Security News > 2021 > June

Cato Networks announced its further expansion in Germany and the DACH region. "The new Munich point of presence joins our Frankfurt and Zurich PoPs and strengthens our offering in the south of Germany and in Austria, allowing for even better networking and security performance," says Johan van den Boogaart, Cato's Regional Sales Director for Germany.

An Elasticsearch server holding personal data of 6 million players of the popular mobile game Battle for the Galaxy was discovered insecure and containing over 1 terabyte of unencrypted data, meaning anyone with a link could access data stored on the repository. Battle for the Galaxy is available for Android and iOS devices, via the Steam gaming platform and also through the game publisher's browser-based version of the game.

Microsoft Teams is getting better security and privacy next month with the addition of end-to-end encrypted 1:1 voice calls. While Microsoft Teams already encrypts data at rest and in transit, it allows administrators to configure automatic recording and transcription of voice calls.

The US Supreme Court on Thursday limited the scope of the 1986 Computer Fraud and Abuse Act in a ruling that found a former sergeant did not violate the law by misusing his access to a police database. The CFAA prohibits accessing a protected computer "Without authorization" and accessing a protected computer in a way that "Exceeds authorized access." The problem with these ill-defined terms is that there's been disagreement in different courts over whether the law imposes criminal liability for violating Terms of Service agreements.

UF Health Central Florida has suffered a reported ransomware attack that forced two hospitals to shut down portions of their IT network. The University of Florida Health, also known as UF Health, is a healthcare network of hospitals and physician practices that provide care to countries throughout Florida.

Automattic, the company behind the WordPress content management system, force deploys a security update on over five million websites running the Jetpack WordPress plug-in. Automattic is force installing patched versions on all websites running vulnerable Jetpack versions, with most sites already having been updated.

The fascinating tale of a bug that's baked into Apple's latest chip. Why the Aussie data breach warning site HIBP is partnering with the FBI. A coronavirus tracking toolkit that fell foul of privacy rules.

This time around, the Google PPC ads targeted specific IP ranges in the U.S. and "Probably some other countries," researchers wrote. Google says that it uses proprietary technology and malware detection tools to "Regularly scan all creatives", that it forbids ads when they try to call fourth parties or sub-syndication to uncertified advertisers, that it pulls ads distributing malware, and that authorized buyers whose ads are found to contain malware are placed on a minimum three-month suspension.

A new White House memo to business leaders underscores the threat of ransomware and offers advice on how to protect their companies. Following recent cyberattacks against key operations in the U.S., the White House is pushing companies to take ransomware seriously and beef up their defenses against it.

Nonprofit healthcare provider, Scripps Health in San Diego, has disclosed a data breach exposing patient information after suffering a ransomware attack last month. On Tuesday, Scripps Health released an updated report on the attack and says that threat actors stole patient data during the attack.