Hi everyone,

Nothing special to report this week, just the usual stream of news :-) Enjoy the read and have a good weekend!


Dieter Van der Stock

Breaches and leaks

  • Pro-Ukraine hackers breach Russian ISP in revenge for KyivStar attack: link.
  • Fidelity National Financial: Hackers stole data of 1.3 million people: link.
  • Halara probes breach after hacker leaks data for 950,000 people: link.
  • Framework discloses data breach after accountant gets phished: link.
  • Memorial University recovers from cyberattack, delays semester start: link.
  • Web3 security firm CertiK's X account hacked to push crypto drainer: link.
  • Netgear, Hyundai latest X accounts hacked to push crypto drainers: link.
  • LoanDepot caught in mortgage industry cyberattack spree: link.
  • SEC X account hacked to hawk crypto-scams: link.
  • Online services down for German craft associations following ‘security incident’: link.
  • LockBit claims November attack on New Jersey hospital that disrupted patient care: link.
  • Hackers disrupt Beirut airport with anti-Hezbollah message: link.
Dieter Van der Stock

Issues and fixes

  • Microsoft January 2024 Patch Tuesday fixes 49 flaws, 12 RCE bugs: link.
  • Ivanti Connect Secure devices face active exploitation, patch schedule staggered: link.
  • Cisco says critical Unity Connection bug lets attackers get root: link.
  • Over 150k WordPress sites at takeover risk via vulnerable POST SMTP Mailer plugin: link.
  • Hackers target Apache RocketMQ servers vulnerable to RCE attacks: link.
  • Apache OFBiz critical CVE leads to surge in exploitation attempts: link.
  • Decryptor for Babuk ransomware variant released after hacker arrested: link.
Dieter Van der Stock