NHS Ransomware Attack, XZ Backdoor Affecting Unix, PyPI Suspends New Projects, Critical Flaw in MS Exchange Servers, Silent Extension Installs on Edge
Nikoloz K.
Cybersecurity Strategist | Empowering Future Cybersecurity Leaders | Enabling Secure Innovation for Startups & Enterprises
Discover the week's top 5 security news in this exclusive newsletter. For the full edition, including cybersecurity tools, startup market insights, and must-read articles, visit the Mandos Way blog.
Week 13 already? Time flies!
In this week's cybersecurity roundup, we cover critical vulnerabilities in XZ Utils and Microsoft Edge, thousands of exposed Exchange servers in Germany, an NHS ransomware attack, and a flood of malicious PyPI packages.
UK's NHS Suffers Ransomware Attack, Patient Data Leaked
A ransomware group has published clinical data of some patients from NHS Dumfries and Galloway following a recent cyber attack on the health board's IT systems. Despite the attack, patient-facing services continue to run normally while an investigation into the data breach is ongoing. ? Learn more
Critical Backdoor Discovered in XZ Utils Affecting Most Unix Distributions
A highly critical backdoor vulnerability (CVE-2024-3094) with a CVSS score of 10.0 was discovered in XZ Utils versions 5.6.0 and 5.6.1, allowing unauthorized remote access by interfering with the sshd daemon via systemd. ? Learn more
领英推荐
PyPI Temporarily Suspends New Projects and Users After Flood of Malicious Package Uploads
The Python Package Index (PyPI) temporarily suspended new project creation and user registration for 10 hours due to an onslaught of malicious package uploads that executed malicious code on devices that installed them. Attackers used automated means to upload malicious packages with names similar to popular legitimate packages, aiming to steal crypto wallets, sensitive browser data, and credentials in a technique known as typosquatting. ? Learn more
Thousands of Microsoft Exchange Servers in Germany Vulnerable to Critical Flaws
The German Federal Office for Information Security (BSI) found that around 45,000 Microsoft Exchange servers in Germany have Outlook Web Access (OWA) enabled and accessible from the Internet, with approximately 17,000 of these servers being severely vulnerable. ? Learn more
Microsoft Edge Vulnerability Allowed Silent Extension Installation
A vulnerability (CVE-2024-21388) was discovered in Microsoft Edge that could allow attackers to silently install browser extensions with broad permissions by exploiting a private API meant for marketing purposes. ? Learn more
?? More updates on Mandos Way, covering news from StealthMole , Coro , and Symmetry Systems . Also cybersecurity tools and recommended reads from this week!