<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter

Get the latest headlines, summaries, and security news!

IT Security Newsletter - 6/4/2021

Breaches

Scripps Health notifies patients of data breach after ransomware attack

Nonprofit healthcare provider, Scripps Health in San Diego, has disclosed a data breach exposing patient information after suffering a ransomware attack last month. The healthcare provider has five hospitals and 19 outpost facilities with over 3,000 affiliate physicians. Every year, Scripps Health treats more than 700,000 patients. On April 29th, Scripps Health suffered a cyberattack where threat actors deployed ransomware on their network and encrypt devices. READ MORE...

Hacking

Meat giant JBS now fully operational after ransomware attack

JBS, the world's largest beef producer, has confirmed that all its global facilities are fully operational and operate at normal capacity after the REvil ransomware attack that hit its systems last weekend. On May 31, JBS was also forced to shut down production after REvil ransomware operators breached and encrypted some of its North American and Australian IT system. READ MORE...


Chinese threat actors hacked NYC MTA using Pulse Secure zero-day

Chinese-backed threat actors breached New York City's Metropolitan Transportation Authority (MTA) network in April using a Pulse Secure zero-day. Still, they failed to cause any data loss or gain access to systems controlling the transportation fleet. According to Rafail Portnoy, MTA's Chief Technology Officer, while the attackers hacked into several MTA computer systems, they couldn't gain access to employee or customer information. READ MORE...

Software Updates

Cisco Plugs High-Risk Security Flaws in Webex, SD-WAN

Enterprise security vendor Cisco has shipped fixes for a wide range of severity vulnerabilities, including patches for high-risk flaws in the widely deployed Webex Player, SD-WAN software, and ASR 5000 series software. A total of three high-severity vulnerabilities (CVSS score of 7.8) were patched in Webex Player for Windows and macOS, two of which also affect the Webex Network Recording Player for those operating systems. READ MORE...

Malware

New SkinnyBoy malware used by Russian hackers to breach sensitive orgs

Security researchers have discovered a new piece of malware called SkinnyBoy that was used in spear-phishing campaigns attributed to Russian-speaking hacking group APT28. The threat actor, also known as Fancy Bear, Sednit, Sofacy, Strontium, or PwnStorm, used SkinnyBoy in attacks targeting military and government institutions earlier this year. SkinnyBoy is intended for an intermediary stage of the attack, to collect information about the victim and to retrieve the next payload. READ MORE...

Information Security

Nigerian Arrested in US for Hacking Payroll Services Company

A Nigerian national was arrested recently in the United States on charges related to hacking into user accounts at a payroll processing company, to steal payroll deposits. The man, Charles Onus, 34, who was arrested in San Francisco on April 14, is accused of participating in a scheme that resulted in the compromise of approximately 5,500 user accounts at an unnamed human resources and payroll services company in the U.S. READ MORE...

On This Date

  • ...in 1783, the Montgolfier brothers demonstrate their first hot-air balloon at the palace in Versailles, France.
  • ...in 1896, Henry Ford completes the Ford Quadricycle, the very first internal-combustion powered automobile.
  • ...in 1919, the 19th Amendment is passed by Congress, guaranteeing women's right to vote.
  • ...in 1942, the Battle of Midway begins.