55,000 Impacted by Cyberattack on California School Association 

The Association of California School Administrators (ACSA) is informing nearly 55,000 individuals that they have been impacted by a ransomware attack.
The post 55,000 Impacted by Cyberattack on California School Association  appeared first on SecurityW… Continue reading 55,000 Impacted by Cyberattack on California School Association 

NYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 Hack

Intercontinental Exchange, the company that operates NYSE and other exchanges, has agreed to pay a $10 million fine related to a 2021 hack.
The post NYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 Hack appeared first on SecurityWeek.
Continue reading NYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 Hack

Critical Vulnerability in Honeywell Virtual Controller Allows Remote Code Execution

Claroty shows how Honeywell ControlEdge Virtual UOC vulnerability can be exploited for unauthenticated remote code execution.
The post Critical Vulnerability in Honeywell Virtual Controller Allows Remote Code Execution appeared first on SecurityWeek.
Continue reading Critical Vulnerability in Honeywell Virtual Controller Allows Remote Code Execution

CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw

CISA has added CVE-2023-43208, an unauthenticated remote code execution vulnerability, to its KEV catalog. 
The post CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw appeared first on SecurityWeek.
Continue reading CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw

EPA Issues Alert After Finding Critical Vulnerabilities in Drinking Water Systems

The EPA has issued an enforcement alert, outlining the steps needed to comply with the Safe Drinking Water Act.
The post EPA Issues Alert After Finding Critical Vulnerabilities in Drinking Water Systems appeared first on SecurityWeek.
Continue reading EPA Issues Alert After Finding Critical Vulnerabilities in Drinking Water Systems

Vulnerability Found in Fluent Bit Utility Used by Major Cloud, Tech Companies

Linguistic Lumberjack (CVE-2024-4323) is a critical vulnerability in the Fluent Bit logging utility that can allow DoS, information disclosure and possibly RCE.
The post Vulnerability Found in Fluent Bit Utility Used by Major Cloud, Tech Companies appe… Continue reading Vulnerability Found in Fluent Bit Utility Used by Major Cloud, Tech Companies