Kevin Beaumont writes: How CitrixBleed vulnerablity in Netscale has become the cybersecurity challenge of 2023. Credit union technology firm Trellance owns Ongoing Operations LLC, and provides a platform called Fedcomp — used by double digit number of other credit unions across the United States. This Fedcomp platform was not patched for CitrixBleed, as no Netscaler…
Category: Of Note
Sellafield nuclear site hacked by groups linked to Russia and China (1)
Anna Isaac and Alex Lawson report: The UK’s most hazardous nuclear site, Sellafield, has been hacked into by cyber groups closely linked to Russia and China, the Guardian can reveal. The astonishing disclosure and its potential effects have been consistently covered up by senior staff at the vast nuclear waste and decommissioning site, the investigation…
The EU’s Cyber Resilience Act Has Now Been Agreed
Mark Young and Aleksander Aleksiev of Covington and Burling write: Yesterday, the European Commission, Council and Parliament announced that they had reached an agreement on the text of the Cyber Resilience Act (“CRA”). As a result, the CRA now looks set to finish its journey through the EU legislative process early next year. As we explained in our…
60 credit unions facing outages due to ransomware attack on popular tech provider
Jonathan Greig reports: About 60 credit unions are dealing with outages due to a ransomware attack on a widely-used technology provider. National Credit Union Administration (NCUA) spokesperson Joseph Adamoli said the ransomware attack targeted the cloud services provider Ongoing Operations, a company owned by credit union technology firm Trellance. Read more at The Record.
Proliance Surgeons notifying 437,392 patients after ransomware attack earlier this year
On November 17, Proliance Surgeons notified HHS that 437,392 patients were affected by a breach. An undated notice on their website explains that it was a ransomware attack in which files and systems were encrypted and some data was exfiltrated. “After a thorough forensic investigation, we discovered on May 24, 2023, that additional files may…
After $50 Million Breach, KyberSwap Faces Hacker’s Shocking Demands
Alex Dovbnya reports: The individual claiming responsibility for the hack on KyberSwap, a multi-chain decentralized exchange (DEX) aggregator, has issued a set of astonishing demands through a transaction on the Ethereum blockchain. The hacker, self-identified as “Kyber Director,” is demanding complete executive control over Kyber, the company, and full authority over its governance mechanism, KyberDAO….