November 2023 - Cyber Security Minute

Apple addressed 2 new iOS zero-day vulnerabilities

Issued by: Security Affairs

Apple released emergency security updates to address two zero-day vulnerabilities impacting iPhone, iPad, and Mac devices. The flaws are actively exploited in attacks in the wild, both issues reside in the WebKit browser engine. The first vulnerability, tracked as CVE-2023-42916, is an out-of-bounds read. An attacker can trick a victim into visiting specially crafted web…

Cloud Security

Amazon debuts biometric security device, updates Detective and GuardDuty

Issued by: CSO Online

The latest security announcements from Amazon aim to address a wide range of security issues for businesses, including an all-in-one hand-scanning biometric system and new capabilities for its Detective security visualization tool and GuardDuty continuous monitoring solution. Amazon One Enterprise is the most novel of the company’s announcements, which were made this week at its…

Vulnerabilities

Threat actors started exploiting critical ownCloud flaw CVE-2023-49103

Issued by: Security Affairs

ownCloud is an open-source software platform designed for file synchronization and sharing. It allows individuals and organizations to create their own private cloud storage services, giving them control over their data while facilitating collaboration and file access across multiple devices. The vulnerability, tracked as CVE-2023-49103, resides in the Graphapi app, which relies on a third-party…

Software Security

CrowdStrike SIEM Demand Rises Amid Cisco-Splunk, Legacy Woes

Issued by: DataBreach Today

Pervasive discontent with legacy SIEM offerings and Cisco’s proposed acquisition of Splunk has driven “a significant and pronounced increase in interest” in CrowdStrike’s SIEM offering. The Austin, Texas-based cybersecurity titan’s SIEM tool hit the $100 million annual recurring revenue milestone in the most recent quarter thanks to LogScale’s search speed, data gravity and cost efficiency,…

Malware & Threats

Ardent Health Hospitals Disrupted After Ransomware Attack

Issued by: Dark Reading

Ardent Health Services, headquartered in Nashville, Tenn., and operating in six different states, fell victim to a ransomware attack in late November that has taken its entire network offline. Some 30 hospitals have been affected by this ransomware attack. While the attack didn’t disrupt patient care in Ardent hospitals, those in need of emergency medical…

News

Ukraine’s intelligence service hacked Russia’s Federal Air Transport Agency, Rosaviatsia

Issued by: Security Affairs

Ukraine’s intelligence service announced they have hacked Russia’s Federal Air Transport Agency, ‘Rosaviatsia.’ The attack is the result of a complex special cyber operation. “The Defence Intelligence of Ukraine informs that as a result of a successful complex special operation in cyberspace, a large volume of confidential documents of the structural subdivision of the Russian…

Vulnerabilities

CISA Urges Patching as Hackers Exploit ‘Looney Tunables’ Bug

Issued by: DataBreach Today

U.S. federal agencies have until Dec. 12 to patch vulnerable Linux devices on their networks after researchers discovered an actively exploited security flaw. The Cybersecurity and Infrastructure Security Agency added the “Looney Tunables” vulnerability, tracked as CVE-2023-4911, to its catalog of known exploited vulnerabilities Tuesday and mandated federal civilian branch agencies to download patches to…

News

Canadian government impacted by data breaches of two of its contractors

Issued by: Security Affairs

The Canadian government declared that two of its contractors, Brookfield Global Relocation Services (BGRS) and SIRVA Worldwide Relocation & Moving Services, have been hacked, resulting in the exposure of sensitive information belonging to an undisclosed number of government employees. Data belonging to current and former Government of Canada employees, members of the Canadian Armed Forces…

Malware & Threats

Exploited Vulnerabilities Can Take Months to Make KEV List

Issued by: Dark Reading

On October 10, the Cybersecurity and Infrastructure Security Agency (CISA) updated the Known Exploited Vulnerabilities (KEV) catalog with five known software flaws. At the top of the list: A use-after-free vulnerability in Adobe’s Acrobat and Reader PDF-viewing applications that could allow code execution with the privileges of any user that clicked on a malicious file….

Network Security

CompTIA Advises Retailers to Check their Cybersecurity Preparedness Ahead of the Holiday Shopping Season

Issued by: Dark Reading

Retail businesses should make time in the coming days to assess their cybersecurity readiness ahead of the annual crush of Black Friday and Cyber Monday shoppers, according to CompTIA, the leading nonprofit association for the technology industry and workforce. “Proactive steps taken ahead of time to protect your assets is considerably easier than dealing with…