A New Plan to Break the Cycle of Destructive Critical Infrastructure Hacks Whether it’s power grids, transportation systems, or financial networks, critical infrastructures are the backbone of modern society. However, recent years have seen an alarming increase in the number and severity of cyberattacks on these vital systems. It is imperative that we find a… Continue reading A New Plan to Break the Cycle of Destructive Critical Infrastructure Hacks
Category: critical
CoinDesk Retracts
CoinDesk, the leading online publication for cryptocurrencies and blockchain technology, recently retracted two essays it had published following the spread of criticism that the essays were focused on highly personalized attacks that could lead to potential legal actions. The two essays in question are titled “The Crypto Elite, Conditions of Exchange” and “Crypto Elites And… Continue reading CoinDesk Retracts
US government warns Royal ransomware is targeting critical infrastructure
The United States government has issued a stark warning to citizens that a powerful ransomware threat has been identified targeting key infrastructure in the country, ranging from government services to utilities and healthcare. The ransomware, dubbed “Royal” by security researchers, has been identified as a highly sophisticated and destructive form of malicious software that can… Continue reading US government warns Royal ransomware is targeting critical infrastructure
Health info for 1 million patients stolen using critical GoAnywhere vulnerability
It appears that massive data breaches due to vulnerabilities in software are becoming a common occurrence. In the latest incident, it has been reported that health information of nearly one million Americans has been stolen from a healthcare giant by a malicious attacker exploiting a critical vulnerability in a software program known as GoAnywhere MFT.… Continue reading Health info for 1 million patients stolen using critical GoAnywhere vulnerability
Hundreds of SugarCRM servers infected with critical in-the-wild exploit
On July 7th, hundreds of SugarCRM servers were discovered to be infected with a critical in-the-wild exploit. The exploit, which appears to have been developed from an existing vulnerability known to affect all versions of SugarCRM, allows malicious actors to remotely execute code on the vulnerable servers. This security issue has exposed SugarCRM customers to… Continue reading Hundreds of SugarCRM servers infected with critical in-the-wild exploit
More than 4,400 Sophos firewall servers remain vulnerable to critical exploits
Hundreds of Sophos Firewall servers remain vulnerable to two publicly identified critical security vulnerabilities, lasting over 10 months since they were first discovered. The two vulnerabilities, Taipan and Whitewizard, were first publicly identified in December 2019, but despite being patched, thousands of Sophos Firewall devices remain vulnerable and open to attack. Taipan is a remote… Continue reading More than 4,400 Sophos firewall servers remain vulnerable to critical exploits
Fortinet says hackers exploited critical vulnerability to infect VPN customers
It appears that a critical vulnerability in Fortinet’s virtual private network (VPN) service was recently exploited by hackers, allowing them to gain access to customers’ systems. This security flaw, which was uncovered by cybersecurity firm Check Point, can allow malicious actors to execute arbitrary code on Fortinet devices, creating a dangerous and successful backdoor for… Continue reading Fortinet says hackers exploited critical vulnerability to infect VPN customers
An aviation expert explains how the FAA’s critical NOTAM safety system works
Notices to Airmen, or NOTAMS for short, are a critical system for aviation safety as used by the Federal Aviation Administration (FAA). As an aviation expert, I would like to explain the details of this important system, from definition to its intended purpose, and how it affects air travel today. A NOTAM is a notice… Continue reading An aviation expert explains how the FAA’s critical NOTAM safety system works
Critical Windows code-execution vulnerability went undetected until now
A critical Windows code-execution vulnerability has been discovered in the past few days, announced by Microsoft in a blog post. The vulnerability affects all versions of the Windows operating system and goes unnoticed due to its nature. The vulnerability affects Windows’ “CreateProcessA” API, which is used by Windows to launch programs and other executable files.… Continue reading Critical Windows code-execution vulnerability went undetected until now