October edition

Welcome to our Two Minute Tech Tip newsletter!

Every month, Entara will share a summary of the industry news that you need to know to protect your business and employees from the latest cyber threats.

Uncovering the WebP Vulnerability: Everything You Need to Know?

Google has recently discovered a new security flaw in the libwebp image library for exporting images in the Webp format. The vulnerability has been given a CVE identifier, CVE-2023-4863, and a maximum severity score of 10.0 on the CVSS rating system. According to Bleeping Computer, this vulnerability resides within the Huffman coding algorithm used by libwebp for lossless compression and it enables attackers out-of-bounds memory writes using maliciously crafted HTML pages... Learn more

Understanding the New SEC Cybersecurity Guidelines

The U.S. Securities and Exchange Commission, or the SEC, provides guidance on cybersecurity risk management, strategy, governance, and incident disclosure for public companies across industries, including the financial and healthcare industries. In recent years, the SEC has emphasized the importance of disclosing material cybersecurity risks and incidents to investors. Recently, new guidelines, which were approved on July 26, 2023, depict a significant increased focus on the SEC’s cybersecurity disclosure requirements. Keep reading to learn more about the latest guidelines and how these will affect your business... Learn more

MGM Resorts and Ceasear Entertainment Hit With Major Ransomware Attack?

Last month, MGM Resorts, which operates 30 hotel and gaming venues in Las Vegas as well as around the world, was the latest victim of a ransomware attack that brought the bustling gambling scene to a screeching halt. The attack impacted the hotel’s ability to serve guests, and multiple slot machines and gaming systems were shut down at all MGM venues. Caesars Entertainment, a fellow industry giant, also fell victim to a similar ransomware attack around the same time as MGM. However, they opted to pay a substantial ransom, amounting to millions of dollars, to restore normal operations and reduce the impact of the breach on their day-to-day operations. MGM has refused to engage and cooperate with the hackers, leading to a complete business shut down...Learn more