Quite a few articles to catch up in the past week:
Digital security giant Entrust breached by ransomware gang
- July 22, 2022
- 04:44 PM
- 0
Digital security giant Entrust has confirmed that it suffered a cyberattack where threat actors breached their network and stole data from internal systems.
Entrust is a security firm focused on online trust and identity management, offering a wide range of services, including encrypted communications, secure digital payments, and ID issuance solutions.
Depending on what data was stolen, this attack could impact a large number of critical, and sensitive, organizations who use Entrust for identity management and authentication
This includes US government agencies, such as the Department of Energy, Department of Homeland Security, the Department of the Treasury, the Department of Health & Human Services, the Department of Veterans Affairs, the Department of Agriculture, and many more.
Hackers breached Entrust’s network in June
Approximately two weeks ago, a source told BleepingComputer that Entrust was breached on June 18th and that the hackers stole corporate data during the cyberattack.
However, it wasn't until yesterday that the breach was publicly confirmed when security researcher Dominic Alvieri tweeted a screenshot of a security notice sent to Entrust's customers on July 6th.
"I am writing to let you know that on June 18, we learned that an unauthorized party accessed certain of our systems used for internal operations. We have been working tirelessly to remediate this situation since that moment," reads a security notice from Entrust CEO Todd Wilkinson.
"The first thing I want to tell you is that, although our investigation is ongoing, we have found no indication to date that the issue has affected the operation or security of our products and services."
The security notice confirms that data was stolen from Entrust's internal systems. However, it is not known at this time if this is purely corporate data or customers' and vendors' as well.
"We have determined that some files were taken from our internal systems. As we continue to investigate the issue, we will contact you directly if we learn information that we believe would affect the security of the products and services we provide to your organization." - Entrust.
Today, Entrust told BleepingComputer that they are working with a leading cybersecurity firm and law enforcement to investigate the attack but that it has not affected their operations.
"While our investigation is ongoing, we have found no indication to date that the issue has affected the operation or security of our products and services, which are run in separate, air-gapped environments from our internal systems and are fully operational," Entrust told BleepingComputer
Source: Dominic Alvieri
Hit by a ransomware gang
While the security notices and Entrust's statements to BleepingComputer did not share further details regarding the attack, BleepingComputer has learned that a well-known ransomware gang is behind the attack
-
Amadey malware pushed via software cracks in SmokeLoader campaign
A new version of the Amadey Bot malware is distributed through the SmokeLoader malware, using software cracks and keygen sites as lures.
- July 24, 2022
- 12:11 PM
0
-
QBot phishing uses Windows Calculator sideloading to infect devices
The operators of the QBot malware have been using the Windows Calculator to side-load the malicious payload on infected computers.
- July 24, 2022
- 11:18 AM
0
-
Microsoft reminder: Windows Server 20H2 reaches EOS next month
Microsoft has reminded customers once again that Windows Server, version 20H2, will be reaching its End of Service (EOS) in less than a month, on August 9.
- July 24, 2022
- 10:06 AM
- 0
-
Add a tablet to your toolkit with this refurbished iPad Pro deal
A tablet is increasingly a must-have device for work and for play, and Apple devices continue to pioneer the field. You can add this refurbished Apple iPad Pro 9.7" to your kit for $225.99, 62% off the $599 MSRP.
- July 24, 2022
- 08:14 AM
- 0
-
North Korean hackers attack EU targets with Konni RAT malware
Threat analysts have uncovered a new campaign attributed to APT37, a North Korean group of hackers, targeting high-value organizations in the Czech Republic, Poland, and other European countries.
- July 23, 2022
- 12:08 PM
- 0
-
Chrome use subject to restrictions in Dutch schools over data security concerns
The Ministry of Education in the Netherlands has decided to implement restrictions on the use of the Chrome OS and Chrome web browser until August 2023 over concerns about data privacy.
- July 23, 2022
- 11:12 AM
- 0
-
Massive Microsoft 365 outage caused by faulty ECS deployment
In a preliminary post-incident report, Microsoft has revealed that this week's 5-hour-long Microsoft 365 worldwide outage was triggered by a faulty Enterprise Configuration Service (ECS) deployment that led to cascading failures and availability impact across multiple regions.
- July 23, 2022
- 10:04 AM
- 0
-
Access your desktop anywhere with this personal cloud computer deal
A Shells Basic plan gives you one processor, 40GB of storage, 2GB of memory, and unlimited use for one year, for $64.99, 54% off the $143 MSRP. A Shells One Year Plus plan doubles your processors, storage, and memory while providing a Windows license, for $94.99, a 73% discount from the standard $359 price
- July 23, 2022
- 08:11 AM
- 0
-
The Week in Ransomware - July 22nd 2022 - Attacks abound
New ransomware operations continue to be launched this week, with the new Luna ransomware found to be targeting both Windows and VMware ESXi servers.
- July 22, 2022
- 11:52 PM
- 0
-
Hacker selling Twitter account data of 5.4 million users for $30k
Twitter has suffered a data breach after threat actors used a vulnerability to build a database of phone numbers and email addresses belonging to 5.4 million accounts, with the data now up for sale on a hacker forum for $30,000.
- July 22, 2022
- 06:00 PM
- 0
-
Digital security giant Entrust breached by ransomware gang
Digital security giant Entrust has confirmed that it suffered a cyberattack where threat actors breached their network and stole data from internal systems.
- July 22, 2022
- 04:44 PM
- 0
-
SonicWall: Patch critical SQL injection bug immediately
SonicWall has published a security advisory today to warn of a critical SQL injection flaw impacting the GMS (Global Management System) and Analytics On-Prem products.
- July 22, 2022
- 01:01 PM
- 0
-
Atlassian: Confluence hardcoded password was leaked, patch now!
Australian software firm Atlassian warned customers to immediately patch a critical vulnerability that provides remote attackers with hardcoded credentials to log into unpatched Confluence Server and Data Center servers.
- July 22, 2022
- 11:05 AM
- 0
-
Microsoft warns that new Windows updates may break printing
Microsoft warned that starting with this week's optional preview updates, temporary mitigation provided one year ago to address Windows Server printing issues on non-compliant devices will be removed, potentially breaking printing.
- July 22, 2022
- 10:30 AM
- 1
-
Microsoft fixes Access apps failing to open after July updates
Microsoft is rolling out a fix for a known issue that caused MS Access runtime applications not to open after installing July 2022's Patch Tuesday Office/Access security updates.
- July 22, 2022
- 08:25 AM
- 0
Get certified in ethical hacking with this complete training bundle deal
Being prepared makes the difference between a secure network and a breached one. The Complete 2022 PenTest & Ethical Hacking Bundle helps you learn the pentesting skills you need for $49, 97% off the $1770 MSRP.
- July 22, 2022
- 07:21 AM
- 0
Hackers breach Ukrainian radio network to spread fake news about Zelenskiy
On Thursday, Ukrainian media group TAVR Media confirmed that it was hacked to spread fake news about President Zelenskiy being in critical condition and under intensive care.
- July 22, 2022
- 06:56 AM
- 1
No comments:
Post a Comment