THE LATEST SECURITY NEWS

Oracle HR, Finance, and Supply-Chain

Hackers are exploiting two major flaws in Oracle E-Business Suite, used for payroll, HR, and supply-chain systems. Tools to attack it leaked online and are now used by rival ransomware groups.

SharePoint

Hackers found a weakness in Microsoft’s SharePoint software. It lets them secretly get into company systems that use it. Many organizations haven’t fixed it yet, so the problem is spreading fast.

If your company uses SharePoint, it needs to update it right away or block outside access until it’s safe.

Yes, its just this easy!

Hackers can trick Microsoft 365’s security checks by using fake login pages that capture your sign-in details and session access. Even with two-step verification turned on, this method lets them get in. 

AWS DNS Failed... 

A major AWS failure caused a widespread internet outage. Many sites went down because too much of the web depends on Amazon’s systems. It showed why companies need backups with more than one provider. — but funny part is, FOSSnet users didn’t even notice.

Crowdstrike in the news

A CrowdStrike outage recently grounded airlines, froze banks, and disrupted businesses worldwide — all from a single software error. It showed how fragile global systems are when everyone depends on the same tools. Experts warn companies to keep backup systems and alternate vendors, even if costly, because one failure can cripple the economy..

Crowdstrike... what really happened?

• An automatic update from CrowdStrike went wrong and triggered a crash across many corporate Windows machines.
• The faulty update didn’t check its file properly, which caused systems running the software to fail.
• Because many companies rely on that same software simultaneously, the issue spread quickly — affecting banks, airlines and other large organisations.

Note: This video provides an in-depth technical analysis of the issue.