IT Security Newsletter - 5/8/2023
1 Million Impacted by Data Breach at NextGen Healthcare
Healthcare solutions provider NextGen Healthcare has started informing roughly one million individuals that their personal information was compromised in a data breach. On Friday, NextGen Healthcare informed the Maine Attorney General's Office that it started sending notification letters to more than one million individuals, to inform them about the incident. READ MORE...
Western Digital store offline due to March breach
The Western Digital online store is offline as a result of the "network security incident" it suffered in March 2023. On May 5, 2023, the company emailed its customers to say that an unauthorized party obtained a copy of the database used for their online store, which contained some personal customer information. The company worries about the stolen data getting misused to launch phishing attacks and has advised users to take precautions against phishing. READ MORE...
MSI's firmware, Intel Boot Guard private keys leaked
The cybercriminals who breached Taiwanese multinational MSI last month have apparently leaked the company's private code signing keys on their dark web site. MSI (Micro-Star International) is a corporation that develops and sells computers (laptops, desktops, all-in-one PCs, servers, etc.) and computer hardware (motherboards, graphics cards, PC peripherals, etc.). READ MORE...
Attackers Route Malware Activity Over Popular CDNs
Attackers are abusing widely used cloud services and applications to deliver malware and hiding the malware's post-infection activities by routing them over common network ports and well-recognizing content delivery networks (CDNs) and cloud providers, Netskope said in its latest "Cloud and Threat Report." The report provides intelligence on active malware threats against enterprise users. READ MORE...
Pro-Russian Hackers Claim Downing of French Senate Website
The French Senate's website was offline on Friday after pro-Russian hackers claimed to have taken it down, in just the latest such cyberattack since Russia invaded Ukraine last year. "Access to the site has been disrupted since this morning," the upper house of Parliament said on Twitter shortly before midday, saying a team was busy fixing the problem. A group calling itself NoName on Telegram claimed responsibility. READ MORE...
New Android FluHorse malware steals your passwords, 2FA codes
A new Android malware called 'FluHorse' has been discovered, targeting users in Eastern Asia with malicious apps that imitate legitimate versions. The malware was discovered by Check Point Research, which reports that it has been targeting various sectors of Eastern Asia since May 2022. The FluHorse malware is distributed via email, while its goal is to steal its target's account credentials and credit card data and, if needed, snatch two-factor authentication (2FA) codes. READ MORE...
Meet Akira - A new ransomware operation targeting the enterprise
The new Akira ransomware operation has slowly been building a list of victims as they breach corporate networks worldwide, encrypt files, and then demand million-dollar ransoms. Launched in March 2023, Akira claims to have already conducted attacks on sixteen companies. These companies are in various industries, including education, finance, real estate, manufacturing, and consulting. READ MORE...
WordPress plugin vulnerability puts two million websites at risk
A popular WordPress plugin could be putting around two million websites at risk of attack. Millions of WordPress-powered websites are using the Advanced Custom Fields and Advanced Custom Fields Pro plugins, which security researchers say have been vulnerable to cross-site scripting (XSS) attacks. The high severity vulnerability could have allowed a malicious hacker to inject malicious scripts into websites. READ MORE...
- ...in 1886, pharmacist John Pemberton first sells his new patent medicine, a drink he calls "Coca-Cola".
- ...in 1911, legendary blues guitarist Robert Johnson ("Sweet Home Chicago", "Cross Road Blues") is born in Hazlehurst, MS.
- ...in 1914, Paramount Pictures is founded. The stars in the famous mountain logo represent the first 22 performers signed by the studio.
- ...in 1945, the Allies celebrate VE day, after the unconditional surrender of the European Axis powers.