<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 9/1/2021

SHARE

Top News

CISA: Plan Now to Avoid Labor Day Breach

The US authorities have used the week before Labor Day to warn organizations about the risk of cyber-threats timed to coincide with holidays and weekends. The FBI and Cybersecurity and Infrastructure Security Agency (CISA) alert noted that ransomware attacks in particular are more likely to hit home on these days, when offices are closed and IT incident responders will not be at their desks. READ MORE...

Breaches

Accellion breach exposed data from patients at major Michigan hospital system

A major Michigan hospital system on Friday notified roughly 1,500 patients that their information may have been exposed as a result of a hack against file-sharing service Accellion. The law firm Goodwin Proctor notified Beaumont Health in February that patient data shared by the hospital with legal counsel may have been entangled in the wide-reaching hack through the firm's use of Accellion. Beaumonth Health is a network of health facilities that reported $4.58 billion in total revenue for 2020. READ MORE...


Illinois Physicians Notify 600K Patients of Data Breach

The largest independent group of physicians in Illinois is notifying hundreds of thousands of patients that their personal information may have been exposed. DuPage Medical Group (DMG) said that patient data could have been compromised when its computer network was hacked last month. On Monday, DMG announced that it would be mailing letters to 600,000 patients to warn them of the potential threat to their data's security. READ MORE...

Malware

Ragnarok ransomware gang shuts down, universal decryption key released

The notorious Ragnarok ransomware gang appears to have abruptly closed its operations and entered retirement, releasing a universal decryption key for its past victims. The Ragnarok group, which has attacked organisations since 2019, made a name for itself by exploiting a vulnerability in unpatched Citrix ADC servers in order to hunt for a firm's Windows PCs that were vulnerable to the EternalBlue exploit. READ MORE...


Widely-used WhatsApp mod stuffed with malware

A widely-used modified version of WhatsApp has been Trojanised by the Triada malware, with users susceptible to having their personal information and messages intercepted. WhatsApp variants, like the vulnerable FMWhatsApp, are often downloaded because users sometimes feel the official app lacks useful features, whether these are animated themes or self-destructing messages. READ MORE...

Information Security

Vaccine passports: Is your personal data in safe hands?

Technology has been front and center throughout the COVID-19 pandemic, but not without presenting a few issues and challenges. Proof of vaccination and test result validation apps are the latest in the long list of technologies that have come to the forefront of privacy and security concerns. The concept is very simple, provide a digital, verifiable, proof of identity and proof of either vaccination or a negative COVID-19 diagnostic test (or both). READ MORE...

Exploits/Vulnerabilities

WooCommerce Pricing Plugin Allows Malicious Code-Injection

A pair of security vulnerabilities in the WooCommerce Dynamic Pricing and Discounts plugin from Envato could allow unauthenticated attackers to inject malicious code into websites running unpatched versions. This can result in a variety of attacks, including website redirections to phishing pages, insertion of malicious scripts on product pages and more. READ MORE...

On This Date

  • ...in 1875, science fiction author Edgar Rice Burroughs, the creator of Tarzan of the Apes and John Carter of Mars, is born in Chicago, IL.
  • ...in 1950, German automotive designer Porsche releases the 356, the first automobile to be independently manufactured and sold by the company following WWII.
  • ...in 1952, Ernest Hemingway's Pulitzer-prize winning novel "The Old Man and the Sea" is first published.
  • ...in 1985, a joint French-American expedition locates the wreckage of the RMS Titanic on the bottom of the North Atlantic.