IT Security Newsletter

IT Security Newsletter - 4/15/2020

Written by Cadre | Wed, Apr 15, 2020

Microsoft patches 3 Windows 0-days under active exploit

Microsoft has patched three actively exploited vulnerabilities that allow attackers to execute malicious code or elevate system privileges on devices that run Windows. Two of the security flaws-tracked as CVE-2020-1020 and CVE-2020-0938-reside in the Adobe Type Manager Library, a Windows DLL file that a wide variety of apps use to manage and render fonts available from Adobe Systems. READ MORE...

WordPress WooCommerce sites targeted by card swiper attacks

Credit card swipers have found a hard-to-detect way to target WordPress websites using the WooCommerce plugin by secretly modifying legitimate JavaScript files. That's according to web security company Sucuri, which has detailed a recent attack it was called into investigate on a site that had experienced a mysterious spate of credit card fraud. How this was happening wasn't clear until Sucuri ran an integrity check on the files. READ MORE...

WebEx phishing scam spoofs Cisco to target remote workers

The Cofense Phishing Defense Center (PDC) has discovered a new phishing campaign that targets employees working from home during the coronavirus pandemic. PDC claims that hackers are attempting to harvest Cisco WebEx credentials using a security warning for the application and have successfully averted Cisco's own Secure Email Gateway. PDC predicts that phishing emails will continue to plague remote workers in the next few months. READ MORE...

Cyberattacks Target Healthcare Orgs on Coronavirus Frontlines

Recent malware campaigns reveal that cybercriminals aren't sparing healthcare firms, medical suppliers and hospitals on the frontlines of the coronavirus pandemic. Researchers have shed light on two recently uncovered malware campaigns: one targeting a Canadian government healthcare organization and a Canadian medical research university, and the other hitting medical organizations and medical research facilities worldwide. READ MORE...

Krebs on Security: Microsoft Patch Tuesday, April 2020 Edition

Microsoft today released updates to fix 113 security vulnerabilities in its various Windows operating systems and related software. Those include at least three flaws that are actively being exploited, as well as two others which were publicly detailed prior to today, potentially giving attackers a head start in figuring out how to exploit the bugs. Nineteen of the weaknesses fixed on this Patch Tuesday were assigned Microsoft's most-dire "critical" rating. READ MORE...

Microsoft delays end of support for older Windows, software versions

Microsoft has delayed the end of support dates for Windows 10 version 1709/1809 and older software and services to reduce the stress already being felt by organizations during the Coronavirus pandemic. With most organizations having their employees work remotely, there is little workforce and time to adequately prepare for software, services, and operating systems reaching the end of support and the handling of necessary upgrades. READ MORE...

The coronavirus pandemic turned Folding@Home into an exaFLOP supercomputer

Almost 20 years ago, faculty in the chemistry department of Stanford University launched a distributed computing project called Folding@Home (F@H). They sought to understand how proteins self-organize and why this process sometimes goes wrong, causing issues such as cancer and Alzheimer's Disease. F@H hit its pinnacle of mindshare-and performance-in 2007, when Sony added it to the PlayStation 3. READ MORE...

  • ...in 1452, Italian painter, sculptor, and architect Leonardo da Vinci is born in Florence.
  • ...in 1865, at 7:22 a.m., Abraham Lincoln, the 16th president of the United States, dies from a bullet wound inflicted the night before by John Wilkes Booth.
  • ...in 1912, the British ocean liner Titanic sinks into the North Atlantic Ocean about 400 miles south of Newfoundland, Canada.
  • ...in 1947, Jackie Robinson, age 28, becomes the first African American player in Major League Baseball.