cybersecurity
$2.4 trillion securities platform owner hacked. EquiLend admits "unauthorised access"
"We are working methodically to restore the involved services as quickly as possible"
vulnerabilities
Exploit released for fresh Fortra GoAnywhere bug: CVSS 9.8 and again, nasty. Patch up.
A 10-line exploit is now widely available. Unpatched instances *will* come under attack.
european union
Europe's controversial cyber resilience law gets a rewrite -- now not as terrible as it was
A rewritten EU cyber resiliency act removes the biggest threats to open source but much standards work still to be done, says Linux Foundation Europe
cybersecurity
OpenAI, TikTok, X hunt insider threat specialists -- on widely diverging salary bands
"In every insider threat case, there is a combination of network activity and employee behaviour. The malicious activity crosses both physical and electronic modalities..."
AWS
AWS rattles customers with unclear warning over mystery "recent CVE"
Warns users it will terminate affected tasks, but leaves a lacuna... (Fear not, we're here with details)
Kaspersky
Kaspersky burns 11,000-line “NSA” exploit: Calls 14-step iPhone attack “definitely the most sophisticated attack chain we have ever seen”
Apex Predators aside and in other news, a major telco just got hacked because it didn't have MFA set up on a critical account...
MongoDB
MongoDB hacked: Hints at authentication system compromise
Attackers had access to certain corporate systems “for some period of time before discovery”
firmware
Millions exposed to LogoFAIL firmware flaws: Should CISOs be worried? Well, yes, honestly.
You're probably exposed to rootkit risk, because vendors wanted their logos to show during boot processes -- everything's broken, howl into the abyss, why's this security advisory on a domain like https://9443417.fs1.hubspotusercontent-na1.net anyway?
CISA
CISA's going to name and shame vendors on insecure software
"When we see a vulnerability or intrusion campaign that could have been reasonably avoided if the software manufacturer had aligned to secure by design principles, we’ll call it out"
cybersecurity
ownCloud users could get badly owned as exploitation starts of CVSS 10 bug, with 11,000 instances exposed
ownCloud claims 200,000 installations, 600 enterprise customers, and 200 million users with customers including the European Commission.
cybersecurity
New report sheds light on “Scattered Spider”’s ability to take over identity providers
The group "register their own MFA tokens [and] add a federated identity provider to the victim’s SSO tenant and activate automatic account linking..."
SysAid
IT support software from SysAid being exploited in the wild
Clear IOCs, guidance and documentation: A commendable response from SysAid.