InfoSec Dot - Issue #37. 🚨 Akira Ransomware Escalation | 🛠️ Ford’s Security Probe | 🌍 ICS Vulnerability Exposure

In partnership with

Hi there,

Welcome to this Thursday's quick update edition of InfoSec Dot!

In this edition, we explore a significant escalation in Akira ransomware activity, Ford’s ongoing investigation into a potential data breach, and the exposure of 145,000 industrial control systems worldwide. Each story underscores the critical importance of robust security measures and proactive defense strategies against the evolving landscape of cyber threats.

Join us as we break down these developments and their implications for global security. Let’s dive in!

Start learning AI in 2025

Everyone talks about AI, but no one has the time to learn it. So, we found the easiest way to learn AI in as little time as possible: The Rundown AI.

It's a free AI newsletter that keeps you up-to-date on the latest AI news, and teaches you how to apply it in just 5 minutes a day.

Plus, complete the quiz after signing up and they’ll recommend the best AI tools, guides, and courses – tailored to your needs.

Sign up to start learning.

🗓️ What’s New

Data Breach at French Hospital Exposes 750,000 Patients’ Records

A severe data breach at a French hospital has led to the exposure of medical records for 750,000 patients. The breach targeted the Mediboard system, widely used across European healthcare facilities, leaking sensitive personal and medical information. This incident underscores the urgent need for enhanced cybersecurity measures in the healthcare sector. Read More (3 Mins)

Critical API Flaw Exposes 4 Million WordPress Sites

A vulnerability in the REST API of the WordPress Simple Security plugin has exposed 4 million sites to account takeovers. Discovered by Wordfence, the flaw allows unauthorized logins without a valid security token, bypassing API authentication. This incident underscores the importance of rigorous API error handling and secure design practices to prevent unexpected API behaviors and enhance overall security. Read More (3 Mins)

Akira Ransomware Intensifies Activity with 32 New Victim Leaks

The Akira ransomware group has escalated its operations by leaking information from 32 new victims in just one day. Operating under a ransomware-as-a-service model, Akira has targeted over 350 organizations since early 2023, impacting sectors across business services, construction, and technology. This rapid release of stolen data underscores the group’s aggressive tactics and highlights the broader issue of cybersecurity vulnerability across industries. Read More (3 Mins)

Exploitation Attempts on Citrix Session Recording Vulnerabilities

Recent exploitation attempts have targeted newly disclosed vulnerabilities in Citrix’s Session Recording software, CVE-2024-8068 and CVE-2024-8069. These flaws could allow unauthenticated remote code execution and were exposed soon after a security firm published a proof-of-concept. Citrix has since updated their advisory and released patches, urging users to update their systems to prevent potential exploits. Read More (3 Mins)

Zero-Day Attacks Target Mac Users

Apple warns that Mac users are being targeted by zero-day attacks exploiting vulnerabilities in JavaScriptCore and WebKit, potentially allowing arbitrary code execution and cross-site scripting. These vulnerabilities, known to affect Intel-based systems, have prompted Apple to issue critical updates for macOS and other operating systems. Users are urged to install these updates immediately to protect their devices from potential exploits. Read More (3 Mins)

Ford Investigates Alleged Data Breach Affecting 44,000 Records

Ford is actively investigating a potential data breach after claims surfaced on a cybercrime forum that hackers had stolen data concerning 44,000 records, primarily dealership information. While the data in question mostly involves publicly accessible dealership addresses, Ford is examining the claims to determine the scope and impact. The incident highlights ongoing cybersecurity challenges faced by corporations in protecting sensitive information. Read More (3 Mins)

Over 145,000 Industrial Control Systems Exposed Online

A recent study identified that over 145,000 industrial control systems across 175 countries are accessible online, presenting significant cybersecurity risks. The majority of these systems, located in the US, are vulnerable due to outdated security protocols. This exposure underscores the urgent need for enhanced security practices to protect critical infrastructure from potential cyber threats. Read More (5 Mins)

🔗 Quick Links

• How Can HTTP Status Codes Tip Off a Hacker?

• CrowdStrike CEO pushes ‘resilient by design’ framework, promising changes

• The Security Team’s Guide To Supply Chain Threats

• MITRE shares 2024's top 25 most dangerous software weaknesses

• How to safely use public Wi-Fi networks

If you like this issue, I'd really appreciate it if you could forward it to your friends and colleagues! Your support helps us grow and continue providing great content.

If you have specific feedback or anything interesting you’d like to share, please let me know by replying to this email.

Regards,

Dot