IT Security Newsletter

IT Security Newsletter - 9/16/2021

Written by Cadre | Thu, Sep 16, 2021

Customer Care Giant TTEC Hit By Ransomware

TTEC, a company used by some of the world's largest brands to help manage customer support and sales online and over the phone, is dealing with disruptions from a network security incident resulting from a ransomware attack, KrebsOnSecurity has learned. While many companies have been laying off or furloughing workers in response to the Coronavirus pandemic, TTEC has been massively hiring. Formerly TeleTech Holdings Inc., Englewood, Co.-based TTEC now has nearly 60,000 employees. READ MORE...

Mass Personal Data Theft From Paris Covid Tests: Hospitals

Hackers stole the personal data of around 1.4 million people who took Covid-19 tests in the Paris region in the middle of 2020, hospital officials in the French capital disclosed on Wednesday. Hospital officials said they filed a complaint with the Paris prosecutor's office on Wednesday after confirming on September 12 that such a cyber attack took place over the summer. READ MORE...

How APTs become long-term lurkers: Tools and techniques of a targeted attack

Detecting compromises by highly skilled attackers is no easy task, requiring advanced network traffic monitoring, behavioral analysis of endpoint logs, and even dedicated threat hunting teams that manually search for signs of compromise by imitating attackers. This is highlighted in a new McAfee report about a long-term compromise discovered on a customer network that started out as a simple malware infection investigation. READ MORE...

Microsoft accounts can go passwordless, making "password123" a thing of the past

Microsoft has been working to make passwordless sign-in for Windows and Microsoft accounts a reality for years now, and today those efforts come to fruition: The Verge reports that starting today, users can completely remove their passwords from their Microsoft accounts and opt to rely on Microsoft Authenticator or some other form of verification to sign in on new devices. READ MORE...

Free REvil ransomware master decrypter released for past victims

A free master decryptor for the REvil ransomware operation has been released, allowing all victims encrypted before the gang disappeared to recover their files for free. The REvil master decryptor was created by cybersecurity firm Bitdefender in collaboration with a trusted law enforcement partner. While Bitdefender could not share details about how they obtained the master decryption key or the law enforcement agency involved, it works for all REvil victims encrypted before July 13th. READ MORE...

De-identify, re-identify: Anonymised data's dirty little secret

Publishing data of all kinds offers big benefits for government, academic, and business users. Regulators demand that we make that data anonymous to deliver its benefits while protecting personal privacy. But what happens when people read between the lines? Making data anonymous is known as de-identifying it, but doing it properly is more challenging than it seems, says Wei Wang, professor of computer science and director of the Scalable Analytics Institute at UCLA. READ MORE...

Serious Flaw Found in HP OMEN Driver

A serious flaw has been found in the driver of a popular PC gaming software used by millions. Researchers from SentinelLabs published details of the vulnerability in the HP Omen Gaming Hub on September 14. They said that attackers could exploit the flaw to locally escalate to kernel-mode privileges. "With this level of access, attackers can disable security products, overwrite system components, corrupt the OS, or perform any malicious operations unimpeded," wrote researchers. READ MORE...

  • ...in 1620, the Mayflower sails from Plymouth, England, bound for the New World with 102 passengers.
  • ...in 1908, William C. Durant founds the General Motors Corporation.
  • ...in 1949, Warner. Bros. introduces the Road Runner in the cartoon short "Fast and Furry-ous."
  • ...in 1966, the Metropolitan Opera House opens at Lincoln Center in New York City.