Cisco has disclosed and issued a patch for a high-severity vulnerability affecting the Integrated Management Controller in a range of devices, including UCS C-Series Rack Servers and 5000 Series Enterprise Network Compute Systems. This flaw, having an 8.8 out of 10 severity rating, could allow an authenticated, local attacker with at least read-only privileges to execute command injection attacks and gain root access. While Cisco reported no known instances of the vulnerability being exploited, code that could be used for such purposes has been made public. Customers are urged to apply the provided patches, as no alternative mitigations have been advised, and a wide spectrum of Cisco devices could be impacted if running vulnerable versions of the software with default configurations.

Cisco Discloses High-Severity Vulnerability, Exploit Code Released CRN

Omni Hotels & Resorts experienced a ransomware attack last month, resulting in the theft of personal customer information. The stolen data includes names, email and postal addresses, and loyalty program details but does not encompass financial details or Social Security numbers. The hotel chain, which operates numerous properties across the United States and Canada, detected the intrusion on March 29, causing temporary system shutdowns that led to widespread outages affecting services like phone, Wi-Fi, and room keys. The ransomware group Daixin has claimed responsibility for the breach, threatening to release customer records dating back to 2017. Despite these claims, financial information and Social Security numbers were reportedly not compromised in the incident.

Omni Hotels says customers' personal data stolen in ransomware attack TechCrunch

A team of computer scientists from the University of Illinois Urbana-Champaign demonstrated that AI agents, powered by OpenAI's GPT-4, can exploit real-world security vulnerabilities with high efficiency by analyzing CVE advisories. In their study, GPT-4 successfully exploited 87% of tested vulnerabilities, a significant leap compared to other models and traditional vulnerability scanners. The research highlights the potential of large language models to automate attacks, raising concerns over security practices. The team emphasizes the importance of proactive security measures, as restricting access to vulnerability descriptions proved largely ineffective. This work points to a future where AI could outpace current exploitation tools available to hackers, underlining an impending need for advancements in cybersecurity defenses.

GPT-4 can exploit real vulnerabilities by reading advisories The Register

In response to the significant ransomware attack on UnitedHealth subsidiary Change Healthcare by Russia-based ALPHV BlackCat, industry experts have urged Congress to implement minimum cybersecurity standards for healthcare organizations. This attack highlighted the vulnerabilities of the healthcare sector, with the FBI indicating it as a top victim of ransomware in 2023. Addressing the incident, legislators and cybersecurity professionals recommended increased Federal support, funding for under-resourced organizations, and the development of a Federal playbook for cybersecurity in healthcare, emphasizing the importance of preparedness and quick response to future cyber threats. Additionally, proposed legislation aims to incentivize healthcare providers to enhance their cybersecurity measures through financial rewards for meeting established standards.

Congress Urged to Enforce Minimum Healthcare Cyber Standards Meritalk