CommonSpirit Health has reported that an unauthorized third-party gained access to its infrastructure between September 16 and October 3, 2022. The breach exposed files containing protected data from hospitals and clinics owned by Virginia Mason Franciscan Health. The data potentially exposed includes names, addresses, phone numbers, dates of birth, and unique identification numbers. The breach is currently under review, and affected individuals are being informed. This incident follows a major ransomware attack on CommonSpirit Health in October that disrupted medical operations and affected Virginia Mason Franciscan Health hospitals.
400+ SAP NetWeaver Devices Vulnerable to 0-Day Attacks that Exploited in the Wild
Shadow Servers have identified 454 vulnerable SAP NetWeaver systems affected by a critical zero-day flaw, CVE-2025-31324, allowing unauthenticated file uploads and potential system compromise. Discovered
