Hi folks,

I hope this issue finds you well! There's some good news to report on this week with the takedown of LockBit, which is always nice.

I've added a little experimental section called "Quick links". Items that I found good to know about, but probably wouldn't make it into the newsletter in a normal issue. Or maybe the title just says enough without needing a summary.

I'm unsure if this is a keeper. On the one hand, I created this newsletter to give you a short overview of security news. On the other hand, security news has become such a firehose over the last few years that my issues keep getting longer, even with very active filtering on my side.

So, just as with the breaches and issues sections, I'm trying the solution of providing a list that you can easily scan over, or ignore at your leisure. Let me know if you like the extra info, or if you're more on the side of "please gawd make it shorter" :-)

As always folks, thanks for reading, and have a lovely day!

Dieter Van der Stock

Quick links

  • Signal rolls out usernames that let you hide your phone number: link.
  • NSA Cyber Director Rob Joyce to retire: link.
  • Apple adds post-quantum encryption to iMessage: link.
  • Google open sources file-identifying Magika AI model: link.
  • Nginx core developer quits project in security dispute, starts “freenginx” fork: link.
Dieter Van der Stock

Breaches and leaks

  • Cactus ransomware claim to steal 1.5TB of Schneider Electric data: link.
  • Change Healthcare hit by cyberattack: link.
  • Wyze camera glitch gave 13,000 users a peek into other homes: link.
  • ALPHV ransomware claims loanDepot, Prudential Financial breaches: link.
  • HHS reaches second-ever ransomware settlement: link.
  • Critical infrastructure vendor PSI Software hit by ransomware: link.
  • Eye care services firm faces lawsuit over data breach impacting 2.3 million: link.
  • DC-area school system says data of 100,000 people affected in ransomware attack: link.
Dieter Van der Stock

Issues and fixes

  • SolarWinds fixes critical RCE bugs in access rights audit solution: link.
  • Over 28,500 Exchange servers vulnerable to actively exploited bug: link.
  • VMware urges admins to remove deprecated, vulnerable auth plug-in: link.
  • Joomla fixes XSS flaws that could expose sites to RCE attacks: link.
  • Zero-click Apple Shortcuts vulnerability allows silent data theft: link.
  • ConnectWise ScreenConnect under active exploitation due to critical flaws: link.
  • Hackers exploit critical RCE flaw in Bricks WordPress site builder: link.
Dieter Van der Stock