Telstra fined $3m over Triple Zero outage – Telco/ISP
Telstra has been fined $3 million for a Triple Zero outage earlier this year that led to 127 calls not being transferred to emergency services.…
Month: December 2024
Windows 11 KB5048667 & KB5048685 cumulative updates released
Microsoft has released the Windows 11 KB5048667 and KB5048685 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues. Both KB5048667 and KB5048685 are mandatory cumulative updates…
US sanctions Chinese cybersecurity company for firewall compromise, ransomware attacks
The Department of the Treasury is sanctioning Chinese cybersecurity company Sichuan Silence, and one of its employees, Guan Tianfeng, for their roles in the April…
Optus lands CBA’s Jesse Arundell for its new AI division – Software – Telco/ISP
Optus has brought former Commonwealth Bank head of emerging tech Jesse Arundell into its new artificial intelligence unit. Holding the title of head of emerging…
Ivanti warns of maximum severity CSA auth bypass vulnerability
Today, Ivanti warned customers about a new maximum-severity authentication bypass vulnerability in its Cloud Services Appliance (CSA) solution. The security flaw (tracked as CVE-2024-11639 and…
Australia Post’s new POS beset by technical problems – Cloud – Software
Australia Post’s new point-of-sale platform has been beset by multiple technical troubles, including outages and missing transactions, since its launch last year. The cloud-based point-of-sale…
WPForms bug allows Stripe refunds on millions of WordPress sites
A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue arbitrary Stripe refunds or cancel subscriptions.…
US sanctions Chinese firm over potentially deadly ransomware attack – Security
The United States sanctioned a Chinese cyber security company over an ambitious cyberattack that US Treasury officials say could have killed people. The Treasury said…
Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws
Tag CVE ID CVE Title Severity GitHub CVE-2024-49063 Microsoft/Muzic Remote Code Execution Vulnerability Important Microsoft Defender for Endpoint CVE-2024-49057 Microsoft Defender for Endpoint on Android…
Windows Common Log File System Zero-day (CVE-2024-49138) Exploited in the Wild
A new high-severity security vulnerability, CVE-2024-49138, has been identified as a zero-day in the Windows Common Log File System (CLFS) Driver. Microsoft confirmed that this…
Black Basta Gang Uses MS Teams, Email Bombing to Spread Malware
SUMMARY Black Basta Campaign Resurgence: Rapid7 researchers report a sophisticated social engineering campaign by the Black Basta ransomware group, refining tactics and targeting organizations globally.…
Windows 10 KB5048652 update fixes new motherboard activation bug
Microsoft has released the KB5048652 cumulative update for Windows 10 22H2, which contains six fixes, including a fix that prevented Windows 10 from activating when…