The Biden administration believes China has implanted malware in key US power and communications networks in a "ticking time bomb" that could disrupt the military in event of a conflict, The New York Times reported Saturday. The Times, quoting US military, intelligence and security officials, said the malware potentially gave China's People's Liberation Army the ability to disrupt US military operations if Beijing were to move against Taiwan at some point. READ MORE...
The sensitive personal and health information of approximately 612,000 Medicare beneficiaries was exposed as part of the MoveIT transfer service breaches, according to the CMS. A Medicare contractor, Maximus Federal Services, was hit by the sweeping breach, which compromised a security vulnerability in MoveIt, in May. The CMS said no HHS or CMS systems were impacted. Maximus is one of hundreds of organizations that's been impacted by the MoveIt vulnerability. READ MORE...
Bedding products giant Tempur Sealy (NYSE: TPX) has shut down certain systems after falling victim to a cyberattack, the company revealed in a filing with the US Securities and Exchange Commission (SEC). Based in Lexington, Kentucky, Tempur Sealy manufactures and sells mattresses, pillows, and other bedding products under brands such as Cocoon, Sealy, Stearns & Foster, and Tempus. READ MORE...
Hackers are using a fake Android app named 'SafeChat' to infect devices with spyware malware that steals call logs, texts, and GPS locations from phones. The Android spyware is suspected to be a variant of "Coverlm," which steals data from communication apps such as Telegram, Signal, WhatsApp, Viber, and Facebook Messenger. CYFIRMA researchers say the Indian APT hacking group 'Bahamut' is behind the campaign, with their latest attacks conducted mainly through spear phishing messages on WhatsApp. READ MORE...
Security teams in industrial control systems (ICS) environments are fighting a worm that gets past air-gapped defenses. Researchers from Kaspersky ICS-CERT have been investigating cyberattacks against ICS and critical infrastructure in Eastern Europe, and uncovered a novel second-stage malware that gets around the typical data security that an air gapped system provides. The threat actors were trying to establish a permanent presence on the target networks for data exfiltration, the team said. READ MORE...
Canon is warning users of home, office, and large format inkjet printers that their Wi-Fi connection settings stored in the devices' memories are not wiped, as they should, during initialization, allowing others to gain access to the data. This flaw could introduce a security and privacy risk for impacted users if the printer memory is extracted by repair technicians, temporary users, or future buyers of the devices, allowing them to get the connection details for your Wi-FI network. READ MORE...
CyFox researchers have discovered a DLL planting/hijacking vulnerability in popular media center application Stremio, which could be exploited by attackers to execute code on the victim's system, steal information, and more. DLLs (dynamic link libraries) are files that can be dynamically linked and shared by multiple programs concurrently, and are crucial to Windows and many applications (including Stremio). READ MORE...