Quest-owned Fertility Clinic Announces Data Breach After August Ransomware Attack

BACKGROUND: Quest Diagnostics has informed the SEC about a ransomware attack in August that hit ReproSource, a fertility clinic owned by the company. The ransomware attack led to a data breach, exposing a significant amount of health and financial information for about 350,000 ReproSource patients. Quest said ReproSource provided notice that it experienced a data […]

Patch Tuesday Addresses 74 CVEs | Commentary

Window Patches Injected with Malware

BACKGROUND: This month’s Patch Tuesday release includes fixes for 74 CVEs, three of which are rated critical including one vulnerability that was exploited in the wild as a zero-day.

MysterySnail RAT Uses MSoft Zero-day – 3 Experts Comment

Cyber Defense against Zero Day Exploits

BACKGROUND: Researchers at Kaspersky technologies are reporting in MysterySnail attacks with Windows zero-day about a Chinese RAT attacking multiple Windows servers using a zero-day privilege escalation for insertion. Reporting: “We discovered that it was using a previously unknown vulnerability in the Win32k driver and exploitation relies heavily on a technique to leak the base addresses […]

University Of Sunderland Hit With Major Cyber Attack

BACKGROUND: Following the news that the University of Sunderland has been hit by an apparent cyberattack, which has brought down its website, phones and IT systems, please see below comments from cybersecurity experts.