CISA Orders Federal Agencies to Patch Actively Exploited Windows Bug The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch their systems against an actively exploited Windows vulnerability that enables attackers to gain SYSTEM privileges. Per a binding operational directive (BOD 22-01) issued in November and today’s announcement, all Federal Civilian Executive Branch
US Indicts Multiple Call Centers for IRS, Social Security Scams The U.S. Department of Justice has announced the indictment of several India-based call centers and their directors for targeting Americans with Social Security, IRS, and loan phone call scams. The call centers allegedly placed scam robocalls that were rerouted through an already-indicted VoIP service provider
HHS: Conti Ransomware Encrypted 80% of Ireland’s HSE IT Systems A threat brief published by the US Department of Health and Human Services (HHS) on Thursday paints a grim picture of how Ireland’s health service, the HSE, was overwhelmed and had 80% of its systems encrypted during last year’s Conti ransomware attack. This led to severe disruptions
Argo CD Vulnerability Leaks Sensitive Info from Kubernetes Apps A vulnerability in Argo CD, used by thousands of orgs for deploying applications to Kubernetes, can be leveraged in attacks to disclose sensitive information such as passwords and API keys. Tracked as CVE-2022-24348, the path-traversal flaw was discovered by the security research team at Apiiro and
Established in 2018, Privacy Ninja is a Singapore-based IT security company specialising in data protection and cybersecurity solutions for businesses. We offer services like vulnerability assessments, penetration testing, and outsourced Data Protection Officer support, helping organisations comply with regulations and safeguard their data.
Singapore
7 Temasek Boulevard,
#12-07, Suntec Tower One,
Singapore 038987
