Security Leftovers
-
Security updates for Monday [LWN.net]
Security updates have been issued by Debian (openimageio and udisks2), Fedora (chromium, curl, kernel, mediawiki, and seamonkey), Oracle (httpd:2.4), Red Hat (httpd and mod_http2 and tigervnc), SUSE (ghostscript and kernel), and Ubuntu (irssi).
-
‘Network disruption’ probed at California sheriff’s office
Southern California’s San Bernardino County Sheriff’s Department said it experienced a “network disruption” to its electronic systems last week and has referred the problem to the FBI and Department of Homeland Security.
The sheriff’s department said the problem occurred Friday, but officials declined to explain what the disruption entailed. The disruption has not impacted the agency’s operations, the department said in a statement Saturday.
-
Thai authorities still looking for “9Near”
The story began last month when someone offered to sell data on 55 million Thai citizens on BreachForums. Days later, and before there was any evidence of any sale, BreachForums was taken offline after police arrested the forum’s owner, “Pompompurin.”
-
Data breach at Elmbrook School District exposes personal information about former and current employees
A breach that exposed the names and Social Security numbers of current and former Elmbrook School District employees continued even after the district was aware of the problem.
The district learned its system had been compromised on Aug. 23, 2022, according to Elmbrook School Chief Strategy Officer Chris Thompson. Files were removed from Aug. 23-27, 2022, an investigation revealed.
“These were professional cyber criminals. This is not something your antivirus software cleans up. I cannot comment on the efforts required to secure our network," Thompson said in a text message to a reporter asking why the breach continued even after the district was aware of the problem.
-
Big Pharma-partnered Evotec on high alert after cyber attack takes systems offline
German biotech Evotec is on high alert after a late-week cyber attack prompted the company to shut down its network.
Evotec says that unusual activity was noticed on its IT systems on April 6, prompting the company to take its digital infrastructure offline. A forensic examination of the breach is underway to learn the extent of the attack and relevant authorities have been notified, according to an update posted Monday. Evotec says that “business continuity is upheld” across the company’s sites but that systems remain unconnected and there may be delays or slower responses to partners.