Webroot and BrightCloud product and services are unaffected by the Log4j vulnerability. For more information on all OpenText products, please see this advisory
https://www.opentext.com/support/log4j-remote-code-execution-advisory
Companies released lists of products affected by a newly discovered vulnerability found in the Apache Log4j library that’s already identified on billions of systems around the globe. In other cyber security news, Volvo suffered a security incident affecting their computer systems that may have also caused a breach of sensitive company information.
Hundreds of financial institutions hit by Anubis malware
The Anubis Android malware that has plagued the Google Play store for several years has resurfaced to again target financial apps for their login credentials. While it is still unclear which group is operating this recent Anubis campaign, many different groups have used it in the past. It is believed that this latest campaign is still in its early stages and is being lightly distributed as a testing phase to ready it for a full release.
Superior Plus gas supplier suffers ransomware attack
A global supplier of natural gas named Superior Plus discovered unauthorized access to their internal systems and took many of them offline to avoid additional damage. It remains unclear who orchestrated the attack. Currently, officials are working with industry experts to determine the damage and ascertain if any sensitive information was compromised. This Superior Plus attack fits into the pattern of attacks that focus on critical infrastructure, as they tend to have unpatched older systems that lack updated security.
Hackers infiltrate Volvo’s systems
Volvo suffered a security incident that affected their computer systems and may have stolen sensitive company information. While officials haven’t released much more information on the attack itself, they say that there are no signs that any customer information was compromised during the unauthorized access of a file repository. It remains unclear which of Volvo’s global locations have been impacted.
Log4j vulnerability has global consequences
On Thursday of last week, researchers began noticing a major vulnerability in the Apache Log4j library that has been exploited by a variety of ransomware groups and other cybercriminals. This vulnerability in the logging service has been identified on millions of systems around the world. It allows attackers to perform remote code execution within a variety of applications without authentication. Dozens of companies have since released lists of their products that are affected by this vulnerability. They’ve also informed users if they have any workarounds or have pushed out patches that resolve the issue.
Over 750,000 patients exposed in Oregon medical group breach
Following a July ransomware attack, the Oregon Anesthesiology Group (OAG) suffered a data breach that could affect close to 750,000 former and current patients and employees. Officials for OAG only learned of the data breach in October, when the FBI contacted them regarding sensitive OAG data found on seized files from the HelloKitty ransomware group. The medical group have since updated their systems to resolve the vulnerabilities that were exploited during the initial July attack and have begun contacting the affected patients.