Unsecured Server Exposed Thousands of Fedex Customer Records

FedEx has exposed private information belonging to thousands of its customers after a legacy server was left open without a password. The discovery was made by security researchers at the Kromtech Security Center, which posted details of the exposure alongside ZDNet. The data, hosted on a password...

Cisco Vulnerability

This vulnerability affects Cisco ASA Software that is running on the following Cisco products:

VMware has released one Security Advisories to address CRITICAL vulnerabilities in multiple products

WHAT HAPPENED?   VMware has released one Security Advisories to address CRITICAL vulnerabilities in multiple products.     Advanced Users: For a complete description of the security enhancement and affected software refer to:  

Mozilla has released security updates to address 2 Critical, 2 High, and 1 Moderate vulnerability in Thunderbird

WHAT HAPPENED?   Mozilla has released security updates to address 2 Critical, 2 High, and 1 Moderate vulnerability in Thunderbird.    

Duo Two-factor Authentication Begins in December!! Get Duo Now

To increase security, UCSF requires everyone who accesses the UCSF network through VPN, or uses Outlook webmail, from a remote location, to use Duo two-factor authentication. Two-factor authentication verifies your identity on two separate devices (i.e. your computer and smartphone) through a 3rd...

Mimikatz and Eternalblue to Spread Monero Miner

Secureworks(R) Counter Threat Unit(TM) (CTU) researchers have identified a malware variant that leverages the Mimikatz and Eternalblue (MS17-010) exploits to spread without user interaction. The malware seeks to use the processing power of compromised systems to mine Monero cryptocurrency.

FBI Agent Warns of Cyber Threats Faced by Researchers

Universities are the birthplaces of valuable intellectual property. This makes them a target for foreign entities, cautioned FBI Special Agent Nick Shenkin in his October 26, 2017 talk entitled "Counterintelligence: Economic Espionage, Theft of Trade Secrets, and Cyber Intrusions."

Internet-Connected Printer Vulnerabilities Exploited by Criminal Actors

Over the past year, criminal actors exploited Internet-connected printers to manipulate print jobs and distribute violent threats or hate speech to US victims nationwide, according to multiple reports received by the FBI. The FBI received reports from US businesses in every sector concerning this...

Developing HIPAA Compliant Applications at UCSF

For those who develop HIPAA compliant applications, this is just a heads-up that the Bay Area Health Tech Innovators is holding a meeting on Developing HIPAA Compliant Applications at UCSF.    For more information, please see the attached flyer.