Security Leftovers
-
Bad smell! VMware quietly removes page about service to Medibank
Multi-cloud services provider VMware has excised a document from the site of its fully-owned security provider Carbon Black which details services provided to Medibank Group, the medical insurer that has been hit by attackers and had its data purloined.
This was disclosed on Friday by the Australian Financial Review's national correspondent Michael Roddan in the newspaper's Rear Window section.
Roddan wrote that he had not been able to access the page even on the Wayback Machine aka the Internet Archive which stores pages from the Web.
[...]
Back in 2017, the global security firm Sophos removed a page touting its work for the British National Health Service after the latter was overwhelmed by an attack of the WannaCry ransomware.
-
iTWire - MacGibbon conflict of interest: ABC caught changing online story
The ABC has been caught out changing an online news report after iTWire pointed out that the report in question — about Thursday's Q+A program — contained no mention of the fact that Alastair MacGibbon, the chief technology officer of security shop CyberCX, is currently providing advice to Medibank Group, a company which recently suffered a devastating network attack.
MacGibbon was given a platform to tout his wares on the ABC's Q+A program on Thursday with only a fleeting mention of the fact that his firm is now advising Medibank how to deal with its ransomware attack and subsequent data leak.
But even that kind of mention was absent in the online news report as can be seen from the screenshots included in this article.
-
PC vendor Lenovo issues fixes for UEFI flaws discovered by ESET [Ed: UEFI remains an anti-security mechanism, owing to complexity and dishonesty]
Global PC vendor Lenovo has fixed two vulnerabilities in some of its laptop models that could lead to a disabling of secure boot, thus exposing a user to the injection of malicious code at boot time.
In an advisory, the company said the following three issues had been reported in the UEFI firmware of its notebooks:
"CVE-2022-3430: A potential vulnerability in the WMI Setup driver on some consumer Lenovo Notebook devices may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.
"CVE-2022-3431: A potential vulnerability in a driver used during manufacturing process on some consumer Lenovo Notebook devices that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.