Philips is working on patches for several vulnerabilities discovered by researchers in some of the company’s medical products.
U.S. Agencies Share More Details on ADSelfService Plus Vulnerability Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Coast Guard Cyber Command (CGCYBER) have shared new details on in-the-wild attacks targeting a recently patched flaw in Zoho’s ManageEngine ADSelfService Plus product.
GoDaddy Breach Exposes 1.2 Million Managed WordPress Customer Accounts
Domain registrar and web hosting giant GoDaddy has been hacked and customer data for some 1.2 million WordPress users were exposed to the attacker for more than three months.
Wind Turbine Giant Vestas Fending Off Cyberattack
Danish wind turbine giant Vestas Wind Systems has been hit by what appears to be a ransomware attack that took out parts of its internal IT infrastructure and caused unspecified data compromise.
Researchers Hack Conti Ransomware Infrastructure
Prodaft security researchers exploited a vulnerability in the recovery servers used by the Conti Ransomware-as-a-Service (RaaS), which allowed them to gain insight into the inner workings of the ransomware.
Cybersecurity M&A Roundup for Third Week of November 2021
Seven cybersecurity-related acquisitions were announced in the third week of November 2021.
CISO Conversations: Honda Aircraft, Bombardier CISOs Discuss Getting Started in Security
Iran’s Mahan Air Says Hit by Cyberattack
Iran’s second-largest airline, Mahan Air, said it had been hit by a cyberattack Sunday, the latest of several targeting the company.
“Mahan Air’s computer system has suffered a new attack,” the company said in a statement.
Utah Medical Group Discloses Data Breach Affecting Over 580,000 Patients
Farmington, Utah-based radiology medical center Utah Imaging Associates has started informing former and current patients that their information might have been compromised in a data breach.
As part of the incident, which was identified on September 4, 2021, unknown threat actors accessed files that contained sensitive personal information related to patients.
Serious Vulnerabilities Found in Wi-Fi Module Designed for Critical Industrial Applications
More than 20 vulnerabilities have been identified by Cisco’s Talos research and threat intelligence unit in a Lantronix Wi-Fi module designed for critical industrial and commercial applications.
