2023 and Education - Information Management Today

WS_FTP flaw CVE-2023-40044 actively exploited in the wild

Security Affairs

OCTOBER 2, 2023

Experts warn of threat actors actively exploiting CVE-2023-40044 flaw in recently disclosed flaw in Progress Software’s WS_FTP products. Most of these online assets belong to large enterprises, governments and educational institutions.” “From our analysis of WS_FTP, we found that there are about 2.9k

Authentication

Authentication Cybersecurity Education Government

Fortinet warns about Critical flaw in Wireless LAN Manager FortiWLM

Security Affairs

DECEMBER 19, 2024

Fortinet warned of a now-patched Wireless LAN Manager (FortiWLM) vulnerability, tracked as CVE-2023-34990 (CVSS score of 9.6), that could lead to admin access and sensitive information disclosure. The researcher also noticed that the vulnerability CVE-2023-34990 can be chained with CVE-2023-48782 (CVSS score of 8.8) through 8.6.5

Authentication

Authentication Education Access IT

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

The Colorado Department of Higher Education (CDHE) finally disclosed a data breach impacting students, past students, and teachers after the June attack. In June a ransomware attack hit the Colorado Department of Higher Education (CDHE), now the organization disclosed a data breach.

Education

Education Data breaches Ransomware Access

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Communications

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In May 2023, Microsoft reported that the Volt Typhoon APT infiltrated critical infrastructure organizations in the U.S. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

e-Discovery

e-Discovery Communications Ransomware Government

SAP April 2023 security updates fix critical vulnerabilities

Security Affairs

APRIL 12, 2023

SAP April 2023 security updates include a total of 24 notes, 19 of which are new vulnerabilities. CVE-2023-28765 : An attacker with basic privileges in SAP BusinessObjects Business Intelligence Platform (Promotion Management) – versions 420, 430, can exploit the issue to access to lcmbiar file and further decrypt the file.

Security

Security Education Passwords Authentication

VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023

Security Affairs

APRIL 25, 2023

VMware released security updates to address two zero-day vulnerabilities ( CVE-2023-20869, CVE-2023-20870 ) that were chained by the STAR Labs team during the Pwn2Own Vancouver 2023 hacking contest against Workstation and Fusion software hypervisors. They earned $80,000 and 8 Master of Pwn points.

Education

Education Cybersecurity Security Information Security

Google fixed the first Chrome zero-day of 2023

Security Affairs

APRIL 14, 2023

Google released an emergency security update to address the first Chrome zero-day vulnerability (CVE-2023-2033) in 2023, the company is aware of attacks in the wild exploiting the issue. The vulnerability was reported by Clément Lecigne of Google’s Threat Analysis Group on 2023-04-11. “Type Confusion in V8.

Libraries

Libraries Education Cybersecurity Security

Google fixed the second actively exploited Chrome zero-day of 2023

Security Affairs

APRIL 19, 2023

Google rolled out emergency fixes to address another actively exploited high-severity zero-day flaw, tracked as CVE-2023-2136 , in its Chrome web browser. The vulnerability is an Integer overflow in the Skia graphics library, the issue was reported by Clément Lecigne of Google’s Threat Analysis Group on April 12, 2023.

Libraries

Libraries Education Access Security

Ransomware realities in 2023: one employee mistake can cost a company millions

Security Affairs

OCTOBER 17, 2023

With 85% of campaigns targeting victims with phishing emails containing malicious links, another form of a social engineering attack, education and cyber vigiliance remain a high priority. Why should employers educate employees about cyber security?

Ransomware

Ransomware Phishing Passwords Education

T-Mobile suffered the second data breach in 2023

Security Affairs

MAY 1, 2023

T-Mobile disclosed the second data breach of 2023, threat actors had access to the personal information of hundreds of customers since February. T-Mobile suffered the second data breach of 2023, threat actors had access to the personal information of hundreds of customers starting in late February 2023.

Data breaches

Data breaches Access Education Government

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 1)

The Last Watchdog

DECEMBER 12, 2023

A look back at the cybersecurity landscape in 2023 rings all-too familiar: cyber threats rapidly evolved and scaled up , just as they have, year-to-year, for the past 20 years. Eyal Benishti , CEO, IRONSCALES Benishti Generative AI (GenAI) reshaped cybersecurity in 2023. What should I be most concerned about – and focus on – in 2024?

Cybersecurity

Cybersecurity Phishing Authentication Analytics

National Student Clearinghouse data breach impacted approximately 900 US schools

Security Affairs

SEPTEMBER 24, 2023

educational nonprofit organization National Student Clearinghouse disclosed a data breach that impacted approximately 900 US schools. “On May 31, 2023, the Clearinghouse was informed by our third-party software provider, Progress Software, of a cybersecurity issue involving the provider’s MOVEit Transfer solution.

Data breaches

Data breaches Education Ransomware Cybersecurity

What the Email Security Landscape Looks Like in 2023

Security Affairs

MAY 12, 2023

Recently, VIPRE Security Group published their Email Security in 2023 report , where they shared insights on the development of email-based threats and how they can impact organizations. What Can We Expect in 2023? It’s not likely to stop there. Bad actors use the domain until it starts getting blocked, and then move onto the next one.

Security

Security Phishing B2B Data breaches

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

ransomfeed #security #infosec #energychina pic.twitter.com/deRRximVPd — Ransomfeed (@ransomfeed) November 25, 2023 The China Energy Engineering Corporation (CEEC) is a state-owned company in China that operates in the energy and infrastructure sectors. The Rhysida ransomware group has been active since May 2023.

Ransomware

Ransomware Manufacturing Education Libraries

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

INE Security , a leading provider of cybersecurity training and certifications, today shared its cybersecurity training for cyber hygiene practices for small businesses, underscoring the critical role of continuous education in safeguarding digital assets.

Security

Security Data breaches Passwords Cybersecurity

Akira ransomware received $42M in ransom payments from over 250 victims

Security Affairs

APRIL 21, 2024

A joint advisory published by CISA, the FBI, Europol, and the Netherlands’ National Cyber Security Centre (NCSC-NL) revealed that since early 2023, Akira ransomware operators received $42 million in ransom payments from more than 250 victims worldwide. The attackers mostly used Cisco vulnerabilities CVE-2020-3259 and CVE-2023-20269.

Ransomware

Ransomware Encryption Education Phishing

Akira ransomware targets Finnish organizations

Security Affairs

JANUARY 13, 2024

Akira ransomware infections were first reported in Finland in June 2023, however, in December the number of attacks increased. ” The ransomware attack reported in late 2023, targeted organizations’ networks using poorly secured VPN gateway on Cisco ASA or FTD devices. Threat actors are wiping NAS and backup devices.

Ransomware

Ransomware Authentication Cybersecurity Education

Rhysida Ransomware group claims to have breached Bayhealth Hospital in Delaware

Security Affairs

AUGUST 7, 2024

In December 2023, the group claimed to have hacked Abdali Hospital, a multi-specialty hospital located in Jordan. The Rhysida ransomware group has been active since May 2023. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware

Ransomware Manufacturing Libraries Education

Zero-day in Cisco ASA and FTD is actively exploited in ransomware attacks

Security Affairs

SEPTEMBER 8, 2023

A zero-day vulnerability (CVE-2023-20269) in Cisco ASA and FTD is actively exploited in ransomware attacks, the company warns. Rapid7 researchers have observed increased threat activity targeting Cisco ASA SSL VPN appliances dating back to at least March 2023. reads report published by Rapid7.

Ransomware

Ransomware Authentication Access Education

The Education Sector Experienced the Highest Number of Data Breaches in 2023

KnowBe4

MAY 7, 2024

New data from Verizon makes it clear that the Education sector is under attack, but also breaks down which threat actions and patterns are used most.

Education

Education Data breaches IT Security awareness

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

GossiTheDog @SOSIntel @UK_Daniel_Card @LisaForteUK pic.twitter.com/L7A3XNNxU7 — Dominic Alvieri (@AlvieriD) November 29, 2023 The group published images of stolen documents as proof of the hack. The Rhysida ransomware group has been active since May 2023. “Unique files are presented to your attention!

Ransomware

Ransomware Manufacturing Education Libraries

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

pic.twitter.com/6uHMDcNhTC — Dominic Alvieri (@AlvieriD) December 26, 2023 The group published images of stolen documents as proof of the hack. The Rhysida ransomware group has been active since May 2023. The report includes IOCs and TTPs identified through investigations as recently as September 2023.

Ransomware

Ransomware Manufacturing Education Libraries

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

In May 2023, a ransomware attack hit the IT systems at the City of Dallas , Texas. Between April 7, 2023, and May 4, 2023, Royal performed data exfiltration and ransomware delivery preparation activities. ” The group was able to steal data from the City and leaked approximately 1.169 TB at a time prior to May 03, 2023.

Ransomware

Ransomware Encryption Systems administration Cybersecurity

Akira ransomware targets Finnish organizations

Security Affairs

JANUARY 13, 2024

Akira ransomware infections were first reported in Finland in June 2023, however, in December the number of attacks increased. ” The ransomware attack reported in late 2023, targeted organizations’ networks using poorly secured VPN gateway on Cisco ASA or FTD devices. Threat actors are wiping NAS and backup devices.

Ransomware

Ransomware Authentication Cybersecurity Education

Save the Children confirms it was hit by cyber attack

Security Affairs

SEPTEMBER 12, 2023

In July 2023, security firm Avast released a free decryptor for the BianLian ransomware to allow victims of the malware to recover locked files. Its products focus on fundraising, website management, CRM, analytics, financial management, ticketing, and education administration.

IT

IT Ransomware Education Data breaches

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

pic.twitter.com/Wdj7VfkWXa — British Library (@britishlibrary) November 20, 2023 The library plans to partially restore many services in the next few weeks, but it believes that some disruption may persist for longer. The report includes IOCs and TTPs identified through investigations as recently as September 2023.

Libraries

Libraries Ransomware Manufacturing Education

News Alert: CybSafe CEO Oz Alashe MBE recognized as “Security Industry Innovator” for 2023

The Last Watchdog

JULY 11, 2023

Boston, July 7, 2023 — CybSafe, the human risk management platform, has today announced CEO Oz Alashe MBE has been named as a SecurityInfoWatch.com , Security Business and Security Technology Executive magazines’ 2023 Security Industry Innovator Award winner.

Security

Security Risk Education Marketing

VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root

Security Affairs

APRIL 20, 2023

VMware fixed two severe flaws, tracked as CVE-2023-20864 and CVE-2023-20865, impacting the VMware Aria Operations for Logs product. The vulnerability CVE-2023-20864 (CVSSv3 base score of 9.8)

Education

Education Cybersecurity Security Access

OS upgrades 2023: What macOS Sonoma means for Education

Jamf

NOVEMBER 28, 2023

Discover the transformative impact of macOS Sonoma on education. Explore how Apple's latest OS updates are shaping the future of classroom learning.

Education

Lehigh Valley Health Network hospital network has agreed to a $65 million settlement after data breach

Security Affairs

SEPTEMBER 13, 2024

The network also includes a children’s hospital, rehabilitation centers, and partnerships with academic institutions to support medical education and research. The investigation determined that the breach occurred on January 8, 2023. In March 2023, a lawsuit was filed. ” reported the law firm.

Data breaches

Data breaches Ransomware Insurance Education

Microsoft Defender thwarted Akira ransomware attack on an industrial engineering firm

Security Affairs

OCTOBER 16, 2023

Microsoft announced that its Microsoft Defender for Endpoint helped to block a large-scale hacking campaign carried out by Akira ransomware operators (tracked by Microsoft as Storm-1567) The attack took place in early June 2023 and aimed at an industrial engineering organization. ” reads the analysis published by Microsoft.

Ransomware

Ransomware Education Encryption Access

Zyxel fixed a critical RCE flaw in its firewall devices and urges customers to install the patches

Security Affairs

APRIL 28, 2023

A vulnerability impacting Zyxel firewalls, tracked as CVE-2023-28771, can be exploited to execute arbitary code on vulnerable devices. Researchers from TRAPA Security have discovered a critical remote code execution vulnerability, tracked as CVE-2023-28771 (CVSS score 9.8), impacting Zyxel Firewall. through 5.35. . through 5.35.

Authentication

Authentication IT Education Security

IT Governance Podcast 2023-1: more ransomware attacks on the education sector, and DPC and Meta sued

IT Governance

JANUARY 13, 2023

The post IT Governance Podcast 2023-1: more ransomware attacks on the education sector, and DPC and Meta sued appeared first on IT Governance UK Blog. Now available on Spotify , Amazon Music , Apple Podcasts and SoundCloud.

Education

Education Ransomware Government GDPR

Akira Ransomware gang targets Cisco ASA without Multi-Factor Authentication

Security Affairs

AUGUST 31, 2023

Rapid7 researchers have observed increased threat activity targeting Cisco ASA SSL VPN appliances dating back to at least March 2023. “Rapid7 identified at least 11 customers who experienced Cisco ASA-related intrusions between March 30 and August 24, 2023.” ” reads report published by Rapid7.

Authentication

Authentication Ransomware Access Education

CISA adds bugs in Android and Novi Survey to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 15, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added the following five new issues to its Known Exploited Vulnerabilities Catalog : CVE-2023-20963 – Android Framework Privilege Escalation Vulnerability. The bulletin confirmed that “there are indications that CVE-2023-20963 may be under limited, targeted exploitation.”

IT

IT Cybersecurity Education Security

Akira ransomware attack on Tietoevry disrupted the services of many Swedish organizations

Security Affairs

JANUARY 24, 2024

Akira ransomware infections were first reported in Finland in June 2023, however, in December the number of attacks increased. The ransomware attack reported in late 2023, targeted organizations’ networks using poorly secured VPN gateway on Cisco ASA or FTD devices.

Ransomware

Ransomware Government Retail Cloud

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

Security Affairs

NOVEMBER 7, 2023

Iran-linked Agonizing Serpens group (aka Agrius , BlackShadow , Pink Sandstorm , DEV-0022 ) has been targeting Israeli organizations in higher education and tech sectors with destructive cyber attacks since January 2023. Based on our telemetry, the most targeted organizations belong to the education and technology sectors.”

Education

Education Ransomware Security Access

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The report includes IOCs and TTPs identified through investigations as recently as September 2023. The Rhysida ransomware group has been active since May 2023, according to the gang’s Tor leak site, at least 62 companies are victims of the operation. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Passwords

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. The experts tracked the cluster as CL-STA-0046, the malicious activity spanned over six months between 2022-2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government.

Government

Government Manufacturing Education Access

Lockbit ransomware gang demanded an 80 million ransom to CDW

Security Affairs

OCTOBER 14, 2023

CDW Corporation is a provider of technology solutions and services for business, government and education. The technology services giant CDW announced it has launched an investigation into claims made by the Lockbit ransomware gang that added the company to the list of victims on its leak site.

Ransomware

Ransomware Archiving Cybersecurity Education

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 22, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added the following three new issues to its Known Exploited Vulnerabilities Catalog : CVE-2023-28432 (CVSS score – 7.5) – MinIO Information Disclosure Vulnerability. CVE-2023-27350 (CVSS score – 9.8) – PaperCut MF/NG Improper Access Control Vulnerability.

IT

IT Libraries Cybersecurity Education

CISA adds bugs in Chrome and macOS to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 18, 2023

CVE-2023-2033 – Google Chromium V8 Engine Type Confusion Vulnerability. The CVE-2023-2033 flaw is the first Chrome zero-day vulnerability addressed by Google in 2023. The vulnerability was reported by Clément Lecigne of Google’s Threat Analysis Group on 2023-04-11.

IT

IT Cybersecurity Education Risk

Top Fraud Trends to Watch in 2023

Data Breach Today

OCTOBER 11, 2022

Fraud education expert Andi McNeal shares insights on what anti-fraud practitioners are expecting over the next year, the types of fraud to watch out for and how to mitigate fraud risks.

Education

Education Risk

WS_FTP flaw CVE-2023-40044 actively exploited in the wild

Fortinet warns about Critical flaw in Wireless LAN Manager FortiWLM

Webinars

Trending Sources

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Webinars

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

China’s Volt Typhoon botnet has re-emerged

SAP April 2023 security updates fix critical vulnerabilities

VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023

Google fixed the first Chrome zero-day of 2023

Google fixed the second actively exploited Chrome zero-day of 2023

Ransomware realities in 2023: one employee mistake can cost a company millions

T-Mobile suffered the second data breach in 2023

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 1)

National Student Clearinghouse data breach impacted approximately 900 US schools

What the Email Security Landscape Looks Like in 2023

Rhysida ransomware gang claimed China Energy hack

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

Akira ransomware received $42M in ransom payments from over 250 victims

Akira ransomware targets Finnish organizations

Rhysida Ransomware group claims to have breached Bayhealth Hospital in Delaware

Zero-day in Cisco ASA and FTD is actively exploited in ransomware attacks

The Education Sector Experienced the Highest Number of Data Breaches in 2023

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Rhysida ransomware group hacked Abdali Hospital in Jordan

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Akira ransomware targets Finnish organizations

Save the Children confirms it was hit by cyber attack

Rhysida ransomware gang is auctioning data stolen from the British Library

News Alert: CybSafe CEO Oz Alashe MBE recognized as “Security Industry Innovator” for 2023

VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root

OS upgrades 2023: What macOS Sonoma means for Education

Lehigh Valley Health Network hospital network has agreed to a $65 million settlement after data breach

Microsoft Defender thwarted Akira ransomware attack on an industrial engineering firm

Zyxel fixed a critical RCE flaw in its firewall devices and urges customers to install the patches

IT Governance Podcast 2023-1: more ransomware attacks on the education sector, and DPC and Meta sued

Akira Ransomware gang targets Cisco ASA without Multi-Factor Authentication

CISA adds bugs in Android and Novi Survey to its Known Exploited Vulnerabilities catalog

Akira ransomware attack on Tietoevry disrupted the services of many Swedish organizations

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

FBI and CISA warn of attacks by Rhysida ransomware gang

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Lockbit ransomware gang demanded an 80 million ransom to CDW

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

CISA adds bugs in Chrome and macOS to its Known Exploited Vulnerabilities catalog

Top Fraud Trends to Watch in 2023

Stay Connected