Largest U.S. Addiction Treatment Provider Notifies Patients of Data Breach
The largest addiction treatment provider in the U.S. has disclosed a data breach affecting patients’ sensitive information. The breach underscores the persistent targeting of healthcare providers by cybercriminals and highlights the need for stronger security measures in the sector.
Read more on BleepingComputer
Cyberattackers Use InfoStealers in YouTube Comments and Google Search
Threat actors are increasingly leveraging YouTube comments and Google search results to spread InfoStealer malware. These campaigns often trick users into downloading malicious software disguised as legitimate tools or updates.
Read more on Dark Reading
Hacking Group Leaks Configuration Files of 15,000 Routers
A hacking group has leaked configuration files from over 15,000 routers, exposing sensitive details that could be exploited in future attacks. The incident emphasizes the importance of securing network devices with updated firmware and strong credentials.
Read more on InfoSecurity Magazine
FTC Orders GoDaddy to Address Inadequate Security Practices
The Federal Trade Commission (FTC) has ordered GoDaddy to improve its cybersecurity practices following multiple breaches. The company must implement measures to protect customer data and prevent further security lapses.
Read more on Dark Reading
CISA Orders Agencies to Patch Exploited BeyondTrust Bug
The Cybersecurity and Infrastructure Security Agency (CISA) has directed federal agencies to patch a critical BeyondTrust vulnerability being actively exploited in attacks. The flaw could allow unauthorized access to sensitive systems.
Read more on BleepingComputer
SonicWall Urges Admins to Patch Exploitable SSLVPN Bug Immediately
SonicWall has issued an urgent advisory for administrators to patch a critical SSLVPN vulnerability that could enable remote exploitation. Organizations using SonicWall appliances should update immediately to secure their networks.
Read more on BleepingComputer
Juniper Networks Fixes High-Severity Vulnerabilities in Junos OS
Juniper Networks has patched several high-severity vulnerabilities in its Junos OS that could allow attackers to compromise affected systems. Users are strongly advised to apply these updates without delay to mitigate the risks.
Read more on SecurityWeek
Microsoft Releases Record Security Update for January 2025
Microsoft’s January 2025 Patch Tuesday includes a record number of fixes addressing critical vulnerabilities across its product suite. Administrators are urged to deploy these patches promptly to secure their systems against potential exploits.
Read more on Dark Reading
Google Chrome 132 Patches 16 Vulnerabilities
The latest update to Google Chrome, version 132, includes fixes for 16 vulnerabilities, including high-severity flaws. Users are encouraged to update their browsers immediately to protect against potential exploits.
Read more on SecurityWeek
Fortinet Confirms Exploitation of New Zero-Day Vulnerability
Fortinet has confirmed active exploitation of a new zero-day vulnerability in its products. The company is investigating the issue and working on a patch. Users are advised to monitor for updates and implement temporary mitigations.
Read more on SecurityWeek
HopeNet reviews a variety of security news sources so you do not have to! This list is curated specifically for churches, nonprofits, and other Organizations of Hope. The headlines and our added comments are meant to provide enough to get an overview of recent happenings, but links are also provided for readers that want to explore certain topics deeper.
If this was shared with you and you would like to receive a copy directly to your email, please sign up for this FREE newsletter at HopeNetCISO.com. Also, check out the Services section of our site for ways we can help! Thanks for reading!