Project Hyphae

Threats

the latest cybersecurity threat alerts

East Texas Hospital Network Can’t Receive Ambulances Because of Potential Cybersecurity Incident Article Link: https://www.cnn.com/2023/11/24/us/east-texas-hospital-cybersecurity/index.html Canadian Government Discloses Data Breach After

PJ&A Says Cyberattack Exposed Data of Nearly 9 Million Patients Article Link: https://www.bleepingcomputer.com/news/security/pj-and-a-says-cyberattack-exposed-data-of-nearly-9-million-patients/ Google Workspace Weaknesses Allow Plaintext Password Theft Article

McLaren Health Care says data breach impacted 2.2 million people Article Link: https://www.bleepingcomputer.com/news/security/mclaren-health-care-says-data-breach-impacted-22-million-people/ Microsoft extends Windows Server 2012 ESUs to October

On October 27, 2023, Apache announced CVE-2023-46604, a critical Remote Code Execution vulnerability that could allow an attacker to run arbitrary

American Airlines Pilot Union Hit by Ransomware Attack Article Link: https://www.bleepingcomputer.com/news/security/american-airlines-pilot-union-hit-by-ransomware-attack/ Cybersecurity Workforce Shortages: 67% Report People Deficits Article Link: https://www.helpnetsecurity.com/2023/11/02/cybersecurity-workforce-shortages-isc2/

A significant security breach has been identified in Atlassian’s Confluence Data Center and Server platforms, known as CVE-2023-22518, an improper authorization

Octo Tempest Group Threatens Physical Violence as Social Engineering Tactic Article Link: https://www.darkreading.com/threat-intelligence/octo-tempest-group-threatens-physical-violence-social-engineering-tactic Hackers Email Stolen Student Data to Parents of

Threat Actors Breached Okta Support System and Stole Customers’ Data Article Link: https://securityaffairs.com/152803/data-breach/okta-support-system-breached.html Kwik Trip Finally Confirms Cyberattack was Behind Ongoing

A recently patched Citrix NetScaler bug (CVE-2023-4966, CVS score 9.4) is under active attack, and has been for at least two months.

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.