Security News for the Week Ending April 10th, 2022
This week’s security news includes:
- ATMs and medical devices at risk due to Access:7 bugs
- NSA says OpenSSL vulnerability can ‘definitely be weaponized’
- Windows Autopatch coming this summer
- PHP package manager PEAR had critical flaw undiscovered for 15 years
- VMWare patches Spring4Shell RCE flaw in multiple products
- Senate confirms Maj. Gen. Maria Barrett as head of Army Cyber Command
- Vendors try to get in front of right to repair laws
- SEC breach disclosure rule: you have FOUR days
- CafePress settles with the feds over breaches
- Ransomware gang breached 52 US critical infrastructure organizations
- Square (AKA Block) confirms breach after employee stole 8 million customers records
- State Department announces Cyber Bureau
- We’re from the government and we’re here to let your information get hacked
- If you accept credit cards, get ready for new rules
- Security news bites for the week ending April 8th: hackers hack Russia’s largest state owned media corporation, Apple AirTags are useful for stalking, Russia’s great firewall has some holes in it, hotels are now prime targets for hackers and government sponsored hacks are not limited to Russia-Ukraine.