September 19, SecurityWeek – (International) Rockwell patches code execution flaw in RSLogix product. Rockwell Automation released patches for several of its RSLogix products used in the food and agriculture, critical manufacturing, water, and chemical sectors to resolve a buffer overflow vulnerability after a researcher discovered the flaw can be exploited by convincing a local user to open a specially crafted rich site summary (RSS) file with a malicious version of RSLogix in order to execute arbitrary code on a targeted system. Source
Above Reprinted from the USDHS Daily Open Source Infrastructure Report
September 21, Dark Reading - Education Now Suffers The Most Ransomware Attacks. New data shows ransomware rates worldwide doubling and tripling in past 12 months. When you think ransomware victim, most likely your first thought is a hospital. But a new survey of ransomware's spread among different industry sectors shows that education is actually the biggest target right now. BitSight, which rates the security posture of organizations based on external data showing malicious activity surrounding them, in a new report today found that education is hit most by ransomware attacks, followed by government, healthcare, energy/utilities, retail, and finance. Source
September 20, Dark Reading -Zscaler Warns Of New iSpy Commercial Keylogger. Malware steals user data, license keys to popular applications. Security vendor Zscaler has issued an alert on what it describes as a sophisticated new keylogger that is designed to capture every single keystroke and conduct extensive surveillance on an infected computer. Dubbed iSpy, the keylogger is equipped to steal passwords, capture screenshots, and monitor clipboards and webcams on victim systems, Zscaler said in an alert this week. Source