RF Wave

#RhodeIsland has revealed they were a victim of a #ransomware attack The incident was discovered on Dec 5, 2024, and affected the RIBridges system managed by a third-party. In response, the system was taken offline. This impacts applicants and beneficiaries in many programs, such as Medicaid. It is not known what data has been stolen. The third-party has engaged law enforcement to investigate. #cybersecurity #USA https://lnkd.in/e8wXxmBP

#LKQ has revealed one of their Canadian business units suffered a #cyberattack The breach was detected on Nov 13, 2024, and has disrupted business operations. LKQ has engaged third party cybersecurity experts to investigate, and has alerted law enforcement. #cybersecurity #Canada https://lnkd.in/gcb7jGQ9

#Cleo has released software updates to address a vulnerability in LexiCom, VLTransfer, and Harmony software that is being actively exploited There is currently no tracking number for the vulnerability. When exploited, allows an attacker to run arbitrary bash or PowerShell commands. Administrators are advised to patch ASAP #cybersecurity https://lnkd.in/dH_VNSuB

#ByteFederal, a US #Bitcoin ATM operator, has revealed they were victim of a #databreach The breach was discovered on Nov 18, 2024. The attacker gained access to one of their servers by exploiting a GitLab vulnerability. Upon discovery, Byte Federal took action to secure the compromised server. Sensitive personal info was stolen, including name, address, and SSN. Affected users are advised to change their passwords and be vigilant of phishing #cybersecurity https://lnkd.in/e9sNSSPv

Security researchers discover campaign exploiting a vulnerability in the #HunkCompanion #WordPress plugin The vulnerability is tracked as CVE-2024-11972, and when exploited, allows an attacker to install arbitrary plugins. This can be used by an attacker to install other vulnerable plugins that can lead to further compromise. Administrators are advised to patch ASAP #cybersecurity https://lnkd.in/gukmDp2x

#Microsoft has released software updates as part of its December #PatchTuesday #cybersecurity The updates fix 71 security vulnerabilities in total, including 1 zero-day vulnerability that is being actively exploited Administratrs are advised to patch ASAP, prioritizing the actively exploited zero-day #cybersecurity #patchmanagement https://lnkd.in/g8z7i2Zi

#Ivanti has released software updates to address a critical vulnerability in its Cloud Services Appliance (CSA) The vulnerability is tracked as CVE-2024-11639, and when exploited, allows an attacker to bypass authentication and gain administrative privileges Administrators are advised to patch ASAP #cybersecurity https://lnkd.in/gsTXP6rN

The maintainer of the #Ultralytics AI library for Python has confirmed some versions of the library contained malicious code The code exists in versions 8.3.41 and 8.3.42 of the library. The malicious code mines cryptocurrency in the background. Developers are advised to review all library dependencies and update to a patch version #cybersecurity #supplychainattack https://lnkd.in/gmiMCd3E

Security researchers discover a #zeroday vulnerability in #Windows No tracking number has been assigned. When exploited, the vulnerability allows an attacker to gain a user's NTLM credentials by just having the user view the malicious file. Administrators are advised to turn of NTLM if possible #cybersecurity #vulnerabilitymanagement https://lnkd.in/eZxFNAxg

#BlueYonder has revealed they were a victim of a cyber-attack Blue Yonder has many high-profile clients, such as Microsoft, Lenovo, and Procter & Gamble. The incident led to outages affecting its customers. Termite #ransomware group has claimed responsibility, and said they stole 680 GB of data. #cybersecurity #USA https://lnkd.in/esXr6ypa