Critical Vulnerabilities and Ransomware Target Public Sector on November 9
Critical Vulnerabilities and Ransomware Target Public Sector on November 9
On November 9, 2024, the cybersecurity landscape was marked by urgent vulnerabilities and attacks that underscore the pressing need for vigilance in both private and public sectors. A newly discovered zero-day vulnerability in the Opera browser allows attackers to bypass security measures and execute arbitrary code. Users are urged to update their browsers immediately due to active exploitation of this flaw Cybersecurity Newsletter. Simultaneously, MediaTek chipsets, affecting millions of smartphones globally, were found to have serious vulnerabilities that could allow unauthorized data access, prompting manufacturers to release necessary patches The Hacker News.
In a troubling development, the Housing Authority of the City of Los Angeles (HACLA) fell victim to a ransomware attack attributed to the Cactus ransomware group, who have claimed to exfiltrate sensitive data from the organization Recent Cyber Attacks. Furthermore, T-Mobile disclosed a cyberespionage incident linked to Chinese state-sponsored hackers targeting telecommunications infrastructures for intelligence purposes Cybersecurity Incident Round Up.
Also In Security Today
- Opera Browser Zero-Day: A critical zero-day vulnerability in Opera allows remote code execution. Users should update immediately due to active exploits. Cybersecurity Newsletter
- MediaTek Vulnerabilities: Security flaws in MediaTek chipsets could lead to unauthorized data access on millions of devices, with manufacturers issuing patches. The Hacker News
- HACLA Ransomware Attack: The Cactus ransomware group has attacked HACLA, claiming to have stolen significant data, highlighting risks to public sector organizations. Recent Cyber Attacks
- T-Mobile Espionage Incident: T-Mobile reports a cyberespionage attack linked to Chinese state-sponsored actors, indicating heightened risks for telecom companies. Cybersecurity Incident Round Up