΌ
π Read
via "National Vulnerability Database".
In Joomla component 'Joomlatools - DOCman 3.5.13 (and likely most versions below)' are affected to an reflected Cross-Site Scripting (XSS) in an image upload functionπ Read
via "National Vulnerability Database".
βοΈ Experian, You Have Some Explaining to Do βοΈ
π Read
via "Krebs on Security".
Twice in the past month KrebsOnSecurity has heard from readers who've had their accounts at big-three credit bureau Experian hacked and updated with a new email address that wasn't theirs. In both cases the readers used password managers to select strong, unique passwords for their Experian accounts. Research suggests identity thieves were able to hijack the accounts simply by signing up for new accounts at Experian using the victim's personal information and a different email address.π Read
via "Krebs on Security".
Krebsonsecurity
Experian, You Have Some Explaining to Do
Twice in the past month KrebsOnSecurity has heard from readers who've had their accounts at big-three credit bureau Experian hacked and updated with a new email address that wasn't theirs. In both cases the readers used password managers to selectβ¦
π1
βΌ CVE-2022-31571 βΌ
π Read
via "National Vulnerability Database".
The akashtalole/python-flask-restful-api repository through 2019-09-16 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31562 βΌ
π Read
via "National Vulnerability Database".
The waveyan/internshipsystem repository through 2018-05-22 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31582 βΌ
π Read
via "National Vulnerability Database".
The shaolo1/VideoServer repository through 2019-09-21 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31580 βΌ
π Read
via "National Vulnerability Database".
The sanojtharindu/caretakerr-api repository through 2021-05-17 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".