IT Security Newsletter - 6/13/2023
Data of 8.8 Million Zacks Users Emerges Online
A database containing the personal information of more than 8.8 million Zacks Investment Research users has emerged on a hacking forum. According to data breach notification service Have I Been Pwned, the database contains names, addresses, phone numbers, email addresses, usernames, and passwords stored as unsalted SHA-256 hashes. Have I Been Pwned's maintainer, Troy Hunt, says he contacted Zacks to disclose the larger breach and the company told him that the attackers only gained access to encrypted passwords. READ MORE...
Researchers unpack massive email scam targeting dozens of companies
When researchers at the cybersecurity firm Sygnia responded earlier this year to a compromised email account at an unnamed company, they stumbled upon a sprawling campaign of business email compromise involving dozens of organizations whose infrastructure the attackers utilized in going after additional victims. The hackers would compromise an email account of an employee for a given company, bypass Microsoft Office 365 authentication, and gain persistent access to the account. READ MORE...
Ransomware Attack Played Major Role in Shutdown of Illinois Hospital
St. Margaret's Health is shutting down hospitals and other facilities in Peru and Spring Valley, Illinois, and says a 2021 ransomware attack is partly to blame. The attack occurred in late February 2021 and forced the shutdown of the Spring Valley hospital's computer network, impacting all web-based operations, including its patient portal. The Peru branch was not affected, as it operated on a separate system. READ MORE...
UK telco watchdog Ofcom, Minnesota Dept of Ed named as latest MOVEit victims
Two more organizations hit in the mass exploitation of the MOVEit file-transfer tool have been named - the Minnesota Department of Education in the US, and the UK's telco regulator Ofcom - just days after security researchers discovered additional flaws in Progress Software's buggy suite. Ofcom disclosed this week it is among the businesses and public bodies that have had their internal data stolen by crooks exploiting a MOVEit flaw. READ MORE...
New Loader Delivering Spyware via Image Steals Cryptocurrency Info
A sophisticated attack by Russian-language actors is using a novel loader and malware-laced PNG image file to drop malware for stealing cryptocurrency or business account information, researchers said. The multistage campaign appears to be primarily targeting entities in Europe, the United States, and Latin America, Kaspersky researchers wrote in a blog post published June 12. READ MORE...
Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks
Fortinet warned customers on Monday that the recently patched vulnerability tracked as CVE-2023-27997 could be a zero-day flaw that has been exploited in limited attacks. News broke over the weekend that updates released by Fortinet for its FortiOS operating system patch CVE-2023-27997, a critical vulnerability that can be exploited by a remote, unauthenticated attacker for arbitrary code execution. READ MORE...
- ...in 1966, Miranda rights are established by the Supreme Court, in their decision regarding Miranda v. Arizona.
- ...in 1970, The Beatles release their last #1 single, "The Long and Winding Road" from the "Let It Be" album.
- ...in 1971, the New York Times publishes The Pentagon Papers, revealing that the Vietnam War had been secretly expanded into Cambodia and Laos.
- ...in 1991, the volcanic Mt. Pinatubo in the Philippines begins to erupt for the first time in over 500 years, causing evacuations of a 40 km area near Manila.