Subj : Sophos Virus News
To   : All
From : Daryl Stout
Date : Wed Feb 01 2023 13:29:35

Here is the latest information from the Naked Security Blog from Sophos.
You can go to nakedsecurity.sophos.com to read these. You can also sign
up to have these delivered to your email during the week.

***

Password-stealing "vulnerability" reported in KeyPass - bug or feature?

Is it a vulnerability if someone with control over your account can mess 
with files that your account is allowed to access anyway?

***

GitHub code-signing certificates stolen (but will be revoked this week)

There was a breach, so the bad news isn't great, but the good news isn't 
too bad...

***

Serious Security: The Samba logon bug caused by outdated crypto

Enjoy our Serious Security deep dive into this real-world example of 
why cryptographic agility is important!

***

Hive ransomware servers shut down at last, says FBI

Unfortunately, you've probably already heard the cliche that 
"cybercrime abhors a vacuum"...

***
	
Dutch suspect locked up for alleged personal data megathefts

Undercover Austrian "controlled data buy" leads to Amsterdam arrest 
and ongoing investigation. Suspect is said to steal and sell all sorts
of data, including medical records.

***
--- SBBSecho 3.15-Win32
 * Origin: The Thunderbolt BBS - Little Rock, Arkansas (454:1/33)

.