The Cybersecurity & Infrastructure Security Agency, or CISA, has issued a warning that malevolent actors leveraged online vulnerabilities in Unitronics programmable logic controllers (PLCs) to compromise a water facility in the United States. In industrial settings, PLCs are essential control and management tools. If hackers manage to compromise them, the consequences could be dire, like contaminating the water supply by manipulating the device to change chemical dosage. Additional hazards include a breakdown in service that prevents the water supply from continuing as well as physical har ..read more

Health plans nationwide were informed about the MOVEit hack, which affected 8.5 million people, by the healthcare software company Welltok. The May 2023 MOVEit hack resulted in a data breach that affected 8.5 million people, as reported by Welltok, a healthcare software-as-a-service provider. One of the biggest breaches to be reported to HHS in 2023 is indicated by this incident. As was previously mentioned, threat actors exploited a weakness in Progress Software’s MOVEit Transfer server, affecting MOVEit users all over the nation. On May 31, Progress Software revealed the flaw and released a ..read more

A zero-day vulnerability that is being actively exploited in the wild is among the seven security flaws in Google’s Chrome browser that have been fixed by security updates. The open-source 2D graphics library Skia has an integer overflow bug that has been identified as a high-severity vulnerability, tracked as CVE-2023-6345. Credit for finding and reporting the vulnerability on November 24, 2023, goes to Google Threat Analysis Group (TAG) members Benoît Sevens and Clément Lecigne. As usual, the search engine behemoth admitted that “an exploit for CVE-2023-6345 exists in the wild,” but it withh ..read more

DP World Australia has issued a detailed statement on the incident and its ongoing investigations after completely suspending its port operations in Australia. DP World has confirmed that some data was exfiltrated during the incident, even though no ransomware has been found and no data has been encrypted. The incident was limited to the Australian operations and had no effect on any other markets in which DP World operates, according to DP World Australia’s investigation, a spokesperson said in a statement. Additionally, it verified that no ransomware—that is, no ransomware executables, encry ..read more

The healthcare company Ardent Health Services, which manages 30 hospitals in six states in the United States, revealed today that a ransomware attack targeted its systems on Thursday. Following the incident, it was forced to shut down its whole network, alert law enforcement, and engage outside specialists to look into the scope and effects of the attack. A ransomware attack against U.S. hospital owner Ardent Health Services has forced hospitals across several states to reschedule some elective patient procedures and divert ambulances. Nashville-based Ardent Health Services said on its website ..read more

General Electric is looking into allegations that a threat actor broke into the business’s development environment through a cyberattack and released data that was purportedly stolen. The power, renewable energy, and aerospace industries are the divisions of the American multinational corporation General Electric (GE). An attempt was made earlier this month on a hacking forum by a threat actor going by the name IntelBroker to sell access to General Electric’s “development and software pipelines” for $500. The threat actor then re-posted claiming to be selling both the network access and purpor ..read more

One of the biggest libraries in the world and the National Library of the United Kingdom, the British Library, has confirmed that internal data was stolen as a result of a ransomware attack. The British Library initially announced in late October that it was going through an unidentified cybersecurity incident that resulted in a “major technology outage” throughout its locations in Yorkshire and London. This outage affected the library’s phone lines, website, and on-site services, including visitor Wi-Fi and electronic payments. The British Library outage is still in effect after two weeks. Th ..read more

Federal cyber officials warned on Tuesday that nation-state hackers and cybercriminal gangs are both taking advantage of a vulnerability affecting Citrix products. Since several government agencies and large corporations were leaving their appliances exposed to the internet, leaving them vulnerable to attacks, the “Citrix Bleed” bug has been causing concern for weeks. A cybersecurity advisory regarding the LockBit ransomware gang’s exploitation of CVE-2023-4966, which affects NetScaler ADC and NetScaler Gateway appliances, was released on Tuesday by the Cybersecurity and Infrastructure Securit ..read more

TmaxSoft, a software provider based in South Korea, has revealed over 50 million confidential records, including phone numbers, emails, and internal issue tracking messages, as a result of a significant data breach. Security researchers found the leaked data, which had been kept in a publicly viewable Kibana dashboard for more than two years. Attackers can gain a lot of knowledge about TmaxSoft’s personnel and internal operations from the leaked data, which makes it especially valuable to them. Cyberattacks of other kinds, such as social engineering schemes or targeted phishing attacks, might ..read more

After multiple high-profile hacks targeting infrastructure and businesses in the last year, AUSTRALIA is reorganizing its cybersecurity laws to cover the entire economy. This includes new mandatory reporting requirements, updated data laws, and a new national cyber council. The cybersecurity plan was unveiled by Home Affairs Minister Clare O’Neill on Wednesday in Sydney. It includes A$586.9 million (S$515 million) in additional funding to safeguard people and businesses, safeguard vital infrastructure, and strengthen national capacities. O’Neil has promised to collaborate with companies to dev ..read more