Security News > 2023 > February

PeopleConnect, the owners of the TruthFinder and Instant Checkmate background check services, confirmed they suffered a data breach after hackers leaked a 2019 backup database containing the info of millions of customers. TruthFinder and Instant Checkmate are subscription-based services allowing customers to perform background checks on other people.

Vas pup February 3, 2023 5:39 PM. Israeli startup Gem Security nabs $11m in seed round led by Team8. "Israeli startup Gem Security has raised $11 million from a seed funding round as it rolls out its integrated technology platform to help businesses and large organizations detect and respond swiftly to cyberattacks on their cloud-based services."

Kaspersky discovered two new Prilex variants in early 2022 and found a third in November that can target NFC-enabled credit cards and block contactless transactions, forcing payers over to the less-secure PIN machines. "Contactless credit cards offer a convenient and secure way to make payments without the need to physically insert or swipe the card," the researchers wrote.

I have done a written interview and a podcast interview about the book. It's been chosen as a "February 2023 Must-Read Book" by the Next Big Idea Club.

Telnet was remarkably simple and effective: instead of connecting physical wires to make a teletype connection to remote servers, you used a TELetype NETwork connection instead. Basically, the data that would usually flow back and forth over a dedicated serial connection or dial-up phone connection was sent and received over the internet, using a packet-switched TCP network connection instead of a circuit-switched point-to-point link. Sshd: fix a pre-authentication double-free memory fault introduced in OpenSSH 9.1.

The man accused of bringing down decentralized crypto exchange Mango Markets through market manipulation has made his first appearance in court in connection with the theft of millions in cryptocurrency. Avraham Eisenberg was arrested in late December in Puerto Rico in relation to charges [PDF] filed by the US Securities and Exchange Commission, which allege he made off with more than $110 million in crypto "By artificially manipulating the price of certain perpetual futures contracts."

Admins, hosting providers, and the French Computer Emergency Response Team warn that attackers actively target VMware ESXi servers unpatched against a two-year-old remote code execution vulnerability to deploy ransomware. "As current investigations, these attack campaigns appear to be exploiting the vulnerability CVE-2021-21974, for which a patch has been available since 23 February 2021," CERT-FR said.

Tallahassee Memorial HealthCare has taken its IT systems offline and suspended non-emergency procedures following a late Thursday cyberattack. TMH is a private and not-for-profit healthcare system that serves a 21-county region in North Florida and South Georgia through acute care and psychiatric hospitals, multiple specialty care centers, and 38 affiliated physician practices.

The developers of the GoAnywhere MFT file transfer solution are warning customers of zero-day remote code execution vulnerability on exposed administrator consoles. GoAnywhere is a secure web file transfer solution that allows companies to securely transfer encrypted files with their partners while keeping detailed audit logs of who accessed the files.

Two new security weaknesses discovered in several electric vehicle (EV) charging systems could be exploited to remotely shut down charging stations and even expose them to data and energy theft....