Category: security
Wi-Fi Alliance test suite has a worrying security flaw
Wi-Fi Test Suite carries a vulnerability that allows for elevation of privilege and remote code execution (RCE) attacks – and since there is no patch, and no word if there ever will be a patch, users are advised to replace the affected endpoints, or at least stop using them until…
Read More
Windows kernel components can be installed to bypass defense systems
Experts have uncovered a method allowing cybercriminals to bypass Windows security features such as Driver Signature Enforcement (DSE), and thus install rootkits on fully updated systems. A report from cybersecurity researcher Alon Leviev of SafeBreach claims the attack is possible by downgrading certain Windows kernel components. By taking over the…
Read More
Nearly a million users affected by Landmark data breach
Landmark Admin, a third-party administrator (TPA) specializing in administrative support services for life insurance and annuity companies, has confirmed suffering a serious ransomware attack recently. The company revealed the news in a filing with the Maine Office of the Attorney General, in which it said that people’s data was stolen…
Read More
Cisco issues emergency fix for VPN tool, users told to update now
Cisco has issued an emergency fix for bugs in some of its software which are being actively exploited in the wild. According to a security advisory from the company, the flaw that was patched was found in Adaptive Security Appliance (ASA), and in Firepower Threat Defense (FTD). It is described…
Read More
Healthcare giant Henry Schein reveals data breach following major ransomware attack
American healthcare giant Henry Schein has finally reported suffering ransomware attacks to the US government, almost a year after the incidents took place. The company has filed a data breach notification with the Office of the Maine Attorney General detailing the attacks in October 2024 by the now-defunct BlackCat (AKA…
Read More
United Health confirms largest ever US healthcare data breach, says 100 million users had info stolen
The number of people affected by the Change Healthcare ransomware attack earlier in 2024 is now thought to have affected around 100 million people, new reports have confirmed. The attack on Change Healthcare took place in February 2024, and is now thought to be the most disruptive ransomware attacks ever…
Read More