CyberSec Roundup
A synopsis of the Latest Cybersecurity News

Ferrari Hacked?

Soon after Ferrari publicized their partnership with BitDefnder, the RansonEXX group announced they stole 7GB of data from the company. After an internal investigation, the company denies that its systems were hacked, and confirmed there was no disruption to their business operations. The stolen documents, which include contracts and repair manuals, were leaked through other means, and Ferrari is working to identify the source of the leak.

Lloyd’s of London Confirms Breach

Lloyd’s of London confirmed that unusual activity was detected on their network and have taken the necessary actions to contain the attack. They are investigating the issue and will keep their business partners abreast of the findings, which could have its origins in Russia, as a response to its involvement in Russian sanctions.

Foritnet Warning

Fortinet recently notified their customers to upgrade their devices running vulnerable versions of FortiOS and FortiProxy. The vulnerability (tracked as CVE-2022-40684) is a critical authentication bypass that could allow remote attackers to access the management interface of unpatched devices. It doesn’t appear this vulnerability has been exploited as yet, but it is safe to say that devices that remain unpatched will likely be attacked, as Fortinet’s devices are frequently targeted by threat actors.

By: David Pinder
IT & Cybersecurity Consultant
Certified Ethical Hacker (Master)