SITA, a multinational IT company that provides services to the air transport industry was the victim of cyberattack that impacted multiple airlines. SITA is a multinational information technology company providing IT and telecommunication services to the air transport industry. The company provides its services to around 400 members and 2,800 customers worldwide, which it claims is about 90% of the world’s airline business. Around the world, nearly […]

The post Millions of travelers of several airlines impacted by SITA data breach appeared first on Security Affairs.

Read More Millions of travelers of several airlines impacted by SITA data breach

At least 30,000 organizations across the United States — including a significant number of small businesses, towns, cities and local governments — have over the past few days been hacked by an unusually aggressive Chinese cyber espionage unit that’s focused on stealing email from victim organizations, multiple sources tell KrebsOnSecurity. The espionage group is exploiting four newly-discovered flaws in Microsoft Exchange Server email software, and has seeded hundreds of thousands of victim organizations worldwide with tools that give the attackers total, remote control over affected systems.

Read More At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Microsoft experts continue to investigate the SolarWinds attack and spotted 3 new strains of malware used as second-stage payloads. Microsoft announced the discovery of three new pieces of malware that the threat actors behind the SolarWinds attack, tracked by the IT giant as Nobelium, used as second-stage payloads. Microsoft’s initial investigation revealed the existence of […]

The post GoldMax, GoldFinder, and Sibot, 3 new malware used by SolarWinds attackers appeared first on Security Affairs.

Read More GoldMax, GoldFinder, and Sibot, 3 new malware used by SolarWinds attackers

Women entrepreneurs are at the forefront of change. To address these changes and help foster a supportive, engaging environment for women in business, StrikeUp 2021 was created.
The post Women entrepreneurs adapt to new technology, mental wealth and co…

Read More Women entrepreneurs adapt to new technology, mental wealth and community to build and grow business

I have been seeing this paper by cryptographer Peter Schnorr making the rounds: “Fast Factoring Integers by SVP Algorithms.” It describes a new factoring method, and its abstract ends with the provocative sentence: “This destroys the RSA cryptosystem.”

It does not. At best, it’s an improvement in factoring — and I’m not sure it’s even that. The paper is a preprint: it hasn’t been peer reviewed. Be careful taking its claims at face value.

Some discussion here.

I’ll append more analysis links to this post when I find them.

Read More No, RSA Is Not Broken

The flashy stuff like Mesh dominated the spotlight, but there was no shortage of security updates and announcements at Microsoft Ignite.

The post Microsoft introduces Azure Sentinel updates, a mobile security app, new certifications, and much more first appeared on IT World Canada.

Read More Microsoft introduces Azure Sentinel updates, a mobile security app, new certifications, and much more

Ransomware gang patterns revealed, software code bug exploited, beware of malware hidden in images and mysterious hacks of criminal forums
The post Cyber Security Today, March 5, 2021 – Ransomware gang patterns revealed, software code bug exploited, ma…

Read More Cyber Security Today, March 5, 2021 – Ransomware gang patterns revealed, software code bug exploited, malware hidden in images, and mysterious hacks of criminal forums

Data breaches all over the place this week! Not just data breaches, but noteworthy data breaches; the VPN ones for being pretty shady, Oxfam because it included my data which was posted to a hacking forum, Ticketcounter because of the interactions I had with them during the disclosure process and

Read More Weekly Update 233

US managed service provider CompuCom was the victim of a cyberattack that partially disrupted its operations, experts believe it was a ransomware attack. US managed service provider CompuCom was the victim of a cyberattack that partially disrupted its services and some of its operations. Even if the company initially did not provide technical details about […]

The post Managed Services provider CompuCom by Darkside ransomware appeared first on Security Affairs.

Read More Managed Services provider CompuCom by Darkside ransomware

Twitter is launching an engineering hub in Canada this year, all eyes are on Alabama as Amazon warehouse workers seek unionization, and why should companies invest in upskilling? We’ll answer that question in a moment.
The post Hashtag Trending, March …

Read More Hashtag Trending, March 5, 2021 – Twitter’s plans to grow Canadian engineering hub; Amazon union showdown; Upskilling challenges

Experts found five vulnerabilities in the Linux kernel, tracked as CVE-2021-26708, that could lead to local privilege escalation. Positive Technologies researcher Alexander Popov found five high severity vulnerabilities in the Linux kernel that could lead to local privilege escalation. The Linux kernel vulnerabilities are race conditions that reside in AF_VSOCK implementation, they were implicitly introduced in November […]

The post Five privilege escalation flaws fixed in Linux Kernel appeared first on Security Affairs.

Read More Five privilege escalation flaws fixed in Linux Kernel