Magellan Health, the Fortune 500 insurance company, has reported a ransomware attack and a data breach. The company, which says it "empowers 1 in 10 Americans to lead healthier, more vibrant lives" according to its website, said the incident was discovered on April 11. It also said that it became apparent during a forensic investigation that the ransomware attack was the final stage in a longer campaign. READ MORE...
The Norwegian Investment Fund has been swindled out of $10m (£8.2m) by fraudsters who pulled off what's been described as "an advanced data breach." Norfund - the world's largest sovereign wealth fund, created from saved North Sea Oil revenues and currently worth over $1tn - said a hacker was able to manipulate the organization into routing a loan intended for a Cambodian microfinance organization into an account controlled by the crooks. READ MORE...
Enterprise software maker SAP released its May security patches, which cover six critical issues in several of its products, three of them with a severity score very close to maximum. All but one of these flaws are remotely exploitable, require no user interaction, and have a low attack complexity. Not all of them are new vulnerabilities, though, one of them is an update to a security note from April 2018. READ MORE...
A cyber-espionage malware has been discovered that's capable of collecting and exfiltrating sensitive documents from within air-gapped networks. The malware, dubbed Ramsay, is still under active development - so far, researchers have found three different samples, with each sample adding new features. However, Ramsay's targeting of air-gapped networks make the toolkit a formidable threat, researchers say. READ MORE...
Among the vulnerabilities patched by Microsoft on May 2020 Patch Tuesday is CVE-2020-1048, a "lowly" privilege escalation vulnerability in the Windows Print Spooler service. The vulnerability did not initially get much public attention but, as security researchers have since noted, the attackers who deployed Stuxnet ten years ago used a similar one to great effect. READ MORE...