Hi folks,

It's been a busy week here, with more incident trainings and a bout of the flue. Next week I'll be taking an exam on incident handling, so send me some happy thoughts ;-)

There's some good news in this week's issue! There's research that shows ransomware payments going down, and Biden saying he'll veto any pushback on the SEC's disclosure rules. Considering our industry's usually doom and gloom, I'll take any positivity I can get. Hooray for positive changes!

Have a good read, and a good weekend!


Dieter Van der Stock

Breaches and leaks

  • Cloudflare hacked using auth tokens stolen in Okta attack: link.
  • A mishandled GitHub token exposed Mercedes-Benz source code: link.
  • Kansas City public transportation authority hit by ransomware: link.
  • Energy giant Schneider Electric hit by Cactus ransomware attack: link.
  • Keenan warns 1.5 million people of data breach after summer cyberattack: link.
  • Citibank sued over failure to defend customers against hacks and fraud: link.
  • Johnson Controls says ransomware attack cost $27 million, data stolen: link.
  • Europcar denies data breach of 50 million users, says data is fake: link.
  • FTC orders Blackbaud to boost security after massive data breach: link.
  • $112 million stolen from founder of Ripple cryptocurrency platform: link.
Dieter Van der Stock

Issues and fixes

  • Exploits released for critical Jenkins RCE flaw, patch now: link.
  • Ivanti warns of new Connect Secure zero-day exploited in attacks: link.
  • New Linux glibc flaw lets attackers get root on major distros: link.
  • CISA warns of patched iPhone kernel bug now exploited in attacks: link.
  • Exploit released for Android local elevation flaw impacting 7 OEMs: link.
  • New Windows Event Log zero-day flaw gets unofficial patches: link.
  • 'Leaky Vessels' container escape vulnerabilities impact docker and others: link.
Dieter Van der Stock