<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 1/7/2022

SHARE

Breaches

FlexBooker discloses data breach, over 3.7 million accounts impacted

Accounts of more than three million users of the U.S.-based FlexBooker appointment scheduling service have been stolen in an attack before the holidays and are now being traded on hacker forums. The same intruders are offering databases claiming to be from two other entities: racing media organization Racing[.]com and Redbourne Group's rediCASE case management software, both from Australia. READ MORE...


Online Pharmacy Service Ravkoo Discloses Data Breach

United States-based online pharmacy service Ravkoo this week started notifying patients of a data breach that potentially resulted in the exposure of personal information. Initially discovered in late September, the breach was the result of a cyberattack targeting Ravkoo's prescription portal, which is hosted on Amazon Web Services (AWS). The prescription fulfillment service says that some prescription and health information might have been compromised during the incident. READ MORE...

Software Updates

January 2022 Patch Tuesday forecast: Old is new again

Welcome to 2022 and a new year of patch management excitement! I'm rapidly approaching 40 years working in this industry and I can honestly say there is rarely a dull day. If you are willing to take on the challenges presented, it is a great industry to work in and I hope you all are excited to start the new year too. Let's look at some recent events which will be influencing this month's patch releases. READ MORE...

Malware

FinalSite ransomware attack shuts down thousands of school websites

FinalSite, a leading school website services provider, has suffered a ransomware attack disrupting access to websites for thousands of schools worldwide. FinalSite is a software as a service (SaaS) provider that offers website design, hosting, and content management solutions for K-12 school districts and universities. FinalSite claims to provide solutions for over 8,000 schools and universities across 115 different countries. READ MORE...


QNAP warns of ransomware targeting Internet-exposed NAS devices

QNAP has warned customers today to secure Internet-exposed network-attached storage (NAS) devices immediately from ongoing ransomware and brute-force attacks. "QNAP urges all QNAP NAS users to follow the security setting instructions below to ensure the security of QNAP networking devices," the Taiwanese NAS maker said in a press release issued today. READ MORE...

Information Security

Norton 360 Now Comes With a Cryptominer

Norton 360, one of the most popular antivirus products on the market today, has installed a cryptocurrency mining program on its customers' computers. Norton's parent firm says the cloud-based service that activates the program and allows customers to profit from the scheme - in which the company keeps 15 percent of any currencies mined - is "opt-in," meaning users have to agree to enable it. But many Norton users complain the mining program is difficult to remove. READ MORE...

Exploits/Vulnerabilities

Google Docs Comments Weaponized in New Phishing Campaign

The operators behind a recent phishing campaign are exploiting the commenting feature in Google Docs to send seemingly legitimate emails that convince targets to click malicious links. This isn't the first time threat actors have found ways to exploit user trust in Google's popular productivity suite, report the Avanan researchers who discovered this campaign. Earlier this year, they observed attackers sending links to Google Docs files that contained a malicious download. READ MORE...


CDN Cache Poisoning Allows DoS Attacks Against Cloud Apps

A Romanian vulnerability researcher has discovered more than 70 flaws in combinations of cloud applications and content delivery networks (CDNs) that could be used to poison the CDN caches and result in denial-of-service (DoS) attacks on the applications. In a late December post, security researcher Iustin Ladunca revealed he had found inconsistencies in the way that a variety of content-caching services and technologies handled common headers variations. READ MORE...


Partially Unpatched VMware Bug Opens Door to Hypervisor Takeover

A security vulnerability in VMware's Cloud Foundation, ESXi, Fusion and Workstation platforms could pave the way for hypervisor takeover in virtual environments - and a patch is still pending for some users. The issue affects a wide swath of the virtualization specialist's portfolio and affects Windows, Linux and Mac users. The bug (CVE-2021-22045) is a high-severity heap-overflow vulnerability carrying a CVSS rating of 7.7 out of 10. READ MORE...

On This Date

  • ...in 1782, the first American commercial bank, the Bank of North America, opens.
  • ...in 1912, artist Charles Addams, the creator of the original "The Addams Family" cartoons in "The New Yorker", is born in Westfield, NJ.
  • ...in 1954, IBM gives the first public demonstration of machine translation, in which an IBM 701 mainframe translated 60 Russian phrases to English.
  • ...in 1964, actor Nicolas Cage ("National Treasure", "Raising Arizona") is born in Long Beach, CA.