Tux Machines

Proprietary Software and Security

Posted by Roy Schestowitz on Jan 30, 2023,

updated Jan 30, 2023

=> Programming Leftovers | Microsoft in Court for Plagiarism and FOSS Licence Violations

Stratford University discloses ransomware attack — but which ransomware attack?

=> ↺ Stratford University discloses ransomware attack — but which ransomware attack?

In September 2022, DataBreaches reported Stratford University had been the target of three ransomware attacks in previous months by REvil, Snatch Team, and Avos Locker. Snatch Team and Avos Locker had informed DataBreaches that neither had encrypted Stratford’s files; they exfiltrated and attempted to ransom them. Stratford never responded to inquiries from DataBreaches about the multiple claimed attacks.

An Old NSA-Found Security Threat Is Still Menacing Windows Users And Data Centers [iophk: Windows TCO]

=> ↺ An Old NSA-Found Security Threat Is Still Menacing Windows Users And Data Centers

The vulnerability, tracked as CVE-2022-34689, has a Common Vulnerability Scoring System (CVSS) score of 7.5, thanks to various metrics. While this score is not wholly indicative of the dangers of this vulnerability, it is a basis for concern. Namely, if exploited, this vulnerability could allow an attacker to pose as a legitimate entity with valid certificates used in code signing or verification.

Multiple Vulnerabilities Found In Healthcare Software OpenEMR

=> ↺ Multiple Vulnerabilities Found In Healthcare Software OpenEMR

Alessandro Mascellino reports: Researchers have found three separate vulnerabilities in OpenEMR, an open-source software for electronic health records and medical practice management. Clean code experts at Sonar published an advisory Wednesday about the discovered flaws by security researcher Dennis Brinkrolf. Thanks to responsible disclosure, the vulnerabilities were addressed in October 2022. Anyone using OpenEMR should update to one of the updated versions. Read more at InfoSecurity. In 2018, Project Insecurity released their report on 18 vulnerabilities they had found.

iTWire - Parent firm of Indian defence contractor hit by Windows Alphv ransomware [Ed: Windows TCO]

=> ↺ iTWire - Parent firm of Indian defence contractor hit by Windows Alphv ransomware

The parent company of a private defence contractor in India has been compromised by the Windows Alphv ransomware (aka BlackCat)...

=> gemini.tuxmachines.org

Proxy Information

Original URL: gemini://gemini.tuxmachines.org/n/2023/01/30/Proprietary_Software_and_Security.gmi
Status Code: Success (20)
Meta: text/gemini;lang=en-GB
Capsule Response Time: 139.621664 milliseconds
Gemini-to-HTML Time: 0.42295 milliseconds

This content has been proxied by September (3851b).