<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 1/17/2023

SHARE

Breaches

Ugh! Norton LifeLock password manager accounts accessed by hackers

If you use Norton lifeLock as your password manager, your account may have been compromised. According to Bleeping Computer, Gen, the company behind Norton LifeLock (and other brands including Avast, Avira, AVG, ReputationDefender, and CCleaner), is sending data breach notifications to some of its customers warning that their accounts have been accessed following a credential-stuffing attack. READ MORE...

Hacking

Website of Canadian Liquor Distributor LCBO Infected With Web Skimmer

Canadian liquor distributor Liquor Control Board of Ontario (LCBO) has announced that a web skimmer injected into its online store was used to steal users' personal data. One of the largest liquor sellers in Canada, LCBO retails and distributes alcoholic beverages throughout the Ontario province, operating over 670 stores and employing more than 8,000 people. READ MORE...

Exploits/Vulnerabilities

MSI accidentally breaks Secure Boot for hundreds of motherboards

Over 290 MSI motherboards are reportedly affected by an insecure default UEFI Secure Boot setting settings that allows any operating system image to run regardless of whether it has a wrong or missing signature. This discovery comes from a Polish security researcher named Dawid Potocki, who claims that he did not receive a response despite his efforts to contact MSI and inform them about the issue. READ MORE...


Researchers to release PoC exploit for critical Zoho RCE bug, patch now

Proof-of-concept exploit code will be released later this week for a critical vulnerability allowing remote code execution (RCE) without authentication in several VMware products. Tracked as CVE-2022-47966, this pre-auth RCE security flaw is due to using an outdated and vulnerable third-party dependency, Apache Santuario. Successful exploitation enables unauthenticated threat actors to execute arbitrary code on ManageEngine servers if the SAML-based single-sign-on (SSO) is or was enabled. READ MORE...


InHand Industrial Router Vulnerabilities Expose Internal OT Networks to Attacks

A series of vulnerabilities affecting industrial routers made by InHand Networks could allow hackers to bypass security systems and gain access to internal operational technology (OT) networks from the internet. The US Cybersecurity and Infrastructure Security Agency (CISA) last week published an advisory to inform organizations about five vulnerabilities identified by a researcher at industrial cybersecurity firm Otorio in InHand's InRouter302 and InRouter615 cellular routers. READ MORE...

On This Date

  • ...in 1929, the cartoon character Popeye first appears in the comic strip "Thimble Theatre", drawn by E.C. Segar.
  • ...in 1933, TV ventriloquist Shari Lewis, creator of the characters Lamb Chop, Charlie Horse, and Hush Puppy, is born in New York City.
  • ...in 1942, three-time heavyweight champion boxer Muhammad Ali is born (as Cassius Clay) in Louisville, KY.
  • ...in 1961, President Dwight D. Eisenhower delivers his farewell address, warning against the rise of the "military-industrial complex."