Category: Kamban

The City of Columbus, Ohio, says it’s investigating whether personal data was stolen in a ransomware attack on July 18, 2024 that disrupted the City’s services. The attack caused disruptions in public-facing services, seeding confusion about whether the IT outages were linked to CrowdStrike’s faulty Falcon configuration update. Not many details were provided then, but…

DigiCert is warning that it will be mass-revoking SSL/TLS certificates due to a bug in how the company verified if a customer owned or operated a domain and requires impacted customers to reissue certificates within 24 hours. It is unclear how many certificates will be revoked during this process, but the company says it affects approximately 0.4% of the…

Organizations invest time and money into staying safe from cyber threats, so it’s critical they can measure how well their cybersecurity investments are paying off. Take password policies. Every organization has one (even if it’s the standard settings in Active Directory) and they may have additional password management software on top. But if you’re not…

Microsoft is investigating an ongoing and widespread outage blocking access to some Microsoft 365 and Azure services. “We’re currently investigating access issues and degraded performance with multiple Microsoft 365 services and features. More information can be found under MO842351 in the admin center,” Redmond said. However, many users report having issues connecting to the Microsoft 365…

Image: MidjourneyThe United Kingdom’s Information Commissioner’s Office (ICO) revealed today that the Electoral Commission was breached in August 2021 because it failed to patch its on-premise Microsoft Exchange Server against ProxyShell vulnerabilities. Tracked as CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207, these security flaws were chained to hack into the commission’s Exchange Server 2016 and deploy web shells,…

On February 21, 2024, Change Healthcare, a subsidiary of UnitedHealth Group and one of the largest healthcare payment processing companies in the United States, fell victim to a devastating ransomware attack. This incident, which has been described as the most significant and consequential cyberattack against the U.S. healthcare system in history, has had far-reaching implications…

A new version of the Android spyware ‘Mandrake’ has been found in five applications downloaded 32,000 times from Google Play, the platform’s official app store. Bitdefender first documented Mandrake in 2020, with the researchers highlighting the malware’s sophisticated spying capabilities and noting that it has operated in the wild since at least 2016. Kaspersky now…

Microsoft Outlook can be turned into a C2 beacon to remotely execute code, as demonstrated by a new red team post-exploitation framework named “Specula,” released today by cybersecurity firm TrustedSec. This C2 framework works by creating a custom Outlook Home Page using WebView by exploiting CVE-2017-11774, an Outlook security feature bypass vulnerability patched in October 2017.…

The rise of AI in cybersecurity presents both significant benefits and challenges. AI enhances threat detection, automates responses, and reduces costs, transforming the cybersecurity landscape. AI has been leveraged to predict attacker moves and detect vulnerabilities with high accuracy. However, it has also enabled sophisticated cyberattacks, such as deepfakes and adaptive malware, which can evade…