DocuSign APIs Abused to Deliver Fake Invoices

In a recent cyberattack, malicious actors exploited DocuSign’s APIs to send out fake invoices to unsuspecting users. The invoices appeared legitimate, tricking recipients into engaging with phishing links. This highlights the need for enhanced API security and user awareness regarding email phishing schemes.
Read more on SecurityWeek


LastPass Warns of Fake Support Centers Targeting Customers

Password management platform LastPass has issued a warning to its users about fake support centers that aim to steal customer data. These fake centers impersonate official LastPass support, requesting login details under the pretense of providing help. LastPass urges customers to rely solely on official support channels and be vigilant about unsolicited calls and emails.
Read more on BleepingComputer


Cyberattack Causes Statewide Washington Courts Outage

A cyberattack recently took down court systems across Washington State, disrupting online court services and causing delays. This incident underlines the vulnerability of critical government infrastructure to cyber threats, which can affect state-wide services and lead to substantial delays. Authorities are working to restore services while investigating the source of the attack.
Read more on SecurityWeek


Georgia Hospital Struggles After Ransomware Attack

A ransomware attack on a hospital in Georgia compromised patient records, further highlighting the healthcare sector’s susceptibility to cyberattacks. The incident led to significant operational disruptions, and recovery efforts are still ongoing.
Read more on The Record


Microlise Cyberattack Takes Down UK Prisoner Tracking System

A recent cyberattack on logistics firm Microlise disrupted operations for several high-profile clients, including DHL, Nisa, and the UK’s prisoner tracking service. This has raised concerns about the cybersecurity of services tied to public safety. Authorities are working to bring the affected systems back online while investigating the source of the breach.
Read more on Cybernews


Year-Old Data Breach at Saint Xavier University Affects 210,000 Individuals

Saint Xavier University recently disclosed a data breach affecting 210,000 individuals. The breach, which occurred over a year ago, included sensitive personal data, and the delay in disclosure has raised questions about the handling of incident reporting. This highlights the importance of timely breach notification to help individuals protect their information.
Read more on SecurityWeek


RRCA Accounts Management Notifies Clients of Data Breach

RRCA Accounts Management has informed clients of a data breach in which personal information was compromised. Although details about the breach are limited, the incident points to ongoing risks in third-party data handling. Customers are advised to monitor their accounts for any suspicious activity.
Read more on JDSupra


Improving Email Deliverability: Understanding SPF, DKIM, and DMARC

A recent article emphasizes the importance of SPF, DKIM, and DMARC in improving email security and deliverability for organizations. Implementing these protocols helps verify sender identity and can prevent email spoofing and phishing. Proper email security configurations are essential for protecting both organizations and recipients from potential scams.
Read more on ChurchTechToday


Google Patches Two Android Vulnerabilities Exploited in Targeted Attacks

Google has released updates addressing two critical Android vulnerabilities that were actively exploited in targeted attacks. These vulnerabilities allowed attackers to bypass security protections and gain unauthorized access to sensitive information. Users are advised to install the latest patches to protect against potential threats.
Read more on SecurityWeek


HopeNet (HopeNetCISO.com) reviews a variety of security news sources so you do not have to! This list is curated specifically for churches, nonprofits, and other Organizations of Hope. The headlines and our added comments are meant to provide enough to get an overview of recent happenings, but links are also provided for readers that want to explore certain topics deeper.  If this was shared with you and you would like to receive a copy directly to your email, please subscribe at HopeNetCISO.com.  Also, check out the Services section of our site for ways we can help! Thanks for reading!