Sophos ZTNA Updates
New Let’s Encrypt and regional support.
Similar Posts
Japanese cancer hospital confirms breach; Qilin gang claims responsibility
Bys sStefanie Schappert reports: The Qilin ransomware group said it is responsible for the February 10th hack of a prestigious cancer treatment center in Japan, exposing the sensitive health information of 300,000 patients and leaving its hospital system “unusable.” The Utsunomiya Central Clinic (UCC) cancer treatment center first alerted the public to the ransomware attack on…
UK: ‘Catastrophic’ attack as Russians hack files on EIGHT MoD bases and post them on the dark web
Bys sLydia Veljanovski and Sean Rayment report: Russian hackers have stolen hundreds of sensitive military documents containing details of eight RAF and Royal Navy bases as well as Ministry of Defence staff names and emails – and posted them on the dark web, The Mail on Sunday can reveal. In what has been described as a ‘catastrophic’ security……
SAG-AFTRA Members Settle Lawsuit Against Union Health Plan Over Data Breach
Bys sIn December 2024, SAG-AFTRA notified members of a phishing incident in September 2024 that may have resulted in unauthorized access to their name and Social Security number, and may also have contained information associated with claims and health insurance information, such as health plan participant identification number, if applicable. The incident was reported to HHS……
CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation
Bys sThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three flaws impacting Mitel MiCollab and Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The list of vulnerabilities is as follows – CVE-2024-41713 (CVSS score: 9.1) – A path traversal vulnerability in Mitel MiCollab that could allow…
Breach notifications needed to be made faster in 2024. Instead, they were made more slowly.
Bys sAlthough some members of the public may not realize it, not all U.S. medical practices or practitioners are covered by HIPAA. But for entities that are regulated by HIPAA, HIPAA has some requirements for notifying patients about reportable breaches. The first thing to understand is that for regulated entities, a breach is considered “discovered” on…
Meta Warns of FreeType Vulnerability (CVE-2025-27363) With Active Exploitation Risk
Bys sMeta has warned that a security vulnerability impacting the FreeType open-source font rendering library may have been exploited in the wild. The vulnerability has been assigned the CVE identifier CVE-2025-27363, and carries a CVSS score of 8.1, indicating high severity. Described as an out-of-bounds write flaw, it could be exploited to achieve remote code execution…