Security Leftovers
-
MS SQL servers are getting hacked to deliver ransomware to orgs - Help Net Security
The ransomware encrypts some files and avoids others, including files with an extension associated with its own activities (.FARGO, .FARGO2, etc.) and that of GlobeImposter, another ransomware threat targeting vulnerable MS SQL servers.
-
Security updates for Tuesday [LWN.net]
Security updates have been issued by Debian (dovecot and firefox-esr), Fedora (firefox and grafana), Red Hat (firefox and thunderbird), Slackware (dnsmasq and vim), SUSE (dpdk, firefox, kernel, libarchive, libcaca, mariadb, openvswitch, opera, permissions, podofo, snakeyaml, sqlite3, unzip, and vsftpd), and Ubuntu (expat, libvpx, linux-azure-fde, linux-oracle, squid, squid3, and webkit2gtk).
-
Defenders Be Prepared: Cyberattacks Surge Against Linux Amid Cloud Migration [Ed: Conflating Linux with clown computing stupidity]
-
Apptainer 1.1.0, a Linux Foundation project (formerly Singularity), Arrives With Added Security Features and Build Improvements - Benzinga
The Apptainer community today announced version 1.1.0 of the popular container system for secure, high-performance computing (HPC). Improvements in the new version provide a smaller attack surface for production deployments while offering features that improve and simplify the user experience. Apptainer continues the legacy of Singularity with backwards compatibility, stability, added security, performance and reproducibility.
-
CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite
CISA and the Multi-State Information Sharing & Analysis Center (MS-ISAC) has updated joint Cybersecurity Advisory AA22-228A: Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite, originally released August 16, 2022. The advisory has been updated to include additional Malware Analysis Reports and indicators of compromise.
-
CISA Releases Three Industrial Control Systems Advisories | CISA
CISA has released three (3) Industrial Control Systems (ICS) advisories on September 27th, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
-
iTWire - Optus chief under pressure to quit over handling of breach
Both sides of politics are putting pressure on Optus chief executive Kelly Bayer Rosmarin to step down over her handling of the data breach which the company made public last Thursday.
Opposition cyber security spokesman James Paterson joined the chorus of criticism on Tuesday, calling on Bayer Rosmarin to resign if the public had been misled on the company's reaction to the breach.
Home Affairs Minister Clare O'Neil, who on Monday described the attack on Optus' network as being anything but sophisticated — as Bayer Rosmarin had claimed — expressed concern on Tuesday about reports that Medicare details had been leaked in the data that was made public.