Cynch Security
We exist to help small businesses prepare for and respond to cyber security risks.
01/08/2024
After a massive week, reviewing over 190 security alerts, here are the key updates you may have missed. Must-reads include Apple’s recent patches, insights on Google Cloud and ServiceNow vulnerabilities, and the latest on global cyber threats 💪
🚨 Apple addresses multiple security vulnerabilities in macOS. Specific issues patched include code ex*****on, data access, and denial-of-service risks. https://buff.ly/3YtBso6
🚨 Security patches for iPhone XS and later, and various iPad models were also released. https://buff.ly/4caUKl4
⚠️ Hackers leaked documents from Leidos, affecting data from internal investigations. Leidos says no sensitive customer data was impacted. https://buff.ly/4cSMFTz
⚠️ Tenable disclosed a vulnerability in Google Cloud's Cloud Functions, allowing unauthorised access and data manipulation. Google updated defaults, but existing instances remain at risk. https://buff.ly/3zZ74I0
⚠️ SonicWall's 2024 Mid-Year Threat Report reveals a surge in global cyberattacks, with SMBs most at risk. https://buff.ly/3WO7zO6
⚠️ Cohesity study reveals many Aussie firms overestimate cyber resilience, with 60% hit by ransomware recently and 81% willing to pay ransoms. Only 5% can recover data within a day, stressing need for better strategies. https://buff.ly/3YtasVN
⚠️ CrowdStrike sued for allegedly hiding inadequate software testing causing a global outage; shares plummeted 32%, wiping out $25bn in market value. Delta Air Lines to seek damages. https://buff.ly/3YsbroY
⚠️ Over a million domains are vulnerable to takeover due to DNS authentication weaknesses at major hosting providers. https://buff.ly/4dpuLYs
💪 Privacy concerns have been raised around OpenAI's new GPT-4o due to extensive data collection. https://buff.ly/3LJTbA7
💪 Tony Burke is Australia's new cyber security minister, while Clare O'Neil moves to housing. ASIO shifts to the Attorney-General's department. MP Andrew Charlton gets a special cyber security advisory role. https://buff.ly/4frqDJ8
Gov revamps cyber security leadership in ministerial shake-up Creates special advisory role on "digital resilience".
25/07/2024
It has been a challenging week in the IT and cybersecurity field, with a lot of news about Crowdstrike and over 190 alerts to deal with. Stay updated on Google Chrome, IT disruptions, data breaches, email scams, and security solutions.
🚨 Google released an update for their Chrome that fixes a couple more serious security issues. While we've all learnt an important lesson about updating things too quickly, don't leave things unresolved for too long. https://buff.ly/3YjcfN8
⚠️ CrowdStrike's Falcon sensor caused global IT outages for Windows, hitting ANZ hardest. Fix deployed. Mac and Linux unaffected. https://buff.ly/3WgnW4p
⚠️ MediSecure's April ransomware attack compromised the personal and health data of 12.9M Australians. The stolen 6.5TB of data was restored, but the company struggles to identify affected individuals. https://buff.ly/3zMuLDl
⚠️ Minister Clare O'Neil urges caution as phishing scams take advantage of CrowdStrike IT outage. Scammers pose as CrowdStrike and Microsoft, requesting bank details and payments. Stay alert! https://buff.ly/3y1MOVz
⚠️ Daolpu malware disguised as a Microsoft recovery manual installs via phishing emails, stealing browser data from Chrome, Edge and Firefox. https://buff.ly/3ylb1WK
⚠️ Hackers leaked documents from Leidos Holdings via a breach in the Diligent system, affecting data from internal investigations. Leidos says no sensitive customer data was impacted. https://buff.ly/4cSMFTz
💪 Australian police seized 29 SIM boxes and thousands of SIM cards in raids to combat smishing attacks, with millions of fraudulent messages sent and six arrests made in NSW and Victoria. https://buff.ly/4bWrbUw
💪 Google has scrapped plans to phase out third-party cookies in Chrome, opting for a user-choice prompt, reflecting Privacy Sandbox's complex journey and industry challenges. https://buff.ly/3YgcKY6
💪 Secure Code Warrior launches SCW Trust Agent to evaluate developer security skills for each code commit, enhancing the security of Git-based repositories like GitHub, GitLab, and Bitbucket. 🎯 https://buff.ly/4cUvuRl
Widespread global IT outages attributed to CrowdStrike Causes Windows machines to display blue screen of death.
It appears that widely used software from Crowdstrike is causing major issues in businesses across the globe at the moment. It's likely this will take some time to resolve fully.
It's best to assume that most services you use are going to be rebooted in some manner in the coming hours. Take care with any critical work if you're still operating and consider waiting until things settle down.
Click here to claim your Sponsored Listing.
Category
Contact the business
Website
Address
121 King Street
Melbourne, VIC
3000