#Infosec

HHS Cloud Systems at Risk

The Department of Health and Human Services (HHS) faces significant cloud security vulnerabilities, as highlighted in a recent audit by the Office of Inspector General (OIG). The report reveals weaknesses in a dozen security controls and inadequacies in HHS’ cloud inventory processes. Critical issues include a lack of multifactor authentication …

Read More

Daolpu Malware Hits Windows Systems

CrowdStrike warns of a new malware campaign that exploits the recent Falcon update bug, leading to widespread IT outages. Cybercriminals are distributing the Daolpu information-stealing malware through phishing emails disguised as recovery instructions. Once active, Daolpu harvests account credentials, browser history, and cookies from popular web browsers, posing a significant …

Read More

Indiana County Declares Cyber Disaster

Clay County, Indiana, has declared a local disaster following a ransomware attack that disrupted critical services at the county courthouse, Community Corrections, and Probation offices. The attack, discovered around midnight on July 9, prevented officials from accessing data or connecting with state partners, leading to the closure of the courthouse …

Read More

Critical Exim Flaw Exposes Mail Servers

A critical issue in Exim mail transfer agent (MTA) has left over 1.5 million servers unpatched, posing significant security risks. Tracked as CVE-2024-39929, the flaw allows threat actors to bypass security filters and deliver malicious executable attachments to users’ mailboxes. The issue arises from incorrect parsing of multiline RFC2231 header …

Read More

CISA Adds Microsoft and Rejetto Flaws to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three significant vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. These include a critical template injection flaw in the Rejetto HTTP File Server (CVE-2024-23692), a privilege escalation issue in Windows Hyper-V (CVE-2024-38080), and a spoofing vulnerability in the Windows MSHTML …

Read More

RADIUS Vulnerability Exposes Network Risks

Cybersecurity experts from leading universities and tech companies have identified a critical vulnerability in the RADIUS networking protocol. Dubbed “Blast RADIUS,” the flaw allows attackers to bypass user authentication via man-in-the-middle (MITM) attacks and hash cracking. With a CVSS severity score of 7.5 out of 10, the vulnerability (CVE-2024-3596) poses …

Read More

TeamViewer Corporate Breach

TeamViewer recently revealed a breach in its corporate environment, attributing the attack to the Russian state-sponsored hacking group Midnight Blizzard. On June 26, 2024, TeamViewer’s security team detected unusual activity in their internal IT systems. Immediate measures were taken, including the activation of a response team and collaboration with global …

Read More

Malicious Google ads 

A new cyber threat targeting Mac users has been uncovered, involving a stealer named “Poseidon” distributed through malicious Google ads for the popular Arc browser. The malware campaign, observed on June 24, 2024, marks the second instance of Arc being used as a lure. Previously, it had been exploited to …

Read More