#InformationSecurity – Page 3

Schneider Electric Launches Probe After Hackers Claim Theft of User Data

November 5, 2024 by Xynik

November 5, 2024 at 05:06AM Hackers have allegedly stolen sensitive user data by breaching Schneider Electric’s Jira system, prompting the company to initiate an investigation. **Meeting Takeaways:** 1. **Incident Overview**: Hackers have reportedly breached Schneider Electric’s Jira system, claiming to have stolen sensitive user data. 2. **Affected Information**: The stolen information includes sensitive user data. … Read more

City of Columbus Ransomware Attack Impacts 500,000 People

November 4, 2024 by Xynik

November 4, 2024 at 05:59AM The City of Columbus reported that a ransomware attack resulted in the theft of personal information belonging to 500,000 individuals. **Meeting Takeaways:** 1. **Incident Overview**: The City of Columbus experienced a ransomware attack. 2. **Data Compromised**: Personal information of approximately 500,000 individuals was stolen. 3. **Source of Information**: Details were … Read more

Cisco says DevHub site leak won’t enable future breaches

November 4, 2024 by Xynik

November 4, 2024 at 04:16AM Cisco confirmed that non-public files downloaded by a threat actor from a misconfigured DevHub portal do not pose a risk for future breaches. While some CX Professional Services customer files were exposed, no financial or personal data was compromised. The company has since corrected the configuration and restored access. **Meeting … Read more

IT Security Centralization Makes the Use of Industrial Spies More Profitable

November 1, 2024 by Xynik

November 1, 2024 at 01:06PM Organizations are realizing the importance of IT security due to recent financial and reputational damages. Centralized IT security controls pose significant risks, enabling espionage and potential abuse. To combat these threats, systems should prioritize decentralization, promote a zero-trust culture, and address personal device access concerns. ### Meeting Takeaways #### Key … Read more

Facebook Businesses Targeted in Infostealer Phishing Campaign

October 31, 2024 by Xynik

October 31, 2024 at 05:17PM A phishing campaign targeting Facebook businesses in Taiwan uses deceptive emails impersonating legal teams and well-known companies to distribute malware. Threat actors demand immediate content removal under copyright claims, while employing techniques to bypass antivirus detection. Key malware includes Lumma Stealer and Rhadamanthys, which harvest sensitive information from victims. ### … Read more

Colorado Accidentally Put Voting System Passwords Online, but Officials Say Election Is Secure

October 30, 2024 by Xynik

October 30, 2024 at 09:03AM Passwords for Colorado’s voting system were accidentally published on the Secretary of State’s website for several months before being removed. Officials assure that the integrity and security of the election remain intact despite this oversight. **Meeting Notes Takeaways:** 1. **Incident Overview**: Voting system passwords were unintentionally published on the Colorado … Read more

Dutch Police Disrupt Major Info Stealers RedLine and MetaStealer in Operation Magnus

October 29, 2024 by Xynik

October 29, 2024 at 08:03AM The Dutch National Police, with international partners, disrupted the infrastructure of the RedLine and MetaStealer information stealers on October 28, 2024, during Operation Magnus. The takedown led to three server shutdowns, domain confiscations, and arrests. Investigations continue into associated networks and customers, highlighting vulnerabilities in cybercriminal communications. **Meeting Takeaways – … Read more

Free, France’s second largest ISP, confirms data breach after leak

October 28, 2024 by Xynik

October 28, 2024 at 01:49PM French ISP Free confirmed a data breach affecting 19.2 million customers, with personal information, including 5.11 million IBAN numbers, stolen. The company has filed a criminal complaint and notified authorities. Although no passwords or bank card details were accessed, impacted subscribers are being informed and advised to monitor for unusual … Read more

About the security content of macOS Ventura 13.7.1 – Apple Support

October 28, 2024 by Xynik

October 28, 2024 at 12:06PM On October 28, 2024, an update for macOS Ventura 13.7.1 was released addressing multiple security vulnerabilities (CVE-2024-44255, CVE-2024-44270, etc.). Improvements included better validation and checks to prevent unauthorized access, data leaks, memory corruption, and file system modifications, enhancing overall system security for users. **Meeting Takeaways: Security Updates for macOS Ventura … Read more

‘Prometei’ Botnet Spreads Its Cryptojacker Worldwide

October 24, 2024 by Xynik

October 24, 2024 at 02:09AM The “Prometei” botnet, active since 2016, targets outdated software vulnerabilities globally, infecting over 10,000 computers. Its primary goal is cryptojacking, particularly of Monero cryptocurrency, while also enabling further malicious activities. Notably, it avoids Russian targets, reflecting a deliberate safeguarding of Russian-language accounts and systems. ### Meeting Takeaways on Prometei Botnet … Read more