New HybridPetya ransomware bypasses Secure Boot
What happened: A new ransomware strain called HybridPetya can bypass the Secure Boot feature on computers.
What to do: Keep your security software updated and back up important files regularly.FBI warns of hackers stealing Salesforce data
What happened: Two hacker groups, UNC6040 and UNC6395, are targeting Salesforce accounts to steal data and demand ransom.
What to do: Review your Salesforce security settings and watch for unusual activity.Critical flaw found in DELMIA Apriso software
What happened: A serious security vulnerability in DELMIA Apriso manufacturing software is being actively exploited.
What to do: Apply the latest security patches from your software provider immediately.Windows Registry memory corruption exploited
What happened: Researchers demonstrated how attackers can exploit memory flaws in the Windows Registry to gain control.
What to do: Ensure your Windows system is fully updated with the latest security fixes.Chrome vulnerability escalates from browser to system level
What happened: A new exploit can move from Chrome’s renderer process to full control of the computer’s kernel.
What to do: Update Chrome and your operating system to the newest versions.Deep dive into CoreAudio fuzzing reveals sound system risks
What happened: Security experts found weaknesses in Apple’s CoreAudio system using fuzzing techniques.
What to do: Keep your Apple devices updated and be cautious with unknown audio files.NSO Group’s BLASTPASS iMessage exploit analyzed
What happened: Researchers uncovered how the BLASTPASS exploit targets iMessage to compromise devices.
What to do: Update iOS devices promptly and avoid clicking suspicious links in messages.
If You Only Do 3 Things Today
| Action (1 minute each) | Why it matters |
|---|---|
| Update all your software and devices | Fixes security flaws hackers try to exploit |
| Review Salesforce account activity | Detects and stops unauthorized access early |
| Back up important files regularly | Protects your data in case of ransomware attack |
For Teams (super quick)
- Prioritize patching critical vulnerabilities in DELMIA Apriso and Windows systems.
- Monitor Salesforce environments for unusual login patterns or data exports.
- Ensure endpoint protection tools are updated to detect HybridPetya ransomware.
- Review and tighten Secure Boot configurations on company devices.
- Communicate with users about avoiding suspicious links, especially in iMessage and email.
Photo by Lin Zhang on Unsplash