Tag: security
Scania hit by cyberattack – thousands of customers potentially affected, here’s what we know
An external IT partner to Scania lost its login credentials through an infostealer The hackers used the password to access Scania and steal files They asked the company for money, and later offered the archive for sale Swedish automotive manufacturer Scania has confirmed suffering a cyberattack which saw it lose…
Read More
One of the world’s most popular CMS tools has an embarrassing security flaw, so patch immediately
The Sitecore CMS had an account with a hardcoded password Threat actors could use it to upload arbitrary files, achieving RCE Thousands of endpoints are potentially at risk Sitecore Experience Platform, an enterprise-level content management system (CMS) carried three vulnerabilities which, when chained together, allowed threat actors full takeover of…
Read More
Cybercrime gang hacks major health data provider – millions of highly personal files could be at risk of breach
World Leaks adds Freedman HealthCare to its data leak site The group claims to have exfiltrated tens of thousands of files The company is staying silent for now A cybercrime gang claims to have breached Freedman HealthCare, a US-based consulting firm which helps states and healthcare organizations handle data, and…
Read More
Whole Foods supplier targeted by cyberattack says it is making ‘significant progress’ towards recovery
A cyberattack has targeted food distributor UNFI Incident has the markings of a ransomware attack UNFI is making progress towards recovery, but warns delays could still continue United Natural Foods Inc (UNFI) says it is making ‘significant progress’ towards safely restoring electronic ordering systems, and is increasing operational capacity, following…
Read More
Major police operation takes down notorious dark web marketplace Archetyp Market
Europol takes down Archetyp Market after five years of investigation One person was arrested, and “measures” taken against others Millions in different assets were seized A massive international law enforcement operation has seen one of the longest-standing dark web marketplaces finally taken offline. Europol said a large-scale operation saw it…
Read More
Smartwatches could potentially be used to steal data from or launch attacks on air-gapped systems – I wonder how far-fetched that really is
Smartwatches may soon be the newest tool for breaching even the most secure computer Ultrasonic signals are invisible to us but may carry secrets out of air-gapped machines SmartAttack depends on rare conditions, but its possibility proves no system is ever completely safe A new research paper proposes an unusual…
Read More