RH-ISAC Blog

Summary The notable ransomware gang known as Conti has, according to security firm Advanced Intel (AdvIntel), taken its infrastructure offline and shut down its ransomware operations. While public-facing ‘Conti News’ data leak and the ransom negotiation sites are still online, the Tor admin panels used by Conti members to perform negotiations, publish news, and generate…

Context On May 19, 2022, security researchers at Sentinel Labs released technical details of a campaign targeting the Rust development community with a supply-chain attack by leveraging a malicious crate. The Rust Security Response Working Group released an advisory regarding the malicious crate on May 10, 2022. The malicious crate was named “rustdecimal,” likely intended…

This month’s member spotlight is Chad Whitman, Vice President, Security Engineering at Signet Jewelers. Chad had an interest in computers from a young age but was also interested in business. This dual combination led him to Purdue University’s computer technology program, which offered a blend of computer science, technology, and business courses. After Chad earned…

You want to take advantage of the benefits of a public cloud environment, including cost savings and increased flexibility, but you’re not quite ready to relinquish complete control of your most sensitive data. A hybrid cloud strategy is the solution for organizations that want the best of both worlds. A hybrid environment allows companies to…

Context On May 12, 2022, Apache released an advisory regarding a high severity vulnerability in Apache Tomcat. The vulnerability, designated CVE-2022-25762, affects Tomcat versions 9.0.0.M1 to 9.0.2o and 8.5.0 to 8.5.75. Apache advises users to upgrade to 9.0.21 or later or 8.5.76 or later to mitigate the vulnerability. A May 16, 2022 advisory from CISA…