Sead Fadilpašić reports: HR software and payroll powerhouse SD Worx suffered a cyberattack last week, forcing it to shut down some of its IT systems. In a notification issued to potentially affected customers, SD Worx said it spotted malicious behavior in its networks and, so in order to isolate the threat, ceased operation of its systems for…
Category: Business Sector
Bits ‘n Pieces (Trozos y Piezas)
CL: Attack on multinational SONDA claimed by Medusa The Chilean IT multinational SONDA, which has a presence in 11 countries, has been placed on the leaks page of the threat actor Medusa Locker. Medusa’s leak site displays some file captures from different countries where this company operates. The proof includes an affidavit from SONDA Peru,…
NZZ has to shut down the newspaper production system after a cyber attack
APA/SDA reports: The “exceptional situation” is also associated with a reduction in the size of the print edition. According to media reports, the attackers are demanding a ransom for the blocked system. The “Neue Zürcher Zeitung” continues to struggle with problems two weeks after a cyber attack on its computers. The publisher shut down central…
Throne fixes security bug that exposed creators’ private home addresses
Zack Whittaker reports: A recently fixed security bug at a popular platform for supporting creators shows how even privacy-focused platforms can put creators’ private information at risk. Throne, founded in 2021, bills itself as “a fully secure, concierge wishlist service that acts as an intermediary between your fans and you.” Throne claims to support more than…
Concerns turned into reality… As soon as Samsung Electronics unlocks ChatGPT, ‘misuse’ continues
The following is a Google machine translation of an article in the Economist Korea. Jeong Doo-yong reports: As soon as Samsung Electronics permitted the use of ChatGPT in its device solution (DS/semiconductor) business premises, an accident occurred in which corporate information was leaked. The contents of programs related to semiconductor ‘facility measurement’ and ‘yield/defect’ were entered…
Mastodon Vulnerability Exposes Sensitive Information: Data Leak Alert
PBN reports: Mastodon, a social network based on software for servers of the same name, has been found to have a vulnerability that could have allowed attackers to read individual pieces of information. The problem was caused by inadequate filtering of the data transferred during LDAP authentication. The vulnerability allows attackers to smuggle in an…