Subj : Sophos Virus News
To   : All
From : Daryl Stout
Date : Wed Feb 08 2023 21:55:18

Here is the latest information from the Naked Security Blog from Sophos.
You can go to nakedsecurity.sophos.com to read these. You can also sign
up to have these delivered to your email during the week.

***

OpenSSL fixes High Severity data-stealing bug - patch now!

7 memory mismanagements and a timing attack. We explain all the jargon
bug terminology in plain English...

***
	
VMWare user? Worried about "ESXi ransomware"? Check your patches now!
To borrow from HHGttG, please DON'T PANIC. But if you are two years
out of date with patches, please do ACT NOW!

***

Tracers in the Dark: The Global Hunt for the Crime Lords of Crypto

Hear renowned cybersecurity author Andy Greenberg's thoughtful commentary 
about the "war on crypto" as we talk to him about his new book...

***

Finnish psychotherapy extortion suspect arrested in France

Company transcribed ultra-personal conversations, didn't secure them. 
Criminal stole them, then extorted thousands of vulnerable patients.

***

OpenSSH fixes double-free memory bug that's pokable over the network

It's a bug fix for a bug fix. A memory leak was turned into a double-free 
that has now been turned into correct code...

***
--- SBBSecho 3.15-Win32
 * Origin: The Thunderbolt BBS - Little Rock, Arkansas (454:1/33)

.