Complete US ban of Kaspersky products. New UEFI firmware vulnerability. Running an SSH honeypot for 30 days.  21st June 2024

Hi folks,

I hope this issue finds you in good health and spirits! My latest Covid journey has run its course, so I'm happily back to work, feels good :-) Enjoy the read and have a good weekend!

Cheers,

Quick links

• Microsoft: New Outlook security changes coming to personal accounts: link.
• Proton is taking its privacy-first apps to a nonprofit foundation model: link.
• G7 countries vow to establish collective cybersecurity framework for operational tech: link.
• US and Indonesia hold port-focused cybersecurity exercise: link.
• US federal contractors pay multimillion-dollar settlements over cybersecurity lapses: link.

Breaches and leaks

• CDK Global cyberattack impacts thousands of US car dealerships: link.
• CDK Global hacked again while recovering from first cyberattack: link.
• Scathing report on Medibank cyberattack highlights unenforced MFA: link.
• Panera Bread likely paid a ransom in March ransomware attack: link.
• "Researchers" exploit Kraken exchange bug, steal $3 million in crypto: link.
• Advance Auto Parts confirms data breach exposed employee information: link.
• Crown Equipment confirms a cyberattack disrupted manufacturing: link.
• More than 12,000 Santander employees in US affected by Snowflake breach: link.
• More than 400,000 have data leaked in cyberattack on Texas education organization: link.
• Blackbaud must pay $6.75 million, improve security after lying about scope of 2020 hack: link.

Issues and fixes

• ASUS warns of critical remote authentication bypass on 7 routers: link.
• VMware fixes critical vCenter RCE vulnerability, patch now: link.
• SolarWinds Serv-U path traversal flaw actively exploited in attacks: link.
• High-severity vulnerabilities affect a wide range of Asus router models: link.