Skip to main content


Showing posts with the label News

Broadcom announces plans to buy VMware in $61 billion deal

Broadcom  will buy  VMware  in a cash-and-stock transaction valued at $61 billion, based on the closing price of Broadcom common stock on May 25, 2022, the companies  announced  Thursday. Entire News Here .

319 Accounts Compromised in Mailchimp Attack

  Email marketing firm Mailchimp announced on Monday that a hacker breached its internal tools and managed to gain access to 319 Mailchimp accounts for companies in the cryptocurrency and finance industries.  Read full story here . Disclosure: VMO also uses Mailchimp to store subscriber information, however we do not think our account was compromised. We also have two-factor authentication enabled on Mailchimp account.

PwC Canada fined $950K for internal training exam cheating

  The Canadian affiliate of Big Four audit firm PwC has agreed to pay $950,000 in penalties between two audit regulators after discovering widespread cheating among employees taking internal exams. Read more here .

Russian Cybersecurity Giant Kaspersky Tries to Maintain Neutrality During Ukraine War

  Around the same time Russian forces  launched a massive rocket into a square in Kharkiv , Ukraine’s second-largest city, killing and wounding an as of yet unknown number of people, Eugene Kaspersky, head of his namesake Russian cybersecurity firm,  tweeted that he hoped  negotiations between Ukraine and Russia would lead to “a compromise.” Read more here .

Update Google Chrome Now

  A zero day vulnerability in Google’s highly used browser Chrome requires that you update it to the new version immediately.  Zero-days triggered by memory mismanagement while the browser is rendering a page are always worrying  because remote code execution (RCE) holes in a browser often lead to so-called  drive-by downloads , where merely looking at a booby-trapped web page could leave you with malware implanted on your computer or your phone . Read more here . 

Document reveals how Ericsson was involved in corruption in ten other countries

  Confidential documents have revealed how the telecoms giant Ericsson is alleged to have helped pay bribes to the  Islamic State  terrorist group in order to continue selling its services after the militants seized control of large parts of Iraq. Read more here  

Toyota Halts Production after its supplier gets hit by suspected Cyber Attack

  TOKYO, Feb 28 (Reuters) - Toyota Motor said it will suspend domestic factory operations on Tuesday, losing around 13,000 cars of output, after a supplier of plastic parts and electronic components was hit by a suspected cyber attack. Read more here

Ericsson investigates in-house bribery scandal tied to ISIS

  Shares in Ericsson were down nearly 15% at one point today as investors reacted to reports that Ericsson may have made payments to the ISIS terror organization to gain access to certain transport routes in Iraq.  It is not the first time Erricsson has been accused of corruption. Sweden's telecom giant had previously agreed in Sept 2019 to pay more than $1bn to resolve allegations of bribery to the US Department of Justice. Read the story here.

Thales is accused of Bribery

  Thales eSecurity Inc. is a market leader in Encryption and Data Security domain. The French conglomerate has an Arms division that is accused of paying bribes to former South African President Jacob Zuma for a $2 Billion Arms deal.  Jacob Zuma and Thales deny the allegations, a court case will begin on May 17, 2022. Most recently the Court dismissed Zuma's attempt to remove the prosecutor from his corruption trial.  Read More here: News Link 1. News Link 2.

Unpatched MS-SQL Servers vulnerable to Cobalt Strike

  The ASEC analysis team has recently discovered the distribution of Cobalt Strike targeting MS-SQL servers that are vulnerable to malware attacks. It targets MS-SQL servers that are not patched. Read the complete story here .

Samsung shipped '100 million' phones with flawed encryption

  Academics at Tel Aviv University in Israel have found that recent Android-based Samsung phones shipped with design flaws that allow the extraction of secret cryptographic keys. If you have Corporate Samsung Phones or BYOD enabled Samsung Phones, you must act now. Read the complete story here.

UEFI firmware vulnerabilities affect at least 25 PC vendors

  Researchers from firmware protection company Binarly have discovered critical vulnerabilities in the UEFI firmware from InsydeH2O used by multiple computer vendors such as Fujitsu, Intel, AMD, Lenovo, Dell, ASUS, HP, Siemens, Microsoft, and Acer. More specifically, a local or remote attacker with administrative privileges exploiting SMM flaws could perform the following tasks: Invalidate many hardware security features (SecureBoot, Intel BootGuard) Install persistent software that cannot be easily erased Create backdoors and back communications channels to steal sensitive data Read the entire story Here

GoDaddy security breach exposes WordPress users' data

  Nov 22 (Reuters) - Web hosting company GoDaddy Inc  (GDDY.N)  said on Monday email addresses of up to 1.2 million active and inactive Managed WordPress customers had been exposed in an unauthorized third-party access. The company said the incident was discovered on Nov. 17 and the third-party accessed the system using a compromised password. Read More here .

Personal information belonging to 25K current and former TTC employees may have been stolen during ransomware attack

Personal information belonging to 25K current and former TTC employees may have been stolen during ransomware attack : Personal information belonging to approximately 25,000 of the TTC’s current and former employees may have been stolen during the course of ransom attack that wreaked havoc on a number of internal and external systems last week.

Acer Hacked in India

  Acer has been hacked again. The hackers claim that they stole 60GB worth of data from companies India operations. The data includes customer, corporate, accounts, and financial data, login info of retailers and distributors. This is the second time this year Acer has been hacked. Previously REvil ransomware gang hacked and demanded %50MM ransom. more info here ..

News This Week: Aug 23, 2021

  VMO collects the best news related to Vendors, Technology, Government Policy, etc. on web every week for you. ------------------------------ Disgruntled employees targeted to deploy ransomware within profitable organizations T-Mobile data breach exposed 50 Million people's data Mandiant (FIREEYE) disclosed a critical vulnerability affecting Millions of IoT devices Fortinet delays a Zero Day Vulnerability  in its Web Application Firewall LockFile, known for ransomware attacks on manufacturing, financial services, engineering and tourism, is exploiting a critical Microsoft Vulnerability. Razer mice could give hackers wide-open local access to your Windows PC Data breaches now cost companies an a$4.24 million per incident on average—the highest cost in the 17-year history - IBM IndiaMart's is possibly unaware of a data breach involving 38 Million records  that is up for grabs on hacking forums. IndiaMart is one of the largest B2B Marketplaces in India. Nvidia's $40B acqui

Ransomware attack on Vendor Kaseya sends shockwaves worldwide

  Kaseya , which is based out of Ireland (International HQ) and Miami (US HQ) provides IT Management solutions to many customers and MSPs. Hundreds of customers including  railway, pharmacy chain and grocery chain in Sweden were hit by this REvil ransomware . The attack is similar to Solarwinds ransomware, in which the hackers managed to hack a software update to push malicious code to thousands of customers.  The hackers have exploited a vulnerability in Kaseya's VSA software against multiple managed service providers (MSP) and their customers. Kaseya announced on Jul 2 that it became infected and has asked the customers to shut down it's VSA servers. "It's critical that you do this immediately because one of the first things the attacker does is shut off administrative access to the VSA," said the Kaseya CEO Fred Voccola. Customers were also notified by Kaseya. The vendor has since shut down it SaaS servers and pull its data centers offline. What is affected? Th

News This Week: Jul 02

  VMO collects the best news related to Vendors, Technology, Government Policy, etc. on web every week for you. ------------------------------ Western Digital urges users to immediately disconnect  WD My Book Live and WD My Book Live Duo after detecting a vulnerability that attacker can use to can remotely wipe the data. A Linux encryptor that targets and encrypts Vmware ESXi virtual machines. The REvil ransomware operation is now using a Linux encryptor to mass encrypt storage used by VMs and NAS devices. Microsoft recommends enabling multi-factor authentication to protect their environments after new activity from the NOBELIUM threat actor. This activity was targeted at specific customers, primarily IT companies (57%), followed by government (20%), and smaller percentages for non-governmental organizations. Babuk Locker Ransomware group releases the builder that encrypts files hosted on Windows systems, ARM-based network storage attached (NAS) devices, and VMWare ESXi servers. Thi

CISA issues Top 2 Cyber Security Bad Practices

  HAPPY CANADA DAY to our Canadian Readers !!   In an effort to alleviate the cyber defense of the Country and the Private Sector, CISA (Cybersecurity & Infrastructure Security Agency) is creating a " Catalog of Bad Practices that are exceptionally risky ". This will be an ever evolving list where items will be constantly added.  CISA suggests that all organizations must have an effective Cyber Security Program that avoids or mitigates these bad practices and protects their assets in line with the criticality of risk. The list suggests two Bad Practices that must be avoided or mitigated. 1. Use of unsupported (or end-of-life) software in service of Critical Infrastructure and National Critical Functions is dangerous and significantly elevates risk to national security, national economic security, and national public health and safety. This dangerous practice is especially egregious in internet-accessible technologies. 2. Use of known/fixed/default passwords and credentia

News This Week: Jun 25

VMO collects the best news related to Vendors, Technology, Government Policy, etc. on web every week for you. Red Hat/CentOS and Debian Linux distributions get hit by DarkRadiation Ransomware White House is working on a strategy to enhance Organizations' Security systems and perimeter security SonicWall Left a VPN Flaw Partially Unpatched Amidst 0-Day Attacks LineStar Integrity Services, a Houston-based company that sells auditing, compliance, maintenance, and technology services to pipeline customer, gets it's data leaked Splunk Announces $1 Billion Investment from Silver Lake Biden's Cyber Executive Order to include “software bill of materials” (SBOM) that vendors would be required to provide EU to launch rapid response cybersecurity team Microsoft Patches Six Zero-Day Security Holes ---------------------------------------------------------