ISBuzz Team

A hacker has threatened to ‘leak everything’ about the graphics source code for the Xbox Series X console, according to T3. While Microsoft has revealed much about the console since it was unveiled last year, including the hardware specs in full, and has even launched a new website for the console, some information it would rather not be made public is now under threat of being leaked. The hacker claims to have GPU source code, and has threatened to “leak everything” if she doesn’t find a buyer – or at least someone willing to pay her not to do it…

It has been reported that there is currently an unpatched security vulnerability affecting iOS 13.3.1 or later which prevents virtual private networks (VPNs) from encrypting all traffic and can lead to some Internet connections bypassing VPN encryption to expose users’ data or leak their IP addresses. While connections made after connecting to a VPN on your iOS device are not affected by this bug, all previously established connections will remain outside the VPN’s secure tunnel as ProtonVPN disclosed. This VPN bypass vulnerability (rated with a 5.3 CVSS v3.1 base score) and was disclosed by ProtonVPN to make users and other VPN providers aware of…

A malicious USB device and letter was sent out that was in the guise of a gift card for Best Buy where users were thanked for being customers and the USB device supposedly had gifts customers could choose from up to $50.00. Instead, the USB contained a PowerShell code that installed a malicious JavaScript according to security researchers at Trustwave.

According to Bleeping Computer, the Ryuk Ransomware operators continue to target hospitals even as these organizations are overwhelmed during the Coronavirus pandemic.

Privacy experts have branded a planned NHS coronavirus tracking app ‘Orwellian’, but say it may be necessary for the country to survive the pandemic, according to an article in the Daily Mail. No specific details of the ‘opt-in’ app have been revealed but it would likely make use of GPS and mobile phone location data to track users with the virus. Privacy experts have warned that if the highest level of data protection and privacy isn’t in place ‘it would be too easy for information to fall into the wrong hands’.

Reuters broke the story late yesterday that elite hackers tried to break into the World Health Organisation earlier this month.

The emerging cybersecurity threats targeting telemedicine and healthcare organisations in the wake of the coronavirus pandemic. Bindu explores the issue below and offers advice on what precautions to take in order to prevent cyber-attacks of this nature.

Watford Community Housing (WCH) sent out an unencrypted spreadsheet with 3,544 rows of personal information on its tenants, including names, addresses, dates of birth, religion, sexual orientation, ethnic origin and disability status.  It’s not yet been confirmed if any of these individuals are subject to witness protection orders in court proceedings. https://twitter.com/Databreach_help/status/1242457725822554118

It has been reported that a Chinese cyberespionage group has been attacking organizations worldwide by exploiting vulnerabilities in popular business applications and devices from companies such as Cisco, Citrix and Zoho. In light of the ongoing COVID-19 crisis, the risk to companies is even greater, because IT staff are working remotely and the rush to accommodate work-from-home employees might leave business applications exposed to the internet without adequate protection.

Researchers yesterday published the discovery of a serious breach in an open Amazon S3 bucket owned by secure cloud storage provider Data Deposit Box.The leak exposed detailed information about 270,000 private files uploaded by customers through the company’s secure cloud storage service. The database also revealed personally identifiable information (PII) of customers, which could have serious consequences for those affected.