<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 11/11/2022

SHARE

Top News

Microsoft links Russia's military to cyberattacks in Poland and Ukraine

Microsoft on Thursday fingered Russia's military intelligence arm as the likely culprit behind ransomware attacks last month that targeted Polish and Ukrainian transportation and logistics organizations. If the assessment by members of the Microsoft Security Threat Intelligence Center (MSTIC) is correct, it could be cause for concern for the US government and its European counterparts. Poland is a member of NATO and a staunch supporter of Ukraine in its bid to stave off an unprovoked Russian invasion. READ MORE...

Malware

US Health Dept warns of Venus ransomware targeting healthcare orgs

The U.S. Department of Health and Human Services (HHS) warned today that Venus ransomware attacks are also targeting the country's healthcare organizations. In an analyst note issued by the Health Sector Cybersecurity Coordination Center (HC3), HHS' security team also mentions that it knows about at least one incident where Venus ransomware was deployed on the networks of a U.S. healthcare org. READ MORE...


LockBit ransomware suspect arrested in Canada, faces charges in US

Canadian law enforcement officials arrested a dual Russian and Canadian national in October accused of participating in LockBit ransomware attacks against targets across the world, costing victims millions of dollars. The Justice Department identified the suspect as Mikhail Vasiliev who, according to court documents unsealed Thursday, faces charges related to conspiracy to damage computers and transmitting ransom demands. Vasiliev faces up to five years in prison and is awaiting extradition to the U.S. READ MORE...

Information Security

An $8 mess - Twitter Blue 'verified' accounts push crypto scams

Twitter has officially rolled out its Twitter Blue program for an $8 monthly fee that confers upon the Tweeter multiple benefits, including the much-sought blue badge. Whereas previously, only accounts of notable personalities and organizations earned the blue-tick, it's now open to anyone willing to shed the monthly fee. But, all this has led to its own set of problems, such as threat actors now impersonating famous people and still being granted a "verified" status. READ MORE...


Twitter's CISO Takes Off, Leaving Security an Open Question

Twitter CISO Lea Kissner has become the latest high-ranking executive to leave the company following Elon Musk's controversial $44 billion acquisition of the social media giant last month. In a tweet Thursday, Kissner said they had resigned from Twitter but did not offer any reason for the decision. "I've made the hard decision to leave Twitter," Kissner wrote. "I've had the opportunity to work with amazing people and I'm so proud of the privacy, security, and IT teams and the work we've done." READ MORE...

Exploits/Vulnerabilities

5 Easy Steps to Bypass Google Pixel Lock Screens

The November 2022 Android update includes a remediation for a bug that could allow an attacker to bypass the Google Pixel lock screen. The researcher behind the discovery, David Schütz, reported the Google Pixel security flaw back in June after a series of errors led him to finding the vulnerability. He had forgotten his PIN after his device ran out of battery and died. After reboot, Schütz entered an incorrect PIN number three times, triggering the SIM card to lock itself. READ MORE...


Laptop flaws could help malware survive a hard disk wipe

PC manufacturer Lenovo has been forced to push out a security update to more than two dozen of its laptop models, following the discovery of high severity vulnerabilities that could be exploited by malicious hackers. Security researchers at ESET discovered flaws in 25 of its laptop models - including IdeaPads, Slims, and ThinkBooks - that could be used to disable the UEFI Secure Boot process. READ MORE...

On This Date

  • ...in 1918, Germany signs an armistice agreement with the Allies, ending World War I.
  • ...in 1921, the Tomb of the Unknowns is dedicated at Arlington National Cemetery.
  • ...in 1922, writer Kurt Vonnegut, Jr. ("Slaughterhouse-Five", "Cat's Cradle") is born in Indianapolis, IN.
  • ...in 1925, actor/comedian Jonathan Winters ("It's a Mad, Mad, Mad, Mad World", "Mork & Mindy") is born in Belbrook, Ohio.