{"id":43152,"date":"2023-12-11T07:47:35","date_gmt":"2023-12-11T12:47:35","guid":{"rendered":"https:\/\/www.itworldcanada.com?p=554957"},"modified":"2023-12-11T07:47:35","modified_gmt":"2023-12-11T12:47:35","slug":"cyber-security-today-dec-11-2023-irish-water-treatment-plant-shut-by-cyber-attack-wordpress-issues-a-security-patch-and-more","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/cyber-security-today-dec-11-2023-irish-water-treatment-plant-shut-by-cyber-attack-wordpress-issues-a-security-patch-and-more\/","title":{"rendered":"Cyber Security Today, Dec. 11, 2023 \u2013 Irish water treatment plant shut by cyber attack, WordPress issues a security patch, and more"},"content":{"rendered":"<p>An Irish water treatment plant is temporarily shut by cyber attack, WordPress issues a security patch, and more.<\/p>\n<p>Welcome to Cyber Security Today. It&#8217;s Monday, December 11th, 2023. I&#8217;m Howard Solomon, contributing reporter on cybersecurity for ITWorldCanada.com and TechNewsday.com in the U.S.<\/p>\n<p><iframe style=\"border: none;\" title=\"Libsyn Player\" src=\"https:\/\/html5-player.libsyn.com\/embed\/episode\/id\/29011138\/height\/90\/theme\/custom\/thumbnail\/yes\/direction\/forward\/render-playlist\/no\/custom-color\/000000\/\" width=\"100%\" height=\"90\" scrolling=\"no\" allowfullscreen=\"allowfullscreen\"><\/iframe><\/p>\n<table style=\"width: 100%;\">\n<tbody>\n<tr>\n<td><a href=\"https:\/\/www.amazon.com\/ITWC-Cyber-Security-Today\/dp\/B07BRNG89P\/ref=sr_1_1?s=digital-skills&amp;ie=UTF8&amp;qid=1522688435\"  rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"aligncenter wp-image-396718 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-alexa-200.png\" alt=\"Cyb er Security Today on Amazon Alexa\" width=\"200\" height=\"74\" border=\"none\" \/><\/a><\/td>\n<td><a href=\"https:\/\/www.google.com\/podcasts?feed=aHR0cDovL2N5YmVyc2VjdXJpdHl0b2RheS5saWJzeW4uY29tL3Jzcw%3D%3D\"  rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"thumbnail aligncenter wp-image-408712 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2018\/09\/sub-gp-200.png\" alt=\"Cyber Security Today on Google Podcasts\" width=\"200\" height=\"74\" \/><\/a><\/td>\n<td><a href=\"https:\/\/itunes.apple.com\/ca\/podcast\/cyber-security-today\/id1363182054\"  rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" loading=\"lazy\" class=\"aligncenter wp-image-396720 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-itunes-200.png\" alt=\"Subscribe to Cyber Security Today on Apple Podcasts\" width=\"200\" height=\"74\" border=\"none\" \/><\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>&nbsp;<\/p>\n<p><strong>Another water treatment plant<\/strong> has been hacked over its use of Israel-made equipment. It happened last week <a href=\"https:\/\/westernpeople.ie\/news\/hackers-hit-erris-water-in-stance-over-israel_arid-4982.html\"  rel=\"noopener\">in an east coast area of Ireland called Erris<\/a>. About 180 residences were without water for two days when the hackers got past the systems&#8217; firewall and shut a small utility. <a href=\"https:\/\/www.itworldcanada.com\/article\/cyber-security-today-dec-4-2023-a-warning-to-water-treatment-utilities-a-boot-vulnerability-could-affect-millions-of-pcs-and-more\/554457\"  rel=\"noopener\">Last week I reported<\/a> that a hacking group believed to be from Iran called CyberAv3ngers is going after utilities using equipment from Israeli companies.<\/p>\n<p><strong>December is the second anniversary<\/strong> of the revelation of a serious vulnerability in the Apache Log4j2 open-source library used in many applications. So how many applications have been patched since then? Not enough,<a href=\"https:\/\/www.veracode.com\/blog\/research\/state-log4j-vulnerabilities-how-much-did-log4shell-change\"  rel=\"noopener\"> according to researchers at Veracode<\/a>. They estimate 38 per cent of current applications are still vulnerable to attacks. Many of them are using a version of Log4j2 that stopped getting support in August, 2015 and can&#8217;t be patched. Do you know what&#8217;s in your organization&#8217;s software?<\/p>\n<p><strong>Here&#8217;s some healthcare-related cyber news:<\/strong><\/p>\n<p>Louisiana-based Lafource Medical Group <a href=\"https:\/\/www.hhs.gov\/hipaa\/for-professionals\/compliance-enforcement\/agreements\/lafourche-medical-group\/index.html\"  rel=\"noopener\">has agreed to pay US$480,000<\/a> to the U.S. Department of Health and Human Services after one of the owners fell for a phishing email in 2021. That exposed some patient health data. An investigation showed that before the incident the company never conducted a security rule risk analysis or had procedures to regularly review records of IT system activity. In addition to the financial settlement the medical group also agreed to implement security measures to reduce the risks to electronic patient records as required by federal health law.<\/p>\n<p>Norton Healthcare, which runs eight hospitals in Kentucky and Indiana, i<a href=\"https:\/\/apps.web.maine.gov\/online\/aeviewer\/ME\/40\/0d29d7d3-48c2-4879-b6c7-32360396bd04.shtml\"  rel=\"noopener\">s notifying 2.5 million patients<\/a>, as well as current and former employees, that their personal data might have been copied in a ransomware attack in May. The attacker got into network storage servers.<\/p>\n<p>By the way, last week the Health and Human Services Department <a href=\"https:\/\/aspr.hhs.gov\/cyber\/Documents\/Health-Care-Sector-Cybersecurity-Dec2023-508.pdf\"  rel=\"noopener\">released a proposed plan to tighten cybersecurity requirements<\/a> for American hospitals. As part of the plan the government will publish cybersecurity performance goals that hospitals ought to aim for, as well as new cybersecurity requirements they have to meet. The department is seeking comment before finalizing the plan.<\/p>\n<p><strong>New U.S. rules start a week today<\/strong> obliging publicly traded companies to publicly disclose material cyber incidents to the Securities and Exchange Commission within four business days. <a href=\"https:\/\/therecord.media\/sec-cyber-incident-reporting-rules-fbi-delay-guidance\"  rel=\"noopener\">Companies can ask for a delay<\/a> for national security or public safety reasons. Small companies will have an extra 180 days to comply.<\/p>\n<p><strong>Americold Logistics,<\/strong> a cold storage company based in Atlanta, <a href=\"https:\/\/apps.web.maine.gov\/online\/aeviewer\/ME\/40\/80071f08-cdaa-4ca5-8efb-a2bf28c33fe5.shtml\"  rel=\"noopener\">is notifying just over 129,000 people<\/a> of a data breach. It says got into its IT system in April. Data stolen may have included names, addresses, Social Security numbers, Drivers licence numbers and employment-related health insurance and medical information.<\/p>\n<p><strong>U.S. hotel chain Red Roof Inns<\/strong> <a href=\"https:\/\/apps.web.maine.gov\/online\/aeviewer\/ME\/40\/8a9ff5c2-9ff4-4f8e-bbdf-987d931364c5.shtml\"  rel=\"noopener\">is notifying over 27,000 people<\/a> their personal information may have been stolen in a September ransomware attack. The data may have included credit or debit card numbers and their related security, access, PIN codes or passwords.<\/p>\n<p><strong>Among the latest American firms<\/strong> reporting data thefts in the hacks of MOVEit file transfer applications is Independent Living Systems. It which provides managed long-term services and support to people covered by certain health plans. <a href=\"https:\/\/apps.web.maine.gov\/online\/aeviewer\/ME\/40\/059d9639-4ca1-4231-a7fc-9741f5d072e9.shtml\"  rel=\"noopener\">It is notifying just under 20,000 people<\/a> their personal information may have been copied when the company&#8217;s MOVEit Transfer application was hacked.<\/p>\n<p><a href=\"https:\/\/www.ourcommons.ca\/documentviewer\/en\/44-1\/ETHI\/meeting-97\/notice\"  rel=\"noopener\"><strong>Officials from<\/strong> Google, Meta and X<\/a> will testify later today and on Wednesday at Canadian <a href=\"https:\/\/www.ourcommons.ca\/documentviewer\/en\/44-1\/ETHI\/meeting-97\/notice\"  rel=\"noopener\">parliamentary hearings into social media platforms.<\/a> The committee is particularly looking into personal information data collection by platforms as well as the abuse of platforms by foreign governments.<\/p>\n<p><strong>Parliamentary hearings<\/strong> on Canada&#8217;s proposed federal privacy and artificial intelligence legislation <a href=\"https:\/\/www.ourcommons.ca\/documentviewer\/en\/44-1\/INDU\/meeting-104\/notice\"  rel=\"noopener\">continue on Tuesday<\/a>. Privacy commissioners from Alberta, British Columbia and Quebec are scheduled to testify.<\/p>\n<p><strong>Here&#8217;s some patching news:<\/strong><\/p>\n<p><strong>A new security update<\/strong> from WordPress <a href=\"https:\/\/wordpress.org\/documentation\/wordpress-version\/version-6-4-2\/\"  rel=\"noopener\">is now available<\/a> that fixes several problems including a big vulnerability. Threat actors could leverage it through some plugins, so install this update fast. You need to be running version 6.4.2.<\/p>\n<p><strong>Twenty-one new serious vulnerabilities<\/strong> have been found and need patching in Sierra Wireless Airlink cellular routers. That&#8217;s<a href=\"https:\/\/www.forescout.com\/blog\/sierra21-supply-chain-vulnerabilities-iot-ot-routers\/\"  rel=\"noopener\"> according to researchers at Forescout<\/a>. Of the routers Forescout sees that are exposed to the internet, 90 per cent haven&#8217;t had patches installed that were released in 2019. And of those that expose a specific management interface, 90 per cent are end of life and can&#8217;t be patched. In addition to installing the latest patches, the default SSL certificates for Sierra Wireless routers have to be changed. This is an inventory control problem as well as a technology problem. Why? Because hardware and software can&#8217;t be patched if administrators don&#8217;t know about them. And they have to learn how devices like routers can be patched.<\/p>\n<p><strong>Finally,<\/strong> lots of companies offer utilities through app stores to help you do things better. But some of those apps may lead to the downloading of malware. Researchers at Spin.AI say this is especially important during this holiday period when people may be tempted to download shopping, news, travel and chat browser extensions that aren&#8217;t from reputable developers. Be suspicious of apps that aren&#8217;t regularly updated or ask for high levels of permissions to access your contact list and photos.<\/p>\n<p>Follow Cyber Security Today on Apple Podcasts, Google Podcasts or add us to your Flash Briefing on your smart speaker. Thanks for listening. I\u2019m Howard Solomon<\/p>\n<p>The post <a href=\"https:\/\/www.itworldcanada.com\/article\/cyber-security-today-dec-11-2023-irish-water-treatment-plant-shut-by-cyber-attack-wordpress-issues-a-security-patch-and-more\/554957\">Cyber Security Today, Dec. 11, 2023 \u2013 Irish water treatment plant shut by cyber attack, WordPress issues a security patch, and more<\/a> first appeared on <a href=\"https:\/\/www.itworldcanada.com\/\">IT World Canada<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This episode reports on a US hospital chain notifying 2.5 million patients and employees about data stolen in a ransomware attack<\/p>\n","protected":false},"author":17,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[360,16],"tags":[389],"class_list":["post-43152","post","type-post","status-publish","format-standard","hentry","category-podcasts","category-security","tag-cyber-security-today"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/43152","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=43152"}],"version-history":[{"count":1,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/43152\/revisions"}],"predecessor-version":[{"id":43154,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/43152\/revisions\/43154"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=43152"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=43152"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=43152"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}