Welcome to this week’s roundup of the top cybersecurity news. In this edition, we delve into the latest cyberattacks and security vulnerabilities that have made headlines around the globe. From the Dublin Airport data breach to the revelation of the most dangerous software weaknesses of 2023, we’ve got you covered. Let’s dive in.
Dublin Airport Staff’s Salary Data Breached
In a significant cybersecurity incident, the financial information of some Dublin Airport staff was compromised due to a cyberattack on the provider company Aon. The Dublin Airport Authority confirmed the breach, which also affected several other firms. The extent of the data breach and the potential impact on the affected staff members are yet to be fully determined.
MITRE Unveils Top 25 Most Dangerous Software Weaknesses of 2023
MITRE has released its annual list of the top 25 “most dangerous software weaknesses” for 2023. The list, based on an analysis of public vulnerability data, includes weaknesses that can lead to serious vulnerabilities in software, potentially allowing attackers to take control of systems, steal data, or disrupt applications. The top spot was taken by Out-of-bounds Write, followed by Cross-site Scripting and SQL Injection.
Over One Million NHS Records Leaked During University of Manchester Cyberattack
The University of Manchester fell victim to a cyberattack, resulting in the unauthorized access of over one million NHS patient records. The data, collected for research purposes, included NHS numbers and the first three letters of patients’ postcodes. The university is currently investigating the extent of the data breach and the potential impact on the affected individuals.
UCLA Among Victims of Worldwide Cyber Attack
UCLA confirmed that it was among the victims of a cyberattack orchestrated by the ransomware gang known as “CL0P”. The university is working with external cybersecurity experts and the FBI to investigate the incident and determine the extent of the data breach. The nature of the stolen data and the potential impact on the university community are yet to be fully determined.
Illinois Discloses Details of MOVEit Cyberattack
The state of Illinois has disclosed that nearly 400,000 individuals were affected by a recent cyberattack by ransomware hackers. The state is setting up a call center and providing credit-monitoring from Experian to those impacted. The attack, which took place on May 31, involved hackers exploiting a vulnerability in the widely used MOVEit file-transfer software. The state is currently notifying victims by mail and has stated that there is no indication that the compromised information has been used fraudulently.