The MITRE Corporation was a victim of a cyber attack in late December 2023. It exploited zero-day flaws in Ivanti Connect Secure and created rogue virtual machines (VMs) within the VMware environment. This maneuver enabled them to avoid detection while maintaining persistent access. The attackers also deployed a web shell to launch a Python-based tunneling tool. Effective countermeasures suggested include enabling secure boot and using certain scripts to identify potential threats.
The Light Collective amplifies its call for patient data rights
The Light Collective is planning to lead discussions on World Patient Safety Day (September 17) focusing on patient concerns about health data aggregation. The patient-led