<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 10/1/2024

SHARE

Top News

North Korea Hackers Linked to Breach of German Missile Manufacturer

A professional hacking team linked to the North Korean government has broken into Diehl Defence, a German company that manufactures Iris-T air defense systems, using a clever phishing campaign with fake job offers and advanced social engineering tactics, according to a report by Der Spiegel. The attack, pinned on the Kimsuky APT, combined the use of booby-trapped PDF files with spear-phishing lures offering Diehl Defence employees jobs with American defense contractors. READ MORE...

Breaches

Hawaii Health Center Discloses Data Breach After Ransomware Attack

The Community Clinic of Maui in Hawaii, a nonprofit healthcare organization doing business as Malama I Ke Ola Health Center, informed authorities in the US last week that a cyberattack suffered earlier this year has resulted in a data breach impacting over 120,000 individuals. Local media reported in May that it took the Maui healthcare organization more than two weeks to reopen after experiencing "major computer problems". READ MORE...

Information Security

Use Windows event logs for ransomware investigations, JPCERT/CC advises

The JPCERT Coordination Center - the first Computer Security Incident Response Team established in Japan - has compiled a list of entries in Windows event logs that could help enterprise defenders respond to human-operated ransomware attacks and potentially limit the malware's damage. "The difficult part of the initial response to a human-operated ransomware attack is identifying the attack vector," the organization pointed out. READ MORE...

Exploits/Vulnerabilities

Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities

The US cybersecurity agency CISA on Monday warned that years-old vulnerabilities in SAP Commerce, Gpac framework, and D-Link DIR-820 routers have been exploited in the wild. The oldest of the flaws is CVE-2019-0344 (CVSS score of 9.8), an unsafe deserialization issue in the 'virtualjdbc' extension of SAP Commerce Cloud that allows attackers to execute arbitrary code on a vulnerable system, with 'Hybris' user rights. READ MORE...

On This Date

  • ...in 1880, John Philip Sousa becomes leader of the United States Marine Corps Band.
  • ...in 1908, Ford introduces the Model T automobile at a price of $825 -- $22,000 in 2018 dollars.
  • ...in 1962, Johnny Carson debuts as regular host of NBC's "Tonight" show.
  • ...in 1989, actress Brie Larson ("Room", "Captain Marvel") is born in Sacramento, CA.