Recent Security News
-
US charges five linked to Scattered Spider cybercrime gang
November 20, 2024 at 02:29PM The U.S. Justice Department has charged five members of the Scattered Spider cybercrime gang with wire fraud and identity theft, accused of stealing over $11 million from cryptocurrency wallets through SMS phishing. This loosely organized group employs varied tactics and has connections to other hacking collectives and ransomware gangs. ###…
-
Ubuntu Linux impacted by decade-old ‘needrestart’ flaw that gives root
November 20, 2024 at 02:11PM Five local privilege escalation vulnerabilities in Ubuntu’s needrestart utility were discovered by Qualys, tracked as CVE-2024-48990, CVE-2024-48991, CVE-2024-48992, CVE-2024-10224, and CVE-2024-11003. All were fixed in version 3.8. Attackers with local access could exploit these flaws to gain root privileges. ### Meeting Takeaways: 1. **Vulnerability Overview**: Five local privilege escalation (LPE)…
-
Alleged Ford ‘Breach’ Encompasses Auto Dealer Info
November 20, 2024 at 01:16PM On November 17, hackers claimed to breach Ford’s customer records, allegedly stealing 44,000 entries. However, the data consisted mainly of public car dealer addresses, not sensitive customer information. Ford’s investigation found no breach of its systems, attributing the data leak to a third-party supplier. **Meeting Takeaways – Breach Incident Overview…
-
Mega US healthcare payments network restores system 9 months after ransomware attack
November 20, 2024 at 01:09PM Change Healthcare has restored its clearinghouse services after a February ransomware attack, affecting 94% of hospitals. Despite partial recovery, financial strain persists for providers, with over $6 billion loaned. CEO Andrew Witty faced Congress for the decision to pay a $22 million ransom. Security lapses were criticized as “egregious negligence.”…