Daily Cyber Brief

Fortinet SSL-VPN pre-auth RCE is actively being used; Fortinet ships emergency patch, Lockbit ransomware claims attack on California Department of Finance, and Ukraine agencies targeted by malware...

Cybersecurity

Fortinet says SSL-VPN pre-auth RCE bug is exploited in attacks

Fortinet urges customers to patch their appliances against an actively exploited FortiOS SSL-VPN vulnerability that could allow unauthenticated remote code execution on devices. The security flaw is tracked as CVE-2022-42475 and is a heap-based buffer overflow bug in…

Fortinet Ships Emergency Patch for Already-Exploited VPN Flaw

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the flaw in the wild. A critical-level advisory from Fortinet described the bug as a memory corruption that allows a…

LockBit ransomware crew claims attack on California Department of Finance

A notorious and prolific ransomware operation claimed on Monday to have stolen 76 gigabytes of data from the California Department of Finance. In a statement on its website posted early Monday, LockBit — a group the U.S. Department of Justice describes as one…

Ukrainian railway, state agencies allegedly targeted by DolphinCape malware

Ukrainian government agencies and the state railway are the latest victims of a new wave of phishing attacks, Ukraine’s Computer Emergency Response Team (CERT-UA) reported last week. The attacks involved an email campaign in which hackers sent out messages…

Nearly 4,500 Pulse Connect Secure VPNs Left Unpatched and Vulnerable

Nearly 4,500 Pulse Connect Security SSL virtual private network hosts are running unpatched server software, leaving them open to cyberattacks. A new analysis from Censys of the Pulse Connect Secure VPN ecosystem of 30,266 hosts found that although several notable flaws…

HSE Cyber-Attack Costs Ireland $83m So Far

The cost of the cyber-attack that hit the Irish Health Service Executive (HSE) last year has officially reached €80m ($83.75m). The figures come from a letter from HSE chief information officer Fran Thompson sent to Aontú leader Peadar Tóibín last Friday. The…

Apple deserves €6 million fine for privacy violations, French data protection adviser says

Apple should be fined €6 million ($6.3 million), the chief adviser to the French data protection regulator has recommended, for failing to properly notify users of apps tracking them. The recommendation was made on Monday by Francois Pellegrini, the rapporteur to the CNIL…

Rash of New Ransomware Variants Springs Up in the Wild

Enterprise security teams can add three more ransomware variants to the constantly growing list of ransomware threats for which they need to monitor. The three variants — Vohuk, ScareCrow, and AESRT — like most ransomware tools, target Windows systems and appear…

New Python malware backdoors VMware ESXi servers for remote access

A previously undocumented Python backdoor targeting VMware ESXi servers has been spotted, enabling hackers to execute commands remotely on a compromised system. VMware ESXi is a virtualization platform commonly used in the enterprise to host numerous servers…

Twitter confirms recent user data leak is from 2021 breach

Twitter confirmed today that the recent leak of millions of members' profiles, including private phone numbers and email addresses, resulted from the same data breach the company disclosed in August 2022. Twitter says its incident response team analyzed the user data…

Daily Cyber Brief

Fortinet SSL-VPN pre-auth RCE is actively being used; Fortinet ships emergency patch, Lockbit ransomware claims attack on California Department of Finance, and Ukraine agencies targeted by malware...

Cybersecurity

Join the conversation

Overt Operator