News

data security

35+ Actionable Tips: Cybersecurity Awareness Month 2022

Best practices for defeating most attacks, hopefully making the need for future Cybersecurity Awareness Months obsolete Cybersecurity Awareness Month, which was previously known as National Cybersecurity Awareness Month, is in its 19th year. Launched under the guidance of the U.S. Department of Homeland Security and the National Cyber Security Alliance (NCSA), it aims to help …

35+ Actionable Tips: Cybersecurity Awareness Month 2022 Read More »

data security

Data of 380K patients compromised in hack of 13 anesthesia practices

The Department of Health and Human Services breach reporting tool recently added 13 separate filings from anesthesia practices across the U.S., stemming from a “data security incident” at the covered entities’ management company. In total, the compromise involved the protected health information of 380,104 patients. The HHS tool appears to center on entities tied to …

Data of 380K patients compromised in hack of 13 anesthesia practices Read More »

Adafruit data leak

Adafruit data leak from ex-employee’s GitHub rep

Adafruit has disclosed a data leak that occurred due to a publicly-viewable GitHub repository. The company suspects this could have allowed “unauthorized access” to information about certain users on or before 2019. Based in New York City, Adafruit is a producer of open-source hardware components since 2005. The company designs, manufactures, and sells electronics products, tools, and accessories. …

Adafruit data leak from ex-employee’s GitHub rep Read More »

Anonymous Declares Cyber War against Russia

Anonymous Declares Cyber War against Russia, disables state news websitE

The popular collective Anonymous declared war on Russia for the illegitimate invasion of Ukraine and announced a series of cyber attacks calling to action its members The Anonymous collective is calling to action against Russia following the illegitimate invasion of Ukraine. The famous groups of hacktivists are also calling for action Russian citizens inviting them …

Anonymous Declares Cyber War against Russia, disables state news websitE Read More »

Most Spoofed Brands In 2021

Most Spoofed Brands In 2021: Microsoft, Apple and Google top the list 

Most Spoofed Brands In 2021 IBM’s 2022 X-Force Threat Intelligence Index also revealed that ransomware was again the top attack type last year and that manufacturing supply chains were most vulnerable to exploitation Microsoft, Apple and Google were the top three brands criminals attempted to mimic in 2021, according to IBM’s newly released X-Force Threat Intelligence …

Most Spoofed Brands In 2021: Microsoft, Apple and Google top the list  Read More »

vulnerable

Remote Code Execution in pfSense <= 2.5.2

Remote Code Execution (RCE) in pfSense Summary pfSense allows authenticated users to get information about the routes set in the firewall. The information are retrieved by executing the netstat utility and then its output is parsed via the sed utility. While the common prevention patterns for command injections (i.e. the usage of the escapeshellarg function for the arguments) are in use, …

Remote Code Execution in pfSense <= 2.5.2 Read More »

datasecurity-event.com

Snap Privilege Escalation: Vulnerability in Linux Package Manager Snap

A newly discovered Snap flaw allows a low-privileged user to gain root access. Researchers found an easy-to-exploit vulnerability in Snap, a universal application packaging and distribution system developed for Ubuntu but available on multiple Linux distributions. The flaw allows a low-privileged user to execute malicious code as root, the highest administrative account on Linux. Snap …

Snap Privilege Escalation: Vulnerability in Linux Package Manager Snap Read More »