'

After Backlash, Microsoft Recall Will be Disabled by Default

After Backlash, Microsoft Recall Will be Disabled by Default

Microsoft said it has updated its controversial Recall feature with what it calls “privacy and security safeguards,” and will disable the feature by default in its Copilot Plus PCs. The update comes on the heels of a torrent of backlash from privacy experts about the feature, which was previously enabled by default in Copilot Plus … Read more

Categories duo

Wyden Pushes HHS to Mandate Healthcare Cybersecurity Standards

Wyden Pushes HHS to Mandate Healthcare Cybersecurity Standards

In the three months since the crippling Change Healthcare ransomware attack, the healthcare industry has not seen changes for the better but instead only more attacks against hospitals and healthcare providers, most recently against pathology provider Synnovis. Sen. Ron Wyden (D-Ore.) wants to light a fire under the U.S. government to fast track cybersecurity improvements … Read more

Categories duo

Exploit Attempts Against Check Point CVE-2024-24919 On the Rise

Exploit Attempts Against Check Point CVE-2024-24919 On the Rise

Attackers have been attempting to exploit the recently disclosed Check Point vulnerability (CVE-2024-24919) for more than a month but many of those attempts have been unsuccessful, thanks to broken payloads or other issues. But recent days have seen an uptick in real exploits in use from a variety of sources. The vulnerability is a path … Read more

Categories duo

Synnovis Ransomware Attack Disrupts Healthcare Services

Synnovis Ransomware Attack Disrupts Healthcare Services

Synnovis, one of the UK’s top pathology and diagnostic service providers, on Tuesday confirmed that it was targeted by a ransomware attack that has been impacting its IT systems and resulting in interruptions to many of the organization’s pathology services across top hospitals in London. The organization, which provides lab services to National Health Service … Read more

Categories duo

Researchers Warn of Potential Abuse of Azure Service Tags

Researchers Warn of Potential Abuse of Azure Service Tags

Microsoft is warning customers about the potential for an attacker to abuse the service tags feature in Azure to forge requests from a trusted service and bypass firewall rules, potentially gaining access to cloud resources without authorization. The technique was discovered by researchers from Tenable, who reported it to MIcrosoft in January. MIcrosoft Security Response … Read more

Categories duo

Snowflake: Customer Accounts Targeted in ‘Identity-Based Attacks’

Snowflake: Customer Accounts Targeted in ‘Identity-Based Attacks’

Cloud storage company Snowflake is urging its customers to implement multi-factor authentication (MFA) after observing a “targeted threat campaign against some Snowflake customer accounts.” The company, in a joint statement with Mandiant and CrowdStrike on Sunday, said that the attack did not stem from a breach of its platform, but instead leveraged compromised credentials for … Read more

Categories duo

Operation Endgame Targets Trickbot, IcedID, Other Botnets in Huge Disruption

Operation Endgame Targets Trickbot, IcedID, Other Botnets in Huge Disruption

In perhaps the largest coordinated action against malware operators and their infrastructure, Europol and a cadre of law enforcement agencies have disrupted the operations of several notorious malware families, including IcedID, Trickbot, Smokeloader, and Bumblebee. As part of the disruption, authorities arrested four suspects, seized more than 2,000 domains and 100 servers. The action, known … Read more

Categories duo

Wyden: SEC, FTC Should Investigate UnitedHealth’s ‘Negligent’ Security Practices

Synnovis Ransomware Attack Disrupts Healthcare Services

On the heels of the massively disruptive Change Healthcare ransomware attack earlier this year, Sen. Ron Wyden (D-Ore.) is calling on the SEC and FTC to investigate the “negligent cybersecurity practices” of parent company UnitedHealth Group. The question of accountability has emerged in the months after the February ransomware attack that led to disruptions in … Read more

Categories duo

U.S. Sanctions Three Chinese Nationals for Alleged Connection to 911 S5 Botnet

U.S. Sanctions Three Chinese Nationals for Alleged Connection to 911 S5 Botnet

The United States government has sanctioned three Chinese nationals for their alleged roles in running the 911 S5 proxy service, which consisted of compromised machines that the network’s operators rented out to cybercriminals as proxies through which they could connect to the Internet and hide their identities. The Department of the Treasury’s Office of Foreign … Read more

Categories duo

Check Point Releases Fix For Zero-Day VPN Flaw

Check Point Releases Fix For Zero-Day VPN Flaw

Check Point Software released an emergency fix this week for a vulnerability in its VPN gateway products, warning customers that threat actors are actively exploiting the flaw. The flaw (CVE-2024-24919), which ranks 7.5 out of 10 on the CVSS 3.0 severity scale, could enable attackers to read certain information on the gateways if they are … Read more

Categories duo

Decipher Podcast: Sarah Powazek

Decipher Podcast: Sarah Powazek

Dennis Fisher: I wasn’t familiar with what you guys are doing but it’s one of those things that I think people probably forget about, there’s a whole bunch of under resourced organizations out there that just don’t have a lot of security expertise and or budget to train people to help with what they need … Read more

Categories duo