Aggregator

Threat Attack Daily - 7th of May 2025

The large education tech vendor was hit by a cyberattack and paid a ransom in December. Now, a threat actor is attempting to extort the company’s customers with stolen data.

The post PowerSchool customers hit by downstream extortion threats appeared first on CyberScoop.

Ransomware Attack Update for the 7th of May 2025

 

Many don’t realize that
cyberattacks against Critical Infrastructure sectors, can cause more than an inconvenience
of a temporary power outage.  

Critical Infrastructures are a
favorite of aggressive Nation State cyber threats.  In addition to communications disruptions,
power outages, and healthcare billing, these attacks can also seek to disrupt
food distribution. 

The result – empty shelves and
people scrambling to acquire groceries. 

There is currently a cyber-attack affecting
the main grocery retailer in Scotland, resulting in empty shelves for many foodstuffs.

Nothing is as effective at changing
people’s attitudes and motivating capitulation than the unavailability of
food.  It is an age-old strategy used for
sieging forts, towns, and even nations. 

Cybersecurity now protects many of
the critical path systems for food production, transportation, and distribution. 

It puts a different spin on the
value of cybersecurity and how aggressive nations can wreak havoc on the
citizens of their adversary.  It is
something to consider as we move into an age where cyber-attacks are being
leveraged as a foreign policy tool.

Cybersecurity is key and we must remain diligent to protect
our critical infrastructure sectors!

 

 

For more Cybersecurity Insights: https://www.cybersecurityinsights.us/

Follow me on Substack for updates: https://substack.com/@matthewrosenquist
or LinkedIn: https://www.linkedin.com/in/matthewrosenquist/

The post Cyberattacks on Critical Infrastructures Makes Us Very Vulnerable appeared first on Security Boulevard.

A Texas firm recently charged with conspiring to distribute synthetic opioids in the United States is at the center of a vast network of companies in the U.S. and Pakistan whose employees are accused of using online ads to scam westerners seeking help with trademarks, book writing, mobile app development and logo designs, a new investigation reveals.

A vulnerability was found in Systemsoftware Erotik Auktionshaus. It has been classified as critical. This affects an unknown part of the file news.php. The manipulation of the argument ID leads to sql injection. This vulnerability is uniquely identified as CVE-2010-0720. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in Blog2Social Social Media Auto Post & Scheduler Plugin up to 6.9.9 on WordPress. This issue affects some unknown processing. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2022-3246. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in WP All Export Pro Plugin up to 1.7.8 on WordPress. It has been declared as critical. This vulnerability affects unknown code of the component POST Parameter Handler. The manipulation of the argument cc_sql leads to sql injection. This vulnerability was named CVE-2022-3395. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Usermin up to 1.850 and classified as critical. This issue affects some unknown processing of the component GPG Module. The manipulation leads to os command injection. The identification of this vulnerability is CVE-2022-35132. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in Free5gc 3.2.1 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to information disclosure. This vulnerability was named CVE-2022-38870. The attack can only be done within the local network. There is no exploit available.

A vulnerability classified as problematic was found in LBStopAttack Plugin up to 1.1.2 on WordPress. This vulnerability affects unknown code of the component Setting Handler. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2022-3097. The attack can be initiated remotely. There is no exploit available.

A vulnerability classified as critical has been found in Mitel MiCollab up to 9.5.0.101. Affected is an unknown function of the component Client Server. The manipulation leads to server-side request forgery. This vulnerability is traded as CVE-2022-36451. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability was found in PRTG Network Monitor up to 22.2.77.2204. It has been classified as problematic. Affected is an unknown function of the component Cascading Style Sheet Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2022-35739. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in STMicroelectronics. It has been classified as critical. Affected is an unknown function of the component stm32_mw_usb_host. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2021-42553. It is possible to launch the attack on the physical device. There is no exploit available.

Agentic AI Is More Than Just the Latest Cybersecurity Buzzword at RSAC Conference
At RSAC 2025, the message came through loud and clear: Agentic AI is no longer just a concept. It's being deployed today. While much of the buzz focused on performance gains and trust concerns, another story emerged - one that speaks directly to security professionals and those entering the field.

NIH, CMS Project Raises Patient Data Privacy Concerns, Advocates Say
The U.S. Department of Health and Human Services said it will build a data platform "allowing researchers to 'securely'" access data from Medicare and Medicaid claims, patient electronic medical records and consumer wearables to better understand autism spectrum disorder causes and treatments.

Masimo Told SEC Hack Affects On-Premises Systems, Operations and Distribution
A cyberattack against on-premises systems is affecting product manufacturing, fulfillment and distribution operations of Masimo, a manufacturer of patient monitoring devices, the California-based company told the U.S. Securities and Exchange Commission on Tuesday.

Funding Will Fuel R&D Push Into Automated Remediation and Risk Prioritization Tools
With code increasingly generated by AI and attackers using AI for exploits, OX Security raised $60 million to scale R&D and help developers prioritize critical vulnerabilities. The company aims to close detection gaps and reduce time-to-remediation in application security.

FIDO-Based Authentication to Replace SMS-Based Verification, Says UK NCSC
The U.K. government is set to replace SMS-based verification systems for digital services with passkeys later this year in a bid to shore-up cyber defenses. The authentication initiative is being developed by the U.K. National Cybersecurity Center using FIDO standards.

Agentic AI Is More Than Just the Latest Cybersecurity Buzzword at RSAC Conference
At RSAC 2025, the message came through loud and clear: Agentic AI is no longer just a concept. It's being deployed today. While much of the buzz focused on performance gains and trust concerns, another story emerged - one that speaks directly to security professionals and those entering the field.