Latest News Articles
--- TLP:CLEAR ---
News
− Chinese hackers breached T-Mobile's routers to scope out network
Mobile says the Chinese Salt Typhoon" hackers who recently compromised its systems as part of a series of telecom breaches first hacked into some of its routers to explore ways to navigate laterally through the network.
https://www.t-mobile.com/news/un-carrier/update-cyberattacks-targeting-us-wireless-companies− Submarine cable resilience board announced on same day maybe-cut-by-China Baltic cable repaired
ITU thinks time is now for more talk about how to keep data moving beneath the waves On the same day that a submarine cable suspected of having been cut by a Chinese ship was repaired, two major telco bodies convened a submarine telecommunication cable resilience advisory board.
https://www.itu.int/en/mediacentre/Pages/PR-2024-11-29-advisory-body-submarine-cable-resilience.aspx− Two UK Hospitals Hit by Cyberattacks, One Postponed Procedures
Alder Hey Children’s Hospital and Wirral University Teaching Hospital have fallen victim to cyberattacks, including one involving ransomware.
https://www.securityweek.com/two-uk-hospitals-hit-by-cyberattacks-one-postponed-procedures/Vulnerabilities
− NachoVPN Tool Exploits Flaws in Popular VPN Clients for System Compromise
Cybersecurity researchers have disclosed a set of flaws impacting Palo Alto Networks and SonicWall virtual private network (VPN) clients that could be potentially exploited to gain remote code execution on Windows and macOS systems.
https://blog.amberwolf.com/blog/2024/november/introducing-nachovpn---one-vpn-server-to-pwn-them-all/− NCSC Advisory- Critical vulnerabilities Hewlett Packard Enterprise (HPE) HPE Insight Remote Support
Multiple security vulnerabilities have been identified in HPE Insight Remote Support. These vulnerabilities could remotely allow a directory traversal, disclosure of information, or code execution.
https://www.ncsc.gov.ie/pdfs/2412020143_Crit_Vuln_HPE_Insight_Remote_Support.pdf− NCSC Advisory Vulnerabilities exist in: Oracle Corporation: Oracle Agile PLM Framework
Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Agile PLM Framework accessible data.
https://www.ncsc.gov.ie/pdfs/2411270161_Vulns_in_Oracle_Agile_PLM.pdf--- TLP:CLEAR ---