Omer Kabir reports: A scanning and detecting system developed by the Israel National Cyber Directorate (INCD) has discovered 145 at risk databases 16 of them containing extremely sensitive private and business information, according to details provided to Calcalist by the government agency. Following the detection, the INCD reached out to the organizations that own and…
Pakistan Army identifies major cyber attack by India targeting mobile phones of govt, military officials
The News reports: Pakistani intelligence agencies have tracked a major security breach by Indian hackers whereby phones and other gadgets of government officials and military personnel were targeted, the military’s media wind said Wednesday. According to a statement by the Inter-Services Public Relations (ISPR), the cyber-attack by Indian intelligence agencies involved “a range of cyber…
Imperial Valley College Hit With Ransomware Attack; Multiple Systems Impacted
Richard Montenegro Brown and Jayson Barniske report: Imperial Valley College releases a brief press statement with some additional information.) A ransomware attack unleashed on Imperial Valley College’s computer system on Aug. 6 brought down critical systems that remained offline and will likely continue until further notice, a college spokesperson confirmed. Read more on Calexico Chronicle.
SANS infosec training org suffers data breach after phishing attack
Lawrence Abrams reports: The SANS cybersecurity training organization has suffered a data breach after one of their employees fell victim to a phishing attack. […] In a notification posted to their site today, SANS states that one of their employees fell for a phishing attack that allowed a threat actor to gain access to their…
Germany Prepares New Law for Patient Data Protection and Increased Digitalisation in Healthcare and for “Data Donations” for Research Purposes
Dr. Adem Koyuncu and Valerie Mei of Covington & Burling write: On 3 July 2020, the German parliament passed a draft bill (German language) for patient data protection and for more digitalisation in the German healthcare system (Patientendaten-Schutz-Gesetz). The draft bill is currently in the legislative procedure and is expected to enter into force in…
Security researcher publishes details and exploit code for a vBulletin zero-day
Catalin Cimpanu reports: A security researcher has published details and proof-of-concept exploit code for a zero-day vulnerability in vBulletin, one of today’s most popular forum software. The zero-day is a bypass for a patch from a previous vBulletin zero-day — namely CVE-2019-16759, disclosed in September 2019. Read more on ZDNet. Lawrence Abrams of BleepingComputer has…