Security Leftovers

posted by Roy Schestowitz on Jul 23, 2023

• Rust-based malware used to hack both Windows and Linux servers [Ed: Way to distract from the real culprit in this case]

  Microsoft's David Weston, Vice President, Enterprise and OS Security, explained that a reason for adding Rust was to improve the security of the Windows 11 memory system as Rust is considered memory-safe and type-safe.

• New P2P Worm Puts Windows and Linux Redis Servers in its Sights [Ed: This was patches ages ago and has nothing to do with "Linux" ]

• Teachers Insurance and Annuity Association of America notifying 2,630,717 after PBI alerts them to MOVEit breach

  As those trying to monitor and analyze the massive MOVEit breach are already aware, the Teachers Insurance and Annuity Association of America (“TIAA”) provided university faculty retirement benefits to a number of colleges and universities. The TIAA part of the breach was not a direct attack on the vendor’s systems. TIAA was notified by its vendor, Pension Benefit Information, that PBI had been affected by the breach.

• Buckingham County Public Schools notifies 86 students after a business email account was compromised

  Buckingham County Public Schools in Virginia has sent notifications to parents of 86 students after a compromise of a district’s business email account.

• Attorneys on alert for cybersecurity threats: New York's new CLE training requirement

  July 1st was a cybersecurity milestone for every New York attorney who now needs to complete an hour of cybersecurity training before renewing their law license. New York Courts in their role supervising and licensing attorneys recognize the importance of cybersecurity, and the threat of cybercrime.

• ‘It feels like a digital hurricane’: Coastal Mississippi county recovering from ransomware attack

  A coastal Mississippi county is in the process of recovering from a wide-ranging ransomware attack that took down nearly all of the government’s in-office computers.

  Nestled right along the border with Alabama, George County is the quiet home to more than 25,000 people. But the local government was thrown into chaos this weekend when ransomware actors used a discrete phishing email to gain deep access to the county’s systems.

  George County communications director Ken Flanagan told Recorded Future News in an interview that the situation “felt like a digital hurricane” after IT officials discovered the attack early on Saturday morning.

• VirusTotal: We're sorry someone fat-fingered and exposed 5,600 users

  VirusTotal today issued a mea culpa, saying a blunder earlier this week by one of its staff exposed information belonging to 5,600 customers, including the email addresses of US Cyber Command, FBI, and NSA employees.

  The unintentional leak was due to the layer-eight problem; human error. On June 29, an employee accidentally uploaded a .csv file of customer info to VirusTotal itself, said Emiliano Martinez, tech lead of the Google-owned malware analysis site.

• 1st Circuit confirms standing for data breach victims

  On June 30, the U.S. Court of Appeals for the First Circuit overruled a district court’s dismissal of a putative class action against a home delivery pharmacy service for allegedly failing to prevent a 2021 data breach that exposed the personally identifiable information (PII) of over 75,000 patients. The class action complaint alleged state law claims for negligence, breach of implied contract, unjust enrichment, invasion of privacy, and breach of fiduciary duty, and sought damages and injunctive relief. The putative class was comprised of U.S. residents whose PII was compromised in the data breach. The two named plaintiffs were former or current patients whose PII were compromised in the data breach, and one of the two named plaintiffs had her stolen PII used to file a fraudulent tax return. The district court dismissed the lawsuit for lack of Article III standing.

• Hundreds of children’s medical documents found along Cape Coral streets

  “As a parent to two young children in a public school, I would be livid if I found out that their information had been scattered across the roadway for anybody to come across,” said Bethany Saavedra, a resident in Babcock Ranch.

  WINK News called a doctor listed on one of the documents. The doctor explained that the document was related to a physical he did for a student last year, required for school.

  He said that the parents of the child take the document to the school or health department.

  Saavedra described what she saw along the roads, “Thousands. Yeah. Over 1000. Easily. They were scattered for a quarter of a mile from the intersection back that way.”

• Privacy breach involving dozens of vulnerable children

  An email containing the names of vulnerable children was mistakenly sent to other parents and guardians, prompting an apology from Te Whatu Ora Southern.

  Dozens of parents and guardians received the email on Tuesday from the Vera Haywood Centre, a child development team based at Dunedin Hospital.

  That email invited recipients to a paediatric seminar, but was intended as an internal email for staff only.