Hi folks,

Here we are with another issue!

It's weeks like these that I'm happy that I moved the "Breaches and leaks" section to the bottom, because it's a looong one this week. Otherwise I'd feel obligated to trim it down. Now you can browse at your leisure to see if anything jumps out at you :-)

Enjoy the read, and have a wonderful weekend!

Dieter Van der Stock

Breaches and leaks

  • Alarm system cyberattack leaves those in need struggling to call for help: link.
  • McLaren Health Care says data breach impacted 2.2 million people: link.
  • Pharmacy provider Truepill data breach hits 2.3 million customers: link.
  • PJ&A says cyberattack exposed data of nearly 9 million patients: link.
  • Australian ports operator recovering after major cyber incident: link.
  • LockBit ransomware leaks gigabytes of Boeing data: link.
  • New Samsung data breach impacts UK store customers: link.
  • Toyota confirms breach after Medusa ransomware threatens to leak data: link.
  • Long Beach, California turns off IT systems after cyberattack: link.
  • Maine govt notifies 1.3 million people of MOVEit data breach: link.
  • More than $100 million stolen from Poloniex crypto platform: link.
  • Ethereum feature abused to steal $60 million from 99K victims: link.
  • Washington State Department of Transportation working to recover from cyberattack: link.
  • Ransomware attack on Ohio city impacts multiple services: link.
  • Cyberattack on North Carolina county allowed hackers to access data: link.
  • Nearly two dozen Danish energy companies hacked through firewall bug in May: link.
  • Critical systems restored at English council following ransomware attack: link.
  • Mortgage giant Mr. Cooper says customer data exposed in breach: link.
  • Toronto Public Library confirms data stolen in ransomware attack: link.
  • Rackspace Ransomware Costs Soar to Nearly $12M: link.
Dieter Van der Stock

Issues and fixes

  • Microsoft's November Patch Tuesday fixes 5 zero-days, 58 flaws: link.
  • 5 Juniper CVEs actively exploited in the wild: link.
  • Fortinet warns of critical command injection bug in FortiSIEM: link.
  • Microsoft fixes critical Azure CLI flaw that leaked credentials in logs: link.
  • LockBit ransomware exploits Citrix Bleed in attacks, 10K servers exposed: link.
  • VMware discloses critical VCD Appliance auth bypass with no patch: link.
  • WP Fastest Cache plugin bug exposes 600K WordPress sites to attacks: link.
Dieter Van der Stock