Campari hit by Ragnar Locker Ransomware, $15 million demanded
Another attack and more and more fear among similar industries. The Italian company Campari has been hit by ransomware and is in the ransom demand.
U.S. City New Haven Fined $200K Over Former Employee’s HIPAA Violation
“Federal regulators have imposed a $202,400 fine on the City Health Department in New Haven, Connecticut, for potentially violating the Health Insurance Portability and Accountability Act (HIPAA).”
https://cisomag.eccouncil.org/u-s-city-new-haven-fined-200k-over-former-employees-hipaa-violation/
Critical SonicWall vulnerability affects 800K firewalls, patch now
“A critical vulnerability has been detected in SonicWall VPN networks that affect 800K firewalls; they should be patched immediately. “Given the increase in remote workforce and dependence on corporate VPNs, easily exploitable vulnerabilities like these relate to security.”
FBI warns of newly registered domains spoofing US Census Bureau
The FBI warns of counterfeit US Census Bureau domains’ potential use, the coming malicious campaigns like phishing and theft of credentials.
Malicious npm Packages Opened Shells On Windows and Linux Systems
“Once again, the npm security team has caught a bunch of malicious npm packages on the portal. These npm packages opened shells on target Windows and Linux devices.”
Cisco warns of attacks targeting high severity router vulnerability
Cisco warns of attacks targeting the CVE-2020-3118 vulnerability, which affects multiple routers.
New Chrome 0-day Under Active Attacks – Update Your Browser Now
“Attention readers, if you are using Google Chrome browser on your Windows, Mac, or Linux computers, you need to update your web browsing software immediately to the latest version Google released earlier today.”
https://thehackernews.com/2020/10/chrome-zeroday-attacks.html
Google Chrome now blocks site notifications with abusive content
“Starting with Chrome 86, Google is automatically hiding website notification spam on sites showing a pattern of sending abusive notification content to visitors.”
French IT giant Sopra Steria hit by Ryuk ransomware
French IT services giant Sopra Steria suffered a cyberattack on October 20th, 2020, that reportedly encrypted portions of their network with the Ryuk ransomware.
https://www.bleepingcomputer.com/news/security/french-it-giant-sopra-steria-hit-by-ryuk-ransomware/
Credential-Stuffing Attacks Plague Loyalty Programs
“Credential-Stuffing Attacks Plague Loyalty Programs
But that’s not the only type of web attack cybercriminals have been profiting from.”