Medical Service Provider Data Breach Affects 2 Million Users

July 1, 2022

Depending on where you live, you may have received medical care from the Shields Health Care Group (Shields), or from a provider associated with them. If so, be aware that the Massachusetts-based medical provider specializing in PET/CT scans, MRIs, radiation oncology, and ambulatory surgical services has been hacked. The unknown hackers gained access to their network and stole data relating to more than 2 million users. According to the breach notification that the company published on their website, Shield first became aware of the attack on March 28th of this year (2022).

Beware New Windows Vulnerability With Remote Search Window Access

June 30, 2022

You may not know the name Matthew Hickey, but you should thank him for a recent discovery that could save you a lot of grief. Hickey is the co-founder of a company called Hacker House. He recently discovered a flaw that could allow for the opening of a remote search window simply by opening a Word or RTF document. This newly discovered zero-day vulnerability is about as serious as it gets.

Some Carrier Embedded Android Apps May Have Security Vulnerabilities

June 29, 2022

Recently, Microsoft reported high severity security vulnerabilities in multiple apps offered by large international mobile service providers. What makes this especially noteworthy is the fact that these vulnerabilities aren't app specific, but framework specific. Many carriers use the same basic framework to construct their apps and now all have been found to contain vulnerabilities. The vulnerabilities discovered to this point are being tracked as CVE-2021-42598, CVE-2021-42599, CVE-2021-42600, and CVE-2021-42601, respectively.

Millions Of MySQL Server Users’ Data Found On The Internet

June 28, 2022

Do you maintain a MySQL server? If so, you're certainly not alone. What you may not know is that according to research conducted by The Shadowserver Foundation, (a cybersecurity research group) there are literally millions of MySQL servers visible on the internet that shouldn't be. In all, the group found more than 3.6 million MySQL servers visible on the web and using the default port, TCP port 3306. The company noted that they did not check for the level of access possible, or the exposure of specific data.

Hackers Are Using Personal Messages On WhatsApp To Attack

June 27, 2022

Are you a WhatsApp user? If so, be aware that hackers have worked out a means of hijacking a user's WhatsApp account and gaining access to a user's contact list and personal messages. The attack relies on mobile carriers' automated service to forward calls to different phone numbers, which is a service every major mobile carrier offers. Unfortunately, it can be exploited by hackers by tricking users into forwarding their calls to a number that the hackers control.

Microsoft Releases Multiple New Features For Teams

June 25, 2022

Teams was "just another Microsoft application" before the pandemic. Thanks to Covid-19 though, demand for video conferencing solutions shot through the roof, and suddenly Teams found its groove. Microsoft had been gamely trying to bolster its popularity and the pandemic certainly helped. For more than two years, the Redmond giant has been pouring an increasing number of resources into polishing Teams and really making it shine. Recently (May of this year), Microsoft made a significant update to Teams which introduced a whole raft of new features.

Intel Users Should Update Firmware To Avoid This Ransomware

June 24, 2022

Not long ago, researchers at Eclypsium got a lucky break. An unknown and unidentified individual began leaking communications from inside the Conti ransomware organization. These leaked communications seemed to confirm what has long been suspected: That there are strong ties between the Conti gang and Russia's FSB (military intelligence). This sounds like something right out of a spy movie, but it's not. The leaked messages indicate that several members of the Conti gang have been actively working on developing a new attack vector that specifically targets Intel firmware, allowing Conti to launch its ransomware attack.

The Windows Follina Vulnerability Has A Temporary Fix

June 23, 2022

File this away under "good news, bad news." The bad news is that there's a new, critical zero-day threat to be concerned about. The threat has been dubbed 'Follina.' It is being tracked as CVE-2022-30190 and is being described by Microsoft as an MSDT (Microsoft Windows Support Diagnostic Tool) remote code execution flaw that impacts all version of windows still getting security updates, including Windows 7+ and Server 2008+.

Microsoft Will Not Release Exchange Server Updates Until 2025

June 22, 2022

Are you planning on setting up an Exchange server soon or are you running one now? If so, be aware that Microsoft is changing their guidance when it comes to the technology and specifically running a server on-premises. Two years ago, the Redmond giant announced that the next versions of their Skype for Business Server, Project Server, SharePoint Server, and Exchange Server would be available during the second half of 2021.

Enemybot Malware May Go Beyond DDOS Attacks

June 21, 2022

Unless you're an IT Security Professional, you may never have heard of EnemyBot. It is a bit like the Frankenstein of malware threats, a botnet that has borrowed code from multiple different sources. While that's not terribly original, it does make it dangerous. The hackers behind the code are actively adding new exploits as newly disclosed critical vulnerabilities come to light in content management systems, IoT devices, Android devices, and web servers.

Contact

Network Revolution

Social Media