Your cart is currently empty!
Author: Omar
Tines '’s SOC Automation Capability Matrix: How to Use It
The SOC Automation Capability Matrix ( SOC ACM) was developed by John Tuckner and the team at workflow and automation platform Tines to aid security operations teams in better comprehending their automation capabilities and incident-response. Since its introduction in January 2023, the security community has shared and endorsed this customizable, vendor-agnostic tool with lists of…
UnitedHealth confirms that the US healthcare billing outage was caused by an Optum hack.
A cyberattack by “nation-state” hackers on the Change Healthcare platform forced UnitedHealth Group’s subsidiary Optum to shut down IT systems and a number of services, the healthcare giant confirmed. A health insurance provider with locations in all 50 US states is United Health Group ( UHG). With 440, 000 employees worldwide and a revenue of$…
Researchers Examine Apple'’s Most Recent Zero-Click ShortcutsVulnerability
iOS Security / Privacy in the Newsroom on February 23, 2024 A high-severity security flaw in Apple’s Shortcuts app has been fixed, and it could allow a shortcut to access sensitive data on the device without the users ‘ permission. Apple addressed the vulnerability on January 22, 2024, with the release of iOS 17, iPadOS…
ATT Outage and Investigation
Outages Sweeping the Nation: ATT Outage Under Investigation ATtT faced a massive network outage on Thursday, February 22nd, 2024. The ATT outage left customers unable to make phone calls, send texts, or access the internet for nearly 11 hours before complete service restoration. The outage could have also affected users dependent on ATT fiber outage services. Impact and Response:…
Avast Slammed with $16.5 Million FTC Fine for Selling User Browsing Data
A Landmark Fine: The FTC’s $16.5 Million Penalty Against Avast for Selling User Browsing Data In a striking move to protect consumer privacy, the U.S. Federal Trade Commission (FTC) has imposed a hefty $16.5 million fine on antivirus software giant Avast. This punitive action comes in response to the company’s controversial practice of selling users’…
Microsoft has begun testing Windows 11’s Wi-Fi 7 support.
In Windows 11, Microsoft has begun testing support for Wi-Fi 7, which offers multi-gigabit speeds and improved throughput, latency, and reliability over earlier Wi–Fi generations. With 320 MHz superwide channels exclusive to the 6 GHz spectrum, which boast double the throughput compared to Wi- Fi 6, the Wi-Fi 7 was introduced and nbsp last month,…
On eligible PCs, Microsoft is now compelled to install Windows 11 23H2.
On eligible devices that have reached or are nearing the end of their service life, Microsoft has begun to forcefully install Windows 11 23H2. Redmond’s forced rollout phase for Windows 11 23H2 was announced this week, following the automatic update to Windows 12 H2 on systems running multiple versions of the operating system on October…
The new auto-fill feature on Bitwarden increases phishing resistance.
A new inline auto-fill menu has been added to the Bitwarden open-source password management service andnbsp to address the possibility of malicious form fields stealing user credentials. When Flashpoint analysts showed that attackers could inject rogue iframes on secure, vulnerable websites or subdomains that were open to hijacking, the problem was brought to light almost…
Ransomware attacks take advantage of a new ScreenConnect RCE flaw.
Update , February 23, 07: 02 EST: According to a report released today by Sophos, the ransomware payloads they saw were created using the&bbSp—LockBit—which allegedly leaked online in late September 2022 by irate malware developers. Sophos observed samples from this week’s attacks, including a , buhtiRansom LockBit variants dropped on 30 different customer networks, and another payload…
LockBit ransomware attacks hacked ScreenConnect servers.
In order to access unpatched ScreenConnect servers and spread LockBit ransomware payloads on compromised networks, attackers are taking advantage of a maximum severity authentication bypass vulnerability. Since Tuesday, when ConnectWise released security updates and several cybersecurity companies published proof-of-concept exploits, the maximum severityCVE-2024-1709 auth bypass flaw has been actively exploited. The CVE-2024–1708 high-severity path traversal…