BT unit took servers offline after Black Basta ransomware breach

December 4, 2024 at 01:40PM BT Group has confirmed the shutdown of several servers within its BT Conferencing division due to a ransomware breach by Black Basta. This incident highlights the ongoing cybersecurity challenges faced by multinational companies in protecting their infrastructure. **Meeting Takeaways: BT Group Ransomware Incident** 1. **Company Affected:** BT Group, formerly known … Read more

VMware Patches High-Severity Vulnerabilities in Aria Operations

November 26, 2024 at 09:39AM VMware released a high-severity bulletin addressing five security vulnerabilities in its Aria Operations product, affecting versions 8.x and VMware Cloud Foundation 4.x and 5.x. Patches are available to fix local privilege escalation and cross-site scripting exploits. Users are urged to apply patches urgently as no workarounds exist. ### Meeting Takeaways … Read more

Halliburton reports $35 million loss after ransomware attack

November 11, 2024 at 10:36AM Halliburton suffered $35 million in losses due to an August ransomware attack by the RansomHub gang, which disrupted IT systems and client services. Despite limited operational impact, data was stolen. The company reported minimal financial effects, with expectations for cash flow remaining intact but potential future legal costs looming. ### … Read more

Halliburton says ransomware attack led to $35 million in losses

November 11, 2024 at 10:28AM Halliburton faced a $35 million loss due to an August ransomware attack by the RansomHub gang, which led to IT shutdowns and customer disconnections. Despite the breach, the company anticipates limited financial impact, reporting only a minor effect on earnings. Ongoing investigations are examining the scope of stolen data. **Meeting … Read more

CISA warns of critical Palo Alto Networks bug exploited in attacks

November 7, 2024 at 02:05PM CISA has alerted that attackers are exploiting a critical authentication vulnerability in Palo Alto Networks Expedition, a tool used to migrate firewall configurations from various vendors to PAN-OS. **Meeting Takeaways:** 1. **CISA Warning:** The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding a critical vulnerability. 2. **Affected … Read more

Put End-of-Life Software to Rest

October 28, 2024 at 10:08AM The commentary discusses the dangers of using end-of-life (EOL) software within organizations, likening it to ignoring a haunted house’s threats. Many companies cling to outdated software due to budget constraints, risking data breaches. It emphasizes the need for audits, communication, and collaboration to effectively manage and eliminate EOL software. ### … Read more

SolarWinds critical hardcoded credential bug under active exploit

October 16, 2024 at 04:03PM A critical credential vulnerability in SolarWinds’ Web Help Desk (CVE-2024-28987) allows unauthenticated remote access. Although patched in version 12.8.3 HF2, many instances remain vulnerable. The flaw is exploited by criminals, with significant risks of sensitive data exposure. This is SolarWinds’ second critical bug for the product in two months. ### … Read more

Volkswagen Says IT Infrastructure Not Affected After Ransomware Gang Claims Data Theft

October 15, 2024 at 12:30PM Volkswagen responded to claims by the 8Base ransomware group regarding stolen data, stating that their IT infrastructure remains unaffected by the incident. The company reassured stakeholders about the security of its systems despite the allegations. **Meeting Takeaways:** 1. **Ransomware Incident:** The 8Base ransomware group has claimed to have stolen valuable … Read more

Organizations Slow to Protect Doors Against Hackers: Researcher

October 15, 2024 at 08:41AM A researcher has found that door access controllers are vulnerable to remote hacker attacks for long durations, indicating organizations are slow to implement necessary protective measures. This highlights the need for improved security protocols to safeguard access points. **Meeting Takeaways:** 1. **Vulnerability Issue**: Door access controllers are identified as vulnerable … Read more

5 CVEs in Microsoft’s October Update to Patch Immediately

October 8, 2024 at 05:52PM Microsoft’s October security update addressed 117 vulnerabilities, ranking as the third largest release this year. Of these, two actively exploited flaws require immediate attention. One, CVE-2024-43573, is a spoofing vulnerability in MSHTML, while the other, CVE-2024-43572, is a remote code execution (RCE) flaw in Microsoft Management Console. Three publicly known … Read more