IT Security Newsletter

IT Security Newsletter - 5/14/2020

Written by Cadre | Thu, May 14, 2020

Healthcare Giant Magellan Struck with Ransomware, Data Breach

Magellan Health, the Fortune 500 insurance company, has reported a ransomware attack and a data breach. The company, which says it "empowers 1 in 10 Americans to lead healthier, more vibrant lives" according to its website, said the incident was discovered on April 11. It also said that it became apparent during a forensic investigation that the ransomware attack was the final stage in a longer campaign. READ MORE...

World's largest sovereign wealth fund conned out of $10m in cyber-attack

The Norwegian Investment Fund has been swindled out of $10m (£8.2m) by fraudsters who pulled off what's been described as "an advanced data breach." Norfund - the world's largest sovereign wealth fund, created from saved North Sea Oil revenues and currently worth over $1tn - said a hacker was able to manipulate the organization into routing a loan intended for a Cambodian microfinance organization into an account controlled by the crooks. READ MORE...

SAP May 2020 Security Patch Day delivers critical updates

Enterprise software maker SAP released its May security patches, which cover six critical issues in several of its products, three of them with a severity score very close to maximum. All but one of these flaws are remotely exploitable, require no user interaction, and have a low attack complexity. Not all of them are new vulnerabilities, though, one of them is an update to a security note from April 2018. READ MORE...

Ramsay Malware Targets Air-Gapped Networks

A cyber-espionage malware has been discovered that's capable of collecting and exfiltrating sensitive documents from within air-gapped networks. The malware, dubbed Ramsay, is still under active development - so far, researchers have found three different samples, with each sample adding new features. However, Ramsay's targeting of air-gapped networks make the toolkit a formidable threat, researchers say. READ MORE...

Fear the PrintDemon? Upgrade Windows to patch easily exploited flaw

Among the vulnerabilities patched by Microsoft on May 2020 Patch Tuesday is CVE-2020-1048, a "lowly" privilege escalation vulnerability in the Windows Print Spooler service. The vulnerability did not initially get much public attention but, as security researchers have since noted, the attackers who deployed Stuxnet ten years ago used a similar one to great effect. READ MORE...

  • ...in 1804, the Lewis and Clark Expedition departs to map and explore the Louisiana Purchase.
  • ...in 1948, Israel is declared as an independent state.
  • ...in 1955, the Warsaw Pact treaty is signed by the Soviet Union and seven other Communist bloc nations.
  • ...in 1973, Skylab, the United States' first space station, is launched.