BayPay Members Blogs

This additional resource is sponsored by The BayPay Forum.

Several Siemens Devices Affected by Intel MDS Vulnerabilities

view counter
Siemens informed customers on Tuesday that several of its products are affected by the Microarchitectural Data Sampling (MDS) vulnerabilities impacting a majority of the Intel processors made in the last decade....
Continue reading
  0 Comments
0 Comments

Indiana County Disabled by Malware Attack

view counter
LaPorte County, Indiana, reported Sunday that it had been affected by a malware attack. County Commission President Dr. Vidya Kora announced that county employees and the public needing to access any...
Continue reading
  0 Comments
0 Comments

U.S. Coast Guard Issues Cybersecurity Warnings for Commercial Vessels

Coast Guard cybersecurity alert
view counter
The U.S. Coast Guard on Monday issued a safety alert advising commercial vessel owners and operators to ensure that effective cybersecurity measures are in place to protect the network and important...
Continue reading
  0 Comments
0 Comments

Iran-Linked Malware Shared by USCYBERCOM First Seen in December 2016: Kaspersky

view counter
Iran-linked malware uploaded to VirusTotal last week by United States Cyber Command (USCYBERCOM) was first observed in Dec 2016 and Jan 2017, according to security firm Kaspersky.  The malware samples shared...
Continue reading
  0 Comments
0 Comments

Maryland Department of Labor Announces Data Breach

view counter
The Maryland Department of Labor has announced that databases containing personally identifiable information (PII) were accessed in a cyber-incident discovered earlier this year.  As part of the data breach, unknown actors...
Continue reading
  0 Comments
0 Comments

Malicious Code Planted in 'strong_password' Ruby Gem

view counter
A developer discovered that an update released for the 'strong_password' Ruby gem contained malicious code that allowed an attacker to remotely execute arbitrary code. Developer Tute Costa was updating gems used...
Continue reading
  0 Comments
0 Comments

British Airways Faces $230 Million Fine for 2018 Breach

view counter
UK ICO Shows its Teeth in Fining BA £183 Million for 2018 Breach  The UK data protection regulator, the Information Commissioner's Office (ICO), announced Monday that it intends to fine British...
Continue reading
  0 Comments
0 Comments

Eurofins Scientific Paid Up in Response to Ransomware Attack: Report

view counter
Luxembourg-based laboratory testing services giant Eurofins Scientific reportedly paid the ransom demanded by cybercriminals following a successful ransomware attack that led to the company taking offline many of its systems and...
Continue reading
  0 Comments
0 Comments

Canonical GitHub Account Hijacked

Canonical GitHub hacked
view counter
Canonical, the company behind the Ubuntu operating system, confirmed over the weekend that one of its GitHub accounts was hacked. According to Canonical, the attacker hijacked the account on July 6...
Continue reading
  0 Comments
0 Comments

Mystery of NSA Leak Lingers as Stolen Document Case Winds Up

view counter
Federal agents descended on the suburban Maryland house with the flash and bang of a stun grenade, blocked off the street and spent hours questioning the homeowner about a theft of...
Continue reading
  0 Comments
0 Comments

Cryptomining Campaign Targets Linux Servers with Go Malware

view counter
A recently uncovered cryptomining campaign is delivering a new Golang malware to target Linux-based servers, F5 Networks security researchers report. The operation appears to have commenced around June 10, but has...
Continue reading
  0 Comments
0 Comments

EFF, OTI Respond to UK's Online Harms Legislative Proposal

view counter
The Electronic Frontier Foundation (EFF) and New America's Open Technology Institute (OTI) have published their combined response to the UK government's Online Harms White Paper. The white paper, published in April...
Continue reading
  0 Comments
0 Comments

Hacker Who Disrupted Sony Gaming Firm Gets Federal Prison

view counter
A hacker who disrupted Sony Online Entertainment and other gaming companies has been sentenced to more than two years in federal prison. Twenty-three-year-old Austin Thompson of Utah received the 27-month sentence...
Continue reading
  0 Comments
0 Comments

Magento Patches Flaws Leading to Site Takeover

view counter
Magento recently addressed vulnerabilities that could be exploited by unauthenticated attackers to hijack administrative sessions and then completely take over vulnerable web stores. For a successful attack, a threat actor would...
Continue reading
  0 Comments
0 Comments

Certificates Issued to Huawei Subsidiary Found in Cisco Switches

view counter
Researchers noticed that the firmware for some Cisco switches contains X.509 certificates and associated private keys issued to a US-based subsidiary of Huawei. An investigation by the networking giant revealed that...
Continue reading
  0 Comments
0 Comments

Georgia Failed to Subpoena Image of Wiped Elections Server

view counter
The case of whether hackers may have tampered with elections in Georgia has taken another strange turn. Nearly two years ago, state lawyers in a closely watched election integrity lawsuit said...
Continue reading
  0 Comments
0 Comments

Multiple Chinese Groups Share the Same RTF Weaponizer

view counter
During an investigation into a possibly shared RTF weaponizer by Indian and Chinese APT groups, researchers have discovered that multiple Chinese groups have updated the weaponizer to exploit the Microsoft Equation...
Continue reading
  0 Comments
0 Comments

Dridex Operators Use New Trojan Downloader

view counter
The threat actor best known for operating the Dridex banking Trojan and the Locky ransomware has started using a new downloader in June, Proofpoint reports. Referred to as TA505 and believed...
Continue reading
  0 Comments
0 Comments

SIEM Provider Exabeam Acquires SkyFormation

view counter
Security information and event management (SIEM) solutions provider Exabeam this week announced the acquisition of cloud application security company SkyFormation. This is the first acquisition for the San Mateo, California-based SIEM...
Continue reading
  0 Comments
0 Comments

Broadcom in Talks to Acquire Symantec in $15 Billion Deal: Reports

view counter
Chipmaker Broadcom is in advanced talks to acquire cybersecurity giant Symantec in a deal that could exceed $15 billion, according to several news outlets. Bloomberg broke the news about the acquisition...
Continue reading
  0 Comments
0 Comments