Security Leftovers
-
LWN ☛ Security updates for Wednesday
Security updates have been issued by Red Hat (gimp) and Ubuntu (firefox, linux-oracle, linux-oracle-5.15, and python-django).
-
Dark Reading ☛ China's Cyberattackers Maneuver to Disrupt US Critical Infrastructure
Volt Typhoon is positioning itself to physically disrupt and cripple US critical infrastructure by gaining access to operational technology networks in the energy, water, communications, and transportation sectors, according to the Feds.
-
Dark Reading ☛ As Smart Cities Expand, So Do the Threats
The systems that make up a smart city ecosystem are not easily secured and require better design and better policy to ensure they are not vulnerable.
-
The Independent UK ☛ Millions of hacked toothbrushes used in Swiss cyber attack
Hackers have infected millions of smart toothbrushes with malware in order to carry out a massive cyber attack against a Swiss company, according to reports.
The internet-connected toothbrushes were linked together in something known as a botnet in order to perform a distributed denial of service (DDoS) attack, which overloads websites and servers with huge amounts of web traffic.
The website of the Swiss firm was knocked offline as a result of the attack, according to local newspaper Aargauer Zeitung, who first reported the incident.
-
Bloomberg ☛ Ransomware Data Breach Suits Merged at One Florida Federal Court
Fifty lawsuits filed by health-care and insurance customers whose data were breached in a ransomware attack will be consolidated in a single federal court, underscoring a trend of centralizing litigation involving scores of cyberattack victims.
The Judicial Panel on Multidistrict Litigation, a federal court body that resolves issues arising from litigation involving multiple district courts, said on Monday it would group the lawsuits into a single class action in the US District Court for the Southern District of Florida to improve efficiency and convenience.
-
Data Breaches ☛ Two hosting companies in Romania had what appear to be unrelated breaches. Did either one ever issue a public notice?
Torchbye isn’t the only Romanian hosting firm DataBreaches was contacted about recently. On January 23, a message on Telegram began, “Hi, i would like to report a databreach.” The individual, who described himself as a former customer of ITITAN Hosting, provided DataBreaches with a screencap allegedly of a notice of the breach, and two files.