Some more Crowdstrike fallout. Digicert revoking 83.000 certificates.  2nd August 2024

Hi folks,

I hope you're doing well. It's a quick version for me today, I'm studying for an exam next week and still got a ways to go :-) Enjoy the read and have a good one!

Cheers,

Some more Crowdstrike fallout

• CrowdStrike's impact on aviation: link.
• Delta suing Microsoft and CrowdStrike after $500M loss: link.
• CrowdStrike investors file class action suit following global IT outage: link.
• Business interruption claims will drive insurance losses linked to CrowdStrike IT disruption: link.

Quick links

• DigiCert revoking 83,000 certificates of 6,800 customers: link.
• WhatsApp for Windows lets Python, PHP scripts execute with no warning: link.
• Global average data breach costs reach all-time high of $4.9M: link.
• Jailed cybercriminals returned to Russia in historic prisoner swap: link.
• Sitting Ducks DNS attacks let hackers hijack over 35,000 domains: link.
• Twilio kills off Authy for desktop, forcibly logs out all users: link.
• CISA names Lisa Einstein as its first chief AI officer: link.

Breaches and leaks

• HealthEquity says data breach impacts 4.3 million people: link.
• OneBlood's virtual machines encrypted in ransomware attack: link.
• Cencora confirms patient health info stolen in February attack: link.
• Microsoft says massive Azure outage was caused by DDoS attack: link.
• World leading silver producer Fresnillo discloses cyberattack: link.
• Columbus investigates whether data was stolen in ransomware attack: link.
• Crypto exchange Gemini discloses third-party data breach: link.

Issues and fixes

• Acronis warns of Cyber Infrastructure default password abused in attacks: link.
• Proofpoint settings exploited to send millions of phishing emails daily: link.
• Microsoft calls out apparent ESXi vulnerability that some researchers say is a ‘nothing burger’: link.