<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 6/21/2021

SHARE

Breaches

South Korea's Nuclear Research agency hacked using VPN flaw

South Korea's 'Korea Atomic Energy Research Institute' disclosed yesterday that their internal networks were hacked last month by North Korean threat actors using a VPN vulnerability. The Korea Atomic Energy Research Institute, or KAERI, is the governement-sponsored institute for the research and application of nuclear power in South Korea. The breach was first reported earlier this month when South Korean media Sisa Journal began covering the attack. READ MORE...


US supermarket chain Wegmans notifies customers of data breach

Wegmans Food Markets notified customers that some of their information was exposed after the company became aware that two of its databases were publicly accessible on the Internet because of a configuration issue. Wegmans is a 106-store major regional supermarket chain with stores in the mid-Atlantic and Northeastern regions (i.e., New York, Pennsylvania, New Jersey, Virginia, Maryland, Massachusetts, and North Carolina). READ MORE...

Hacking

Major Cyberattack on Poland Came from Russian Territory: Kaczynski

A recent "large scale" cyberattack targeting top Polish politicians was launched from Russia, Jaroslaw Kaczynski, the leader of Poland's governing right-wing party, said on Friday. "Analyses by our services and the secret services of our allies allow us to unequivocally say that the cyberattack was carried out from the territory of the Russian Federation," Kaczynski said in a statement. READ MORE...

Information Security

Vermont Hospital Still Calculating Cost of Ransomware Attack

Officials at Vermont's largest hospital are still trying to determine the full financial impact of the cyberattack last October that knocked out computers affecting three hospitals in Vermont and three in New York. Scheduling and patient medical records were affected and some cancer patients faced delays in treatment. It took months for the University of Vermont Health Network to recover from the attack, estimated to cost upwards of $63 million. READ MORE...

Exploits/Vulnerabilities

Vulnerabilities in Open Design Alliance SDK Impact Siemens, Other Vendors

Eight vulnerabilities discovered in the Drawings software development kit (SDK) made by Open Design Alliance (ODA) impact products from Siemens and likely other vendors. ODA is a nonprofit organization that creates SDKs for engineering applications, including computer aided design (CAD), geographic information systems (GIS), building and construction, product lifecycle management (PLM), and internet of things (IoT). READ MORE...


Researcher Finds Several Vulnerabilities in Cisco Small Business Switches

A researcher has identified several vulnerabilities, including ones that have been rated high severity, in Cisco's Small Business 220 series smart switches. The networking giant this week informed customers about the availability of patches for these flaws. The vulnerabilities were discovered by security researcher Jasper Lievisse Adriaanse, and they impact switches that run firmware versions earlier than 1.2.0.6 and have the web-based management interface enabled. READ MORE...

On This Date

  • ...in 1788, New Hampshire ratifies the U.S. Constitution and is admitted as the ninth state.
  • ...in 1903, artist Al Hirschfeld, famous for his caricatures of stage and screen actors, is born in St. Louis, MO.
  • ...in 1932, film and TV composer Lalo Schifrin ("Mission: Impossible", "Enter the Dragon") is born in Buenos Aires, Argentina.
  • ...in 2004, engineer Burt Rutan's SpaceShipOne becomes the first privately-funded manned vehicle to pass the boundary of space.