Long weekend incoming! But first, let’s recap some of this week’s cybersecurity news:
WordPress sites using the premium theme, “Motors” are at risk after the discovery of a critical vulnerability.
The theme caused improper validation of users before updating passwords, which can allow threat actors to change the passwords of site users, including administrators, opening up the potential for a full site takeover.
An update to fix this issue was released on May 14th, and users with WordPress sites utilizing this theme have been advised to update as soon as possible.
(–Source: TechRadar Pro on MSN
Read More: Vulnerability that allows full admin takeover found in premium WordPress theme )
As British retailer Marks & Spencer still struggles to recover from a recent hack, another large cyberattack in the UK is making headlines after hackers stole “a significant amount of personal data” from the Legal Aid Agency.
The compromised information belongs to individuals in England and Wales who have received legal aid or submitted an application for aid over the last 15 years. Stolen data may include contact information and addresses, birthdates, ID numbers, criminal history, as well as employment and financial information.
(–Source: Bloomberg on MSN
Read More: UK Legal Aid Hack Includes ‘Significant Amount’ of Personal Data )
Danish food giant and international dairy producer, Arla Foods, was the target of a cyberattack that halted production at its Upahl, Germany location after suspicious network activity was detected.
Though not much information has been released about the attack, the company is actively working to restore full operations and expects to see a return to normal production soon.
(–Source: BleepingComputer
Read More: Arla Foods confirms cyberattack disrupts production, causes delays )
Western Ohio healthcare provider, Kettering Health, was targeted in a recent cyberattack that caused a systemwide outage and forced all of the company’s hospitals and facilities to cancel appointments. This attack is believed to be the work of a member of a cybercrime group known for targeting healthcare facilities via the use of ransomware.
Patients are having difficulty reaching the organization’s call center due to the outage, and have also reported receiving scam calls requesting credit card payments. This incident is currently being investigated.
(–Source: Infosecurity Magazine
Read More: Kettering Health Cyber-Attack Disrupts Services – Infosecurity Magazine )
Wisconsin-based mobile carrier, Cellcom, has been experiencing an outage due to a “cyber incident” that seems to be ongoing as the company said the attackers “are working to do damage just as hard as we are working to prevent it.”
The outage, which began on May 14th and is preventing Cellcom users from texting and making/receiving phone calls, has led the carrier to work with “outside security experts” and the FBI to resolve the issue. Thankfully, it doesn’t seem like any customer information has been stolen in this attack.
(–Source: PCMag on MSN
Read More: Cyberattack Takes Down Wisconsin-Based Mobile Carrier )
