Be on the Alert: Cyber Criminal Actors are Targeting the Food and Agriculture Sector with Ransomware Attacks

Be on the Alert: Cyber Criminal Actors are Targeting the Food and Agriculture Sector with Ransomware Attacks

By The FBI, Cyber Division and the Vermont Intelligence Center – September 1, 2021 Summary  Ransomware attacks targeting the Food and Agriculture sector disrupt operations, cause financial loss, and negatively impact the food supply chain. Ransomware may impact businesses across the sector, from small farms to large producers, processors and manufacturers, and markets and restaurants.  Food…

White House Warns Of Cyberthreats Over Labor Day Weekend

White House Warns Of Cyberthreats Over Labor Day Weekend

3rd Party Risk Management , Application Security , Business Continuity Management / Disaster Recovery NSC Adviser Anne Neuberger Says Organizations Should Take Precautions Scott Ferguson (Ferguson_Writes) • September 2, 2021     Anne Neuberger, the deputy national security adviser for cyber and emerging technology, speaking to reporters at the White House on Thursday While there…

FBI/CISA Alert: Increased Likelihood Of Ransomware Attacks Over Labor Day Weekend | Jackson Lewis P.C.

FBI/CISA Alert: Increased Likelihood Of Ransomware Attacks Over Labor Day Weekend | Jackson Lewis P.C.

Watch out! A spike in ransomware attacks may be headed our way over Labor Day weekend. Yesterday, the FBI jointly with the Cybersecurity and Infrastructure Security Agency (CISA) issued a warning to be on high alert for ransomware attacks this weekend, after recent targeted attacks over Mother’s Day, Memorial Day and Fourth of July weekends….

Moxa Devices Prone to Vulnerabilities Affecting Railways

Moxa Devices Prone to Vulnerabilities Affecting Railways

Critical Infrastructure Security , Endpoint Security , Governance & Risk Management Flaws Fixed, Mitigations Issued for Discontinued Devices Mihir Bagwe • September 4, 2021     Moxa has confirmed patching 60 vulnerabilities in its latest firmware update. (Source: Moxa) SEC Consult, a cybersecurity consultancy firm that is part of Atos, has reportedly found multiple vulnerabilities…

Cisco Patches Critical Authentication Bypass Bug

Cisco Patches Critical Authentication Bypass Bug

3rd Party Risk Management , Application Security , Application Security & Online Fraud Cisco NFV Infrastructure Software Users Urged to Patch Immediately Prajeet Nair (@prajeetspeaks) • September 4, 2021     (Photo: Cisco Networks) Cisco has released an urgent software update to fix a critical authentication bug, that can allow an unauthenticated, remote attacker to…

WhatsApp Patches Vulnerability in Image Filter Function That Could Have Led to Data Exposure

WhatsApp Patches Vulnerability in Image Filter Function That Could Have Led to Data Exposure

WhatsApp has patched a vulnerability that could allow an attacker to read sensitive information from the app’s memory, including private messages using a specially crafted image. The vulnerability was reported to WhatsApp by cybersecurity firm Check Point Research, and it existed within the image filter function of WhatsApp for Android and WhatsApp Business for Android…

Security Researcher Develops Lightning Cable With Hidden Chip to Steal Passwords

Security Researcher Develops Lightning Cable With Hidden Chip to Steal Passwords

This article has been indexed from MacRumors: Mac News and Rumors – Front Page A normal-looking Lightning cable that can used to steal data like passwords and send it to a hacker has been developed, Vice reports. The “OMG Cable” compared to Apple’s Lightning to USB cable. The “OMG Cable” works exactly like a normal…

Autodesk Says Company Was Targeted by SolarWinds Attackers

Autodesk Says Company Was Targeted by SolarWinds Attackers

3rd Party Risk Management , Application Security , Breach Notification Russian-Linked Group Targeted Software Design Firm And Other Tech Companies Scott Ferguson (Ferguson_Writes) • September 3, 2021     Source: Autodesk Autodesk, a California-based design software and 3D technology firm, is now acknowledging that it was one of several tech and security companies targeted by…

Recently Patched Confluence Vulnerability Exploited in the Wild

Recently Patched Confluence Vulnerability Exploited in the Wild

Hackers started exploiting a vulnerability in Atlassian’s Confluence enterprise collaboration product just one week after the availability of a patch was announced. Atlassian informed customers on August 25 that Confluence is affected by a critical vulnerability — described as an OGNL injection issue — that can allow remote attackers to execute arbitrary code on impacted…