AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 08/14/2023

Microsoft to freeze license extensions for Russian companies

Microsoft will stop renewing licenses for its products to Russian companies starting in October following sanctions imposed against Russia due to the war in Ukraine. The U.S. software giant said in a letter sent to Russian businesses on Thursday that it will no longer process payments via wire transfer to a local bank account for its services in Russia. Microsoft customers now have two months to find an alternative vendor. “Please take the necessary steps to secure your data before the expiration date of your current subscription,” said the company’s letter. Microsoft suspended the sale of its products and services in Russia in March of last year and said it would “slowly reduce its presence in the country until it’s gone completely.”


Hackers Leak PII Data and Photos of Brazilian Plastic Surgery Patients

A group of hackers operating under the alias Thesnake02 have leaked a trove of sensitive data belonging to the Roberto Polizzi Plastic Surgery Clinic based in Belo Horizonte, Brazil. The breach, which occurred on July 26th, 2023, has resulted in the leak of approximately 1.25 GB of highly sensitive and private data, including surgery-related images, financial documents, and personal information of patients. The clinic, managed by Dr. Roberto Polizzi, has become the latest victim of a growing trend of cyberattacks targeting healthcare and medical institutions. The leaked data, initially made public on the latest version of Breach Forums, has been closely examined by Hackread.com.


US Cyber Command boss says China’s spooky cyber skills still behind

The boss of US Cyber Command has opined that China’s cyber and surveillance capabilities are not ahead of, or even comparable to, to those of the United States. “There is a scope-scale sophistication that we ascribe to what China is doing today. Are they getting better? Yes,” the commander of US Cyber Command, general Paul Nakasone, told a Thursday event at the Center for Strategic and International Studies in Washington. Nakasone referred to China as a “pacing challenge” for the US.


An Apple Malware-Flagging Tool Is ‘Trivially’ Easy to Bypass

ONE OF YOUR Mac’s built-in malware detection tools may not be working quite as well as you think. At the Defcon hacker conference in Las Vegas, longtime Mac security researcher Patrick Wardle presented findings today about vulnerabilities in Apple’s macOS Background Task Management mechanism, which could be exploited to bypass and, therefore, defeat the company’s recently added monitoring tool.


How the FBI goes after DDoS cyberattackers

In 2016, hackers using a network of compromised internet-connected devices — vulnerable security cameras and routers — knocked some of the then biggest websites on the internet offline for several hours. Twitter, Reddit, GitHub and Spotify all went down intermittently that day, victims of what was at the time one of the largest distributed denial-of-service attacks in history.


How to remove a Rapid Security Response update from your iPhone or Mac

Apple’s Rapid Security Responses can help push out software fixes more quickly than the traditional operating system (OS) update process. But they can occasionally cause entirely new problems, and you may wish to undo the damage by removing the update. In this article, we explain how to remove an Apple Rapid Security Response update that may be causing problems.

Related Posts