60 Credit Unions affected by ransomware in likely supply chain attack

https://www.theregister.com/2023/12/02/ransomware_infection_credit_unions/

Related Articles

https://www.cnn.com/2023/12/01/politics/ransomware-attack-credit-unions/index.html

https://abc7.com/ransomware-attack-in-us-credit-union-outages-trellance-cyberattack-ncua/14133374/

https://www.msn.com/en-us/money/other/60-us-credit-unions-offline-after-ransomware-infects-backend-cloud-outfit/ar-AA1kRVhA

It’s still not just you… Outlook.com suffering outages again today. Microsoft says the issues are “technical”. Hacktivist group takes claim.

https://www.bleepingcomputer.com/news/microsoft/outlookcom-hit-by-outages-as-hacktivists-claim-ddos-attacks/

Outlook.com… It’s not just you. BleepingComputer is reporting that Outlook has been down twice today. And users are now not able to send messages

https://www.bleepingcomputer.com/news/microsoft/microsofts-outlookcom-is-down-again-on-mobile-web/

FYI, I sent a test message from outlook.com and it arrived in the destination.

Pharmaceutical supply chain affected after cyberattack on a leading Spanish pharmaceutical company. PII not impacted.

https://www.scmagazine.com/news/incident-response/cyberattack-hits-spanish-pharmaceutical-company-alliance-healthcare

https://cybernews.com/news/cyberattack-alliance-healthcare/

The City of Oakland, California, suffers a ransomware attack and declares State of Emergency. 911/Emergency services unaffected.

https://www.secureworld.io/industry-news/oakland-state-of-emergency-ransomware

CISA released a script to recover VMWare ESXi servers impacted by ESXiArgs ransomware

https://www.bleepingcomputer.com/news/security/cisa-releases-recovery-script-for-esxiargs-ransomware-victims/

The recover script
https://github.com/cisagov/ESXiArgs-Recover/blob/main/recover.sh

Vulnerabilities discovered in electrical vehicle chargers can cause DoS or ability change settings (i.e., charge for free)

Vulnerabilities could let hackers remotely shut down EV chargers, steal electricity

Vulnerability in F5 BIG-IP can lead to DoS and code execution by an authenticated user. No patch available yet

A High-severity bug in F5 BIG-IP can lead to code execution and DoS

SSL-VPN zero-day vulnerability

Anyone else seeing other impacted products? What else is vulnerable to ” heap-based buffer overflow vulnerability [CWE-122]”

Large Canadian telcom provider Rogers experiencing massive outage

https://www.bleepingcomputer.com/news/technology/massive-rogers-outage-disrupts-mobile-service-payments-in-canada/