Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings . This review is for the week ending Saturday, October 15th, 2022.
This week starts with a coverage on a joint advisory from US CISA, FBI, and NSA states Chinese state–sponsored threat actors continue to exploit known vulnerabilities to target US and allied networks and companies and recommendations for mitigation and remediation
Common Spirit, the largest hospital chains in the US, suffered a ransomware cyberattack that caused severe outage to the facilities and to patients. in an another breach event Dialog, a third Australian telecom company has disclosed it was suffered a data breach.
Killnet, from Russia have claimed credit for taking down websites late last week in three U.S. states (Colorado, Kentucky, and Mississippi) for politically motivated purposes.
The Windows 11 22H2 version includes a new feature designed to keep you even safer than before from phishing attacks. The new protections don’t need much in the way of setup or configuration the idea is they just work when required. It’s still important to be aware of how they work, and how they keep you safe.
Fortinet addressed a critical authentication bypass flaw late last week, tracked as CVE-2022-40684, that impacted FortiGate firewalls and FortiProxy web proxies. Palo Alto Networks patched a high-severity authentication bypass flaw impacting the PAN-OS 8.1 software. The vulnerability tracked as CVE-2022-0030 with a CVSS score 8.1, resides in the web interface of PAN-OS 8.1 software, a network-based attacker with specific knowledge of the targeted firewall or Panorama appliance can exploit the issue to impersonate an existing PAN-OS admin and perform privileged actions
Microsoft patched 84 CVEs in its October 2022 Patch Tuesday release, with 13 rated as critical and 71 rated as important. on same day advisories are out for Siemens, Schneider Electric, Adobe and SAP patching numerous vulnerabilities
ForgeRock is set to be acquired by private equity firm Thoma Bravo in a $2.3 billion all-cash transaction. The acquisition in the first half of 2023.
Skybox Security has announced a new release of its Security Posture Management Platform which offers to propel its customers to the next level of proactive cybersecurity.
Google has released the latest Chrome update (106.0.5249.119) patches six high-severity vulnerabilities, including four use-after-free bugs. Google also has begun rolling out initial passkey support for Android and Chrome. Web admins can start integrating the technology into their websites through the WebAuth API. Developers can download the latest Google Play Services beta to start testing the authentication standard within their apps.
Tanium has launched a solution named Benchmark that delivers real-time holistic assessments of the security and operational risks associated with endpoint devices that was connected to it.
Cloudflare has mitigated a record distributed DDoS attack against Wynncraft, one of the largest Minecraft servers. A 2.5 Tbps DDoS attack against the Minecraft server, considered to be the largest was launched by a Mirai botnet
In another security incident Tata Power, a leading power generation company in India, has confirmed a cyberattack incident. Researchers have discovered an alarming framework named Alchimist targeting Windows, Linux, and Mac systems that they assess is likely already being used in the wild.