Skip to main content

MOVEit and 3 VPN hacked!

ARCHANGEL from T SYDECO 

MOVEit

At the end of May 2023, MOVEit, a data transfer program, fell victim to a Ransomware attack ONE DAY after vulnerability in the program was made public. Reuters announced the attack on 1 June 2023, and on 7 June the hackers made their terms known.

The personal data of a large number of users, including over 100,000 employees of British Airways and BOOTS, to name but these two companies, could have been compromised.

VPN

- A database containing more than 360 million SuperVPN user records has been found publicly accessible on the web. Confidential information such as e-mail addresses and geolocation data are thus made public.

GeckoVPN and ChatVPN: 21 million users' details, including payment details, circulate on dark web forums.

These incidents should draw our attention both to the security of the file transfer systems on the market and to the dangers of vulnerabilities being disclosed.

When you use the services of a third party, you can never be sure of the level of security surrounding the service on offer. The same applies to the Cloud, VPN and all the applications and programs available on the market but whose server is located on a third party's premises.

The best FILE TRANSFER SYSTEMS and VPNs are those whose server is on your premises and which you have duly protected. This is the case with SydeCloud©, PT SYDECO's file transfer system which is protected by ARCHANGEL© 2.0, Firewall of Next Generation and whose data transfer is carried out by VPN whose server is integrated into ARCHANGEL© 2.0 and therefore duly protected. This is PT SYDECO's Integrated Protection System which includes ARCHANGEL© NGFW, VPN and SydeCloud© servers in a single box.

We might also ask ourselves whether the disclosure of vulnerabilities is not a call to hacking, especially as the creators of the programs do not immediately repair the vulnerabilities and, in the majority of cases, users do not update their systems.

Wouldn't it be better for these vulnerability alerts to be made known only to the program creators and not in the public arena?

#File #transfer #VPN #Ransomware #cybersecurity #security #sydeco

Comments

Popular posts from this blog

 Hospital Security in Question In a recent article titled "Cyberattacks: Public and Private Hospitals, Is the Worst Yet to Come?", Jean-Michel Tavernier1 provides a detailed analysis of why the medical sector is a prime target for hackers. He highlights the vulnerabilities that allow hackers to access sensitive data such as medical records, insurance information, and payment details. The compromise of this data can have severe consequences for individuals' privacy, financial security, and even personal safety, not to mention the financial damage to institutions and the risks to the quality of care provided to patients. System Vulnerabilities Tavernier points to the "excessive interdependence of the entire healthcare chain." Hospitals collaborate with a multitude of interconnected providers and partners, creating numerous opportunities for attackers. He suggests managing the attack surface (ASM), which means controlling and securing all entry points where unautho...
                                                                     ERRARE HUMANUM EST   The Inescapable Nature of Human Error and Its Implications in Cybersecurity To err is human; one could even say it is a defining characteristic of humanity. Who has never made a mistake, whether out of distraction, ignorance, or because it was provoked? No one is immune to making mistakes, and most of the time, they are forgivable, even if their consequences can be very damaging. However, the fundamental, unforgivable error is doing nothing to avoid situations that lead to mistakes. Thus, to minimize errors due to distraction, one should avoid multitasking (for example, a surgeon operating should not be distracted by a nurse recounting her latest adventures) and refrain from performing actio...

KEUANGAN & DATA PRIBADI PEMAIN GAME ONLINE DALAM BAHAYA

Melindungi Gamer Online: Memahami Risiko dan Solusi Dalam beberapa tahun terakhir, dunia game online telah mengalami pertumbuhan eksponensial, sejalan dengan meningkatnya nilai aset game. Namun, lonjakan popularitas ini juga membawa segudang risiko yang mengancam para pemain dan operator. Dari upaya peretasan dan pencurian akun hingga transaksi yang tidak sah dan eksploitasi data, bahaya yang mengintai di dunia digital selalu ada. Mengingat tantangan-tantangan ini, sangat penting untuk menjelaskan pentingnya langkah-langkah perlindungan yang kuat dan solusi inovatif. Memahami Lanskap Aset game, yang terdiri dari mata uang virtual, item, dan akun, adalah sumber kehidupan ekonomi game online. Nilainya melampaui ranah virtual, bahkan sering kali melampaui transaksi di dunia nyata. Meskipun demikian, perlindungan konsumen tradisional yang diberikan oleh layanan perbankan dan pembayaran tidak ada di ranah game. Operator platform game sering kali mengadopsi pendekatan laissez-faire, membuat ...