#Phreesia has revealed their ConnectOnCall subsidiary was victim of a #databreach The incident was discovered on May 12, 2024. Investigations reveal that an unknown threat actor accessed ConnectOnCall private health data. The breach is believed to have impacted data of over 900k patients. Phreesia has engaged external cybersecurity experts, and alerted law enforcement. Those impacted are advised to be vigilant of phishing and identity theft #cybersecurity #healthcare https://lnkd.in/guVeNZMU
RF Wave
IT Services and IT Consulting
Helping small to medium businesses with IT and cybersecurity in the Greater Toronto Area
About us
Helping small to medium businesses with their IT and cybersecurity needs in the Greater Toronto Area.
- Website
-
https://rfwave.io
External link for RF Wave
- Industry
- IT Services and IT Consulting
- Company size
- 2-10 employees
- Headquarters
- Richmond Hill
- Type
- Privately Held
- Specialties
- IT services, small business IT, IT consulting, cybersecurity, cybersecurity consulting, managed services, managed IT services, managed cybersecurity services, training, cybersecurity training, and cybersecurity awareness
Locations
-
Primary
Richmond Hill, CA
Employees at RF Wave
Updates
-
#RhodeIsland has revealed they were a victim of a #ransomware attack The incident was discovered on Dec 5, 2024, and affected the RIBridges system managed by a third-party. In response, the system was taken offline. This impacts applicants and beneficiaries in many programs, such as Medicaid. It is not known what data has been stolen. The third-party has engaged law enforcement to investigate. #cybersecurity #USA https://lnkd.in/e8wXxmBP
Rhode Island confirms data breach after Brain Cipher ransomware attack
bleepingcomputer.com
-
#LKQ has revealed one of their Canadian business units suffered a #cyberattack The breach was detected on Nov 13, 2024, and has disrupted business operations. LKQ has engaged third party cybersecurity experts to investigate, and has alerted law enforcement. #cybersecurity #Canada https://lnkd.in/gcb7jGQ9
Auto parts giant LKQ says cyberattack disrupted Canadian business unit
bleepingcomputer.com
-
#Cleo has released software updates to address a vulnerability in LexiCom, VLTransfer, and Harmony software that is being actively exploited There is currently no tracking number for the vulnerability. When exploited, allows an attacker to run arbitrary bash or PowerShell commands. Administrators are advised to patch ASAP #cybersecurity https://lnkd.in/dH_VNSuB
Cleo patches critical zero-day exploited in data theft attacks
bleepingcomputer.com
-
#ByteFederal, a US #Bitcoin ATM operator, has revealed they were victim of a #databreach The breach was discovered on Nov 18, 2024. The attacker gained access to one of their servers by exploiting a GitLab vulnerability. Upon discovery, Byte Federal took action to secure the compromised server. Sensitive personal info was stolen, including name, address, and SSN. Affected users are advised to change their passwords and be vigilant of phishing #cybersecurity https://lnkd.in/e9sNSSPv
Bitcoin ATM firm Byte Federal hacked via GitLab flaw, 58K users exposed
bleepingcomputer.com
-
Security researchers discover campaign exploiting a vulnerability in the #HunkCompanion #WordPress plugin The vulnerability is tracked as CVE-2024-11972, and when exploited, allows an attacker to install arbitrary plugins. This can be used by an attacker to install other vulnerable plugins that can lead to further compromise. Administrators are advised to patch ASAP #cybersecurity https://lnkd.in/gukmDp2x
Hunk Companion WordPress plugin exploited to install vulnerable plugins
bleepingcomputer.com
-
#Microsoft has released software updates as part of its December #PatchTuesday #cybersecurity The updates fix 71 security vulnerabilities in total, including 1 zero-day vulnerability that is being actively exploited Administratrs are advised to patch ASAP, prioritizing the actively exploited zero-day #cybersecurity #patchmanagement https://lnkd.in/g8z7i2Zi
Microsoft Releases December 2024 Patches — RF Wave
rfwave.io
-
#Ivanti has released software updates to address a critical vulnerability in its Cloud Services Appliance (CSA) The vulnerability is tracked as CVE-2024-11639, and when exploited, allows an attacker to bypass authentication and gain administrative privileges Administrators are advised to patch ASAP #cybersecurity https://lnkd.in/gsTXP6rN
Ivanti warns of maximum severity CSA auth bypass vulnerability
bleepingcomputer.com
-
The maintainer of the #Ultralytics AI library for Python has confirmed some versions of the library contained malicious code The code exists in versions 8.3.41 and 8.3.42 of the library. The malicious code mines cryptocurrency in the background. Developers are advised to review all library dependencies and update to a patch version #cybersecurity #supplychainattack https://lnkd.in/gmiMCd3E
Ultralytics AI Library Compromised: Cryptocurrency Miner Found in PyPI Versions
thehackernews.com
-
Security researchers discover a #zeroday vulnerability in #Windows No tracking number has been assigned. When exploited, the vulnerability allows an attacker to gain a user's NTLM credentials by just having the user view the malicious file. Administrators are advised to turn of NTLM if possible #cybersecurity #vulnerabilitymanagement https://lnkd.in/eZxFNAxg
New Windows zero-day exposes NTLM credentials, gets unofficial patch
bleepingcomputer.com