21 Apr 2026
By Mary

InfoSec News Nuggets 04/21/2026

Actively exploited Apache ActiveMQ flaw impacts 6,400 servers Shadowserver says more than 6,400 internet-exposed Apache ActiveMQ servers are vulnerable to ongoing attacks exploiting CVE-2026-34197, a code injection flaw patched on March 30 in ActiveMQ Classic 6.2.3 and 5.19.4. Because ActiveMQ is widely used for asynchronous messaging between Java applications, this is a practical patch-now issue for teams with exposed or business-critical deployments. Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking Forescout disclosed 20…
Read More
24 Nov 2025
By Mary

InfoSec News Nuggets 11/24/2025

Another major airline hacked, customer data exposed Iberia is notifying customers after a supplier breach exposed names, email addresses, and loyalty card IDs, while a separate threat actor claims to be selling 77 GB of Iberia internal data, including technical aircraft and maintenance files. This is a live example of third party compromise plus possible deeper internal intrusion, so DFIR teams should watch for Iberia related phishing, loyalty account abuse, and any overlap with their…
Read More
17 Jun 2024
By Mary

InfoSec News Nuggets 6/17/2024

Ascension hacked after employee downloaded malicious file Ascension, one of the largest U.S. healthcare systems, revealed that a May 2024 ransomware attack was caused by an employee who downloaded a malicious file onto a company device. Ascension says this was likely an "honest mistake" as the employee thought they were downloading a legitimate file. The attack impacted the MyChart electronic health records system, phones, and systems used to order tests, procedures, and medications, prompting the…
Read More