Category: security
Thousands of SonicWall VPN devices are facing worrying security threats
BishopFox scanned the internet for SonicWall VPNs and found hundreds of thousands that can be accessed via the internet Tens of thousands were running old, vulnerable software versions Some were past their end-of-life date, putting them at risk of attack Tens of thousands of SonicWall VPN firewall platforms are vulnerable…
Read More
US government urges federal agencies to patch Microsoft 365 now
CISA issues BOD 25-01, the first binding directive of the year It addresses Microsoft 365 security, which is under threat Other cloud providers will be added soon, as well The US Cybersecurity and Infrastructure Security Agency (CISA) has issued its first binding operational directive for 2025, which includes a set…
Read More
Fake CAPTCHA pages used to spread infostealer malware
Security researchers spot campaign to distribute Lumma Stealer malware A fake CAPTCHA page comes with a JavaScript that copies malicious code into the clipboard To “solve” the fake CAPTCHA, users are told to paste the code in CMD and run it Fake CAPTCHA pages are being used to trick victims…
Read More
Almost a million ConnectOnCall users may have had data stolen by hackers
Healthcare software ConnectOnCall hit with a data breach Over 900,000 patients data was accessed over three months This leaves patients at risk of identity theft Software firm Phreesia has notified 914,138 individuals whose personal and health information was exposed by a data breach in May 2023 after using its ConnectOnCall…
Read More
Another major US hospital hacked, data on 1.4 million patients leaked
The Tech University Health Sciences Center in Texas and El Paso confirmed suffering a cyberattack Data on 1.4 million people were exfiltrated in the attack A threat actor named Interlock claimed responsibility for the attack Another major US hospital has suffered a cyberattack recently, and as a result, lost sensitive…
Read More
US government warns federal agencies to patch dangerous Windows kernel bug
CISA added two new flaws to its KEV catalog One of the bugs affects the Windows kernel, the other one was found in an Adobe product US government agencies ordered to patch now or risk attack The US Cybersecurity and Infrastructure Agency (CISA) has added a new Windows flaw to…
Read More