Sophos Firewall v21.5: Entra ID SSO for Sophos Connect
How to make the most of the new features in Sophos Firewall v21.5.
Similar Posts
GoBruteforcer Botnet Targets Crypto Project Databases by Exploiting Weak Credentials
Bys sA new wave of GoBruteforcer attacks has targeted databases of cryptocurrency and blockchain projects to co-opt them into a botnet that’s capable of brute-forcing user passwords for services such as FTP, MySQL, PostgreSQL, and phpMyAdmin on Linux servers. “The current wave of campaigns is driven by two factors: the mass reuse of AI-generated server deployment…
South Korea considers updates to data and cyber laws
Bys sCharmian Aw, Paul Otto, and Ciara O’Leary of Hogan Lovells write: Recent large‑scale data breaches across major sectors in Korea, including across the telecommunications, retail, and finance sector, have prompted swift and coordinated response from lawmakers and regulators. The National Assembly and relevant government agencies are advancing legislative amendments and updating regulatory measures to strengthen……
Hackers Exploit Milesight Routers to Send Phishing SMS to European Users
Bys sUnknown threat actors are abusing Milesight industrial cellular routers to send SMS messages as part of a smishing campaign targeting users in European countries since at least February 2022. French cybersecurity company SEKOIA said the attackers are exploiting the cellular router’s API to send malicious SMS messages containing phishing URLs, with the campaigns primarily targeting…
KY: Personal data of Boone, Kenton County students breached, school officials say
Danielle Goodman reports: Personal data from current and former students in Boone and Kenton County school districts may have been accessed and copied in cyber attacks earlier this month, according to school district announcements. School district officials said the data breaches appear to have stemmed from phishing schemes, where cybercriminals trick users into providing sensitive…
Ransomware attack affects Michigan casinos and tribal health centers
Bys sOn February 15, the RansomHub ransomware group claimed responsibility for an attack on the Sault Ste. Marie Tribe of Chippewa Indians. RansomHub claims to have “temporarily locked” the tribe’s infrastructure and to have acquired 119 GB of files (501, 211 files). The affected systems reportedly include casinos, convenience stores, government buildings, and telecommunications services, but…
Lightning AI Studio Vulnerability Allowed RCE via Hidden URL Parameter
Bys sCybersecurity researchers have disclosed a critical security flaw in the Lightning AI Studio development platform that, if successfully exploited, could allow for remote code execution. The vulnerability, rated a CVSS score of 9.4, enables “attackers to potentially execute arbitrary commands with root privileges” by exploiting a hidden URL parameter, application security firm Noma said in…