Securing your network for the holidays

Today’s concerning leak is brought to you by SavantCare. The leak was discovered by an independent researcher who first reported it on his blog yesterday. In his report, @JayeLTee states that he found exposed data that included data from SavantCare employee chats.  “Over two-thirds of the 308 users on the chat were for SavantCare, a…

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Hikvision and Rockwell Automation products to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The critical-severity vulnerabilities are listed below – CVE-2017-7921 (CVSS score: 9.8) – An improper authentication vulnerability affecting

A China-aligned advanced persistent threat (APT) group called TheWizards has been linked to a lateral movement tool called Spellbinder that can facilitate adversary-in-the-middle (AitM) attacks. “Spellbinder enables adversary-in-the-middle (AitM) attacks, through IPv6 stateless address autoconfiguration (SLAAC) spoofing, to move laterally in the compromised network, intercepting packets and

Agentic intelligence in Sophos MDR: A practical, outcome-focused approach Categories: Products & Services Tags: MDR, Sophos MDR, AI

Today’s reminder of the insider threat comes to us from the National Health Service in the U.K. Craig Meighan and Billy Gaddi report: A woman has been charged after Scots patients had their private medical records accessed during an NHS data breach. Reports suggest around 100 patients in NHS Lothian could have had their records……

The Straits Times reports: The Belgian federal prosecutor said on Wednesday it had started a probe into alleged Chinese hacking of Belgium’s intelligence service VSSE in November 2023, confirming an earlier report by Belgian daily Le Soir. The prosecutor added that it had received an accusation filed by VSSE in relation to the case. The…