Tux Machines
Posted by Roy Schestowitz on Apr 09, 2023
=> Programming Leftovers | New Distros Releases: ROSA 12.4, Q4OS 5.0-testing-r3, Pearl 13, Pearl 13, KDE neon 20230406, Artix 20230401, Mabox 23.03, Live Raizo 14.13.04.02, Archcraft 2023.04.02, Voyager 23.04-beta, Gnoppix 23.4, Zevenet 5.13.2
=> ↺ Rogers Communications data allegedly sold on a hacker forum
Rogers’ leak includes data from the company’s active directory, including information on customers, the attackers claim. The company confirmed the leak, saying some of Rogers’ employees “business contact information” was exposed.
=> ↺ HIPAA: Deficient or Miscast
The development of new technology in healthcare and the massive expansion in sources of healthcare data have both created many complications when it comes to protecting and securing sensitive information about individuals. Inevitably, the discussion then turns to the role of HIPAA, which then turns to HIPAA not meeting current needs.
=> ↺ Iran-Based Hackers Caught Carrying Out Destructive Attacks Under Ransomware Guise
he Iranian nation-state group known as MuddyWater has been observed carrying out destructive attacks on hybrid environments under the guise of a ransomware operation.
That's according to new findings from the Microsoft Threat Intelligence team, which discovered the threat actor targeting both on-premises and cloud infrastructures in partnership with another emerging activity cluster dubbed DEV-1084.
=> ↺ Mastodon Vulnerability Exposes Sensitive Information: Data Leak Alert
Mastodon, a social network based on software for servers of the same name, has been found to have a vulnerability that could have allowed attackers to read individual pieces of information. The problem was caused by inadequate filtering of the data transferred during LDAP authentication. The vulnerability allows attackers to smuggle in an LDAP database query, which can be used to read information about users bit by bit. Despite the vulnerability, it was not possible for attackers to get password hashes.
The vulnerability has been labelled CVE-2023-28853, with a risk assessment of “high”. Mastodon versions from 2.5.0 were affected, but the developers have since closed the security gaps in versions 4.1.2, 4.0.4, and 3.5.8. The release notes for the three new Mastodon versions include a description of the vulnerability and version 3.0.6 of Ruby as a security update to address a previous ReDoS vulnerability.
=> ↺ Alcohol recovery startups Monument and Tempest shared patients’ private data with advertisers
For years, online alcohol recovery startups Monument and Tempest were sharing with advertisers the personal information and health data of their patients without their consent.
Monument, which acquired Tempest in 2022, confirmed the extensive years-long leak of patients’ information in a data breach notification filed with California’s attorney general last week, blaming their use of third-party tracking systems developed by ad giants including Facebook, Google, Microsoft and Pinterest.
=> ↺ Throne fixes security bug that exposed creators’ private home addresses
A recently fixed security bug at a popular platform for supporting creators shows how even privacy-focused platforms can put creators’ private information at risk.
Throne, founded in 2021, bills itself as “a fully secure, concierge wishlist service that acts as an intermediary between your fans and you.” Throne claims to support more than 200,000 creators by shipping out thousands of their wish list items per day, all the while protecting the privacy of the creators’ home address.
=> ↺ Clinic hackers threaten to destroy information about patients with infectious diseases
The cyberattack that the Hospital Clínic de Barcelona suffered at the beginning of March, and which disrupted its activity, is still open and bothers the Catalan authorities. After the recent steps taken by the Mossos d’Esquadra to end the case, blocking the pirate gates at the beginning of the week, now the authors of the “hack” have threatened this Thursday to publish new stolen data.
In particular, they warned that “in the near future” they will publish information about patients with infectious diseases and information about the use of experimental drugs in the elderly that the Barcelona center carries out. The ‘hackers’, the Ransom House collective, have already published thousands of controversial data from the hospital in the first ‘deep web’.
=> ↺ PharMerica and BrightSpring Health Services hit by Money Message
PharMerica, owned by BrightSpring Health, is a national pharmacy network serving partners in over 3,100 long-term care, senior living, IDD/behavioral health, home infusion, specialty pharmacy, and hospital management programs. BrightSpring® Health Services provides comprehensive home and community-based health services to complex populations needing specialized care. Both are headquartered in Kentucky.
=> ↺ Are there any modern closed-source programming languages?
At a recent OpenUK meetup, one of the participants declared that Open Source had comprehensively won. While businesses might not always release their proprietary source code, 100% of everything they wrote used an open source programming language.
=> ↺ We are all prisoners of WhatsApp
Including, inevitably, professional communications, and that is where the trouble starts. WhatsApp combines the immediacy of the water-cooler chat, with the permanent record of the minuted meeting, and this is quite obviously a recipe for disaster. It’s easy, even natural, to use it for the kind of casual chat once reserved for face-to-face communications. The problem is they’re then preserved forever.
=> ↺ Microsoft coughs up some change after allegedly selling software to no-no companies
Microsoft will pay more than $3.3 million to settle allegations it busted US sanctions by selling software and services to blacklisted companies and individuals in Russia, Iran, and other countries.
(That figure is about 25 minutes of quarterly profit for Microsoft; it banked $17.4 billion in net income in just the final three months of 2022.)
=> ↺ MSI hit in cyberattack, warns against installing knock-off firmware
Indeed, the gang claims to have all the tools necessary to develop a potentially malicious BIOS and then digitally sign it in a way that it appears legitimate and can be installed on victims' PCs once they're lured into downloading it. Assuming the miscreants haven't poisoned MSI's downloads, you'll really want to avoid installing what turns out to be malware at the firmware level and instead stick to the official updates.
=> ↺ Bulb Reviews: Ecosmart Smart Bulb Wi-Fi Tunable and Full Color LED
The back has the usual warnings, and I’ll point to the upper right corner as a case of “Wait, really, now?” This is one of the many LED bulbs not rated for use in “totally enclosed fixtures,” or in “recessed fixtures.” What this means is that unless it’s a bare bulb in a lamp, it’s likely to overheat and fail long before rated lifespan - because most home light fixtures are either enclosed or recessed. I’m unclear as to if this includes “downward facing bulbs with a glass shroud, open at the bottom” - that’s an area of future research. The short of it is, it’s cheap, and it needs very good cooling to avoid early death. But, at least, you can use it in an upright table lamp! Does anyone still use those? My nice “table lamp” burns kerosene (it’s a rather beautiful Aladdin mantle type, and I really should review it soon).
=> ↺ IMPORTANT: Kodi Forum - Data Breach
In the last 24 hours we became aware of a dump of the Kodi user forum (MyBB) software being advertised for sale on internet forums. This post confirms that a breach has taken place.
MyBB admin logs show the account of a trusted but currently inactive member of the forum admin team was used to access the web-based MyBB admin console twice: on 16 February and again on 21 February. The account was used to create database backups which were then downloaded and deleted. It also downloaded existing nightly full-backups of the database. The account owner has confirmed they did not access the admin console to perform these actions.
=> gemini.tuxmachines.org This content has been proxied by September (ba2dc).Proxy Information
text/gemini;lang=en-GB