-
![]()
Apple Tackles New Zero-Day Exploits with Comprehensive Security Enhancements
In a proactive move to bolster device security, Apple has released comprehensive security updates across its suite of products—iOS, iPadOS, macOS, tvOS, watchOS, and Safari. This comes in response to several identified security breaches, one of which is an active zero-day exploit. “There have been accounts of potential active exploitations targeting versions earlier than iOS…
-
![Progressive MoveIt]()
Major Data Breach Strikes Fidelity & Guaranty Life Insurance Company
A major data breach has compromised the personal information of approximately 873,000 individuals associated with Fidelity & Guaranty Life Insurance Company (F&G). The breach, which occurred between May 29 and May 30, 2023, was disclosed to the firm on June 20. The breach is linked to a vulnerability in the MOVEit Transfer software provided by…
-
![Adobe Logo]()
Adobe Releases Patches for Critical ColdFusion Vulnerabilities
In light of recently disclosed vulnerabilities, Adobe has issued a second series of patches for its ColdFusion platform, which includes flaws believed to have been exploited in cyber-attacks. On July 11, Adobe addressed CVE-2023-29298, an access control problem that could bypass security features. Three days later, the company rolled out fixes for CVE-2023-38203, a deserialization…
-
![]()
UK Security Analyst Sentenced to 43 months in Prison in Failed Crypto Blackmail Attempt
British security analyst, 27-year-old Ashley Liles, who attempted to swindle his workplace, Oxford Biomedica, for £300,000 (equivalent to $390,000) has been penalized with a prison sentence of almost four years. Liles pleaded guilty in May to charges of unauthorized modification of computer material and blackmail, relating to an attack on the Hertfordshire-based gene therapy company…
-
![Hospital Databreach]()
HCA Healthcare Discloses Breach Exposing Data of 11 Million Patients
NASHVILLE, Tenn. (July 15, 2023) – HCA Healthcare recently discovered that personal information belonging to approximately 11 million patients was accessed and posted on an online forum by an unknown unauthorized party. According to the company, the exposed information included patient names, locations, phone numbers, email addresses, birth dates, appointment details, and service records. More…
-
![Samsung Phones Vulnerabilities]()
CISA Adds Samsung Phone Vulnerabilities to Its “Must Patch” Vulnerabilities Catalog
In an ongoing effort to enhance cybersecurity, the Cybersecurity and Infrastructure Security Agency (CISA) has identified and added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog. These additions are based on evidence of active exploitation in the wild, and they encompass a range of devices and manufacturers. The first new addition, CVE-2019-17621, refers to…
-
![Data Breach School]()
Over 750,000 Affected by Lansing Community College Data Breach
Lansing Community College (LCC) has confirmed that it experienced a significant data breach, impacting 757,832 individuals. The breach took place between December 25, 2022, and March 15, 2023, but was only discovered on May 24, 2023. LCC’s Director of Public Relations, Marilyn Twine, revealed that the college became aware of suspicious activity on its computer…
-
![Ultimate Member vulnerability]()
Critical Security Flaw in Ultimate Member WordPress Plugin Leaves Over 200,000 Sites at Risk
WordPress website owners are urged to be on high alert as hackers are exploiting a zero-day privilege escalation vulnerability in the ‘Ultimate Member’ WordPress plugin. This exploit allows attackers to compromise websites by bypassing security measures and creating rogue administrator accounts. Ultimate Member, a popular plugin with over 200,000 active installations, streamlines user profiles, membership…
-
![Data Breach School]()
Data Breach at Lutheran Social Services of Illinois Affects Over 150,000 Individuals
Lutheran Social Services of Illinois (LSSI), a non-profit organization located at 1001 Touhy Ave in Des Plaines, Illinois, has reported a significant data breach affecting 150,659 individuals. The breach occurred on December 31, 2021, but was only discovered almost a year later on December 28, 2022. According to a statement submitted by Spencer Pollock, an…
-
![]()
Massive Cyber Attack Affects Public Pension Fund and Genworth Financial
The California Public Employees Retirement System (CalPERS), the largest public pension fund in the US, has reported that the personal information of approximately 769,000 retired employees and beneficiaries was stolen in a large-scale cyber attack. The attack, attributed to a Russian criminal gang known as Cl0p, compromised data including Social Security numbers through a breach…
