Security Leftovers

posted by Roy Schestowitz on Jul 11, 2023,
updated Jul 11, 2023

• Whose certificate is it anyway?

  Guest Post: How Certification Authority Authorization is used globally.

• Security updates for Monday [LWN.net]

  Security updates have been issued by Debian (firefox-esr, fusiondirectory, ocsinventory-server, php-cas, and thunderbird), Fedora (dav1d, perl-CPAN, and yt-dlp), Red Hat (python39:3.9 and python39-devel:3.9), Slackware (mozilla), SUSE (prometheus-ha_cluster_exporter and prometheus-sap_host_exporter), and Ubuntu (ghostscript, linux-azure, linux-intel-iotg, linux-intel-iotg-5.15, and ruby-doorkeeper).

• HCA Healthcare releases statement while hacker puts data up for sale on deep web

  On July 5, while some folks were cleaning up from fireworks and barbecues, DataBreaches broke the news that HCA Healthcare data was up for sale on a deep web forum if the company didn’t meet some unspecified demands. Since that time, DataBreaches has remained in some contact with the seller, who has occasionally provided additional details (although not as many as this site would have liked). Of note, the seller informed DataBreaches that they were also the hacker, that this was a hack, not a leak, and that they had contacted HCA Healthcare on July 4 and given them until July 10 to respond to demands.

  HCA Healthcare did not reply to DataBreaches’ inquiries at the time, later telling a third party that the emails had been caught up in some DMARC-related filter.

• Scoop: Razer hacker tells DataBreaches he’s making no attempt to extort Razer

  popular hacking forum. When DataBreaches contacted Razer on Saturday to find out if they were aware of the listing and had any comment, a spokesperson responded that they were aware of a potential breach and were investigating. The forum listing was picked up on Twitter on Sunday and from there, some Singapore news outlets have reported on the claims.

  Today, DataBreaches can provide some additional details about the incident after hearing from the hacker over the weekend.

• 2023-07-06 [Older] CISA and Partners Release Joint Cybersecurity Advisory on Newly Identified Truebot Malware Variants

• 2023-07-06 [Older] Mozilla Releases Security Advisories for Thunderbird, Firefox, and Firefox ESR

• 2023-07-07 [Older] CISA Adds One Known Vulnerability to Catalog

• 2023-07-07 [Older] Progress Software Releases Service Pack for MOVEit Transfer Vulnerabilities

• 2023-07-06 [Older] CISA Releases Three Industrial Control Systems Advisories

• 2023-07-06 [Older] PiiGAB M-Bus

• 2023-07-06 [Older] ABUS TVIP