Yazılar

US warns hackers exploiting F5 vulnerabilities pose imminent threat to federal networks

/in /tarafından

U.S. officials have warned that government networks are being targeted by a nation-state cyber threat actor exploiting vulnerabilities in products made by F5, a major cybersecurity and networking firm. The Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive ordering federal agencies to locate and patch affected systems immediately.

According to CISA, hackers compromised F5’s internal systems, stealing files that included portions of its source code and information about undisclosed vulnerabilities. Officials said the stolen data could serve as a blueprint for future intrusions, enabling attackers to breach F5 devices and potentially gain full control over government or corporate networks.

“The cyber threat actor presents an imminent threat to federal networks,” said Nick Andersen, CISA’s Executive Assistant Director for Cybersecurity. He urged all organizations using F5 products to apply updates urgently, warning that the risk extends “to every organization and sector.”

F5 said it discovered unauthorized access on August 9 and quickly took “extensive actions” to contain the breach, engaging outside experts including CrowdStrike, Mandiant, and NCC Group. The company said there was no evidence its software development processes were tampered with, and operations remain unaffected. However, information from a few customers was accessed, and those affected have been contacted.

The U.S. Department of Justice delayed public disclosure of the breach until September 12 for national security reasons. The UK’s National Cyber Security Centre also issued a parallel warning urging users to install security updates.

Delta Air Lines Must Face Lawsuit Over Flight Disruptions After 2024 Computer Outage, Judge Rules

/in /tarafından

A federal judge ruled Tuesday that Delta Air Lines must face parts of a proposed class-action lawsuit filed by passengers who accused the airline of refusing full refunds after massive flight delays and cancellations caused by a computer outage in July 2024.

U.S. District Judge Mark Cohen in Atlanta allowed five of nine plaintiffs to move forward with breach of contract claims, citing Delta’s alleged failure to provide proper refunds. He also allowed a separate group of international travelers to pursue claims under the Montreal Convention, a global treaty covering air travel disruptions.

The outage, which began July 19, 2024, was triggered by a flawed software update from cybersecurity firm CrowdStrike, affecting over 8 million devices and causing significant disruptions to Microsoft clients, including major airlines. While many U.S. carriers resumed operations within a day, Delta’s systems remained down longer, resulting in about 7,000 canceled flights.

Judge Cohen dismissed several other claims, including those he said were preempted by federal law. Still, the ruling is being hailed by passengers’ attorneys as a victory for accountability.

This ruling is a major step forward for Delta passengers seeking accountability,” said Joseph Sauder, a lawyer representing some of the plaintiffs.

Passengers said Delta failed to issue automatic refunds and allegedly required travelers to waive legal claims in exchange for partial compensation.

  • One plaintiff, John Brennan of Florida, missed a $10,000 anniversary cruise after being stranded in Atlanta and was offered only $219.45.

  • Another, Vittorio Muzzi of the Netherlands, said his 5,000-euro trip was disrupted, his luggage delayed 15 days, and he received just €588 in compensation.

Delta, which had sought to dismiss most of the claims, has not responded publicly to the ruling. The airline previously estimated the outage cost $550 million in revenue losses and added expenses.

The case is Bajra et al v. Delta Air Lines, U.S. District Court, Northern District of Georgia, No. 24-03477.

SentinelOne Issues Lower Revenue Forecasts Amid Competition and Economic Uncertainty

/in /tarafından

SentinelOne (S.N.) issued disappointing revenue forecasts for both the first quarter and the full year, citing challenges such as tough competition and reduced enterprise spending amid economic uncertainty. This led to a 16% drop in its shares after the market closed on Wednesday.

The cybersecurity company faces significant pricing pressure, particularly in the endpoint security market, where larger platform players like Palo Alto Networks (PANW.O) and CrowdStrike (CRWD.O) are offering deeper discounts. Analysts note that despite SentinelOne’s strong competitive positioning, the sector is feeling the strain of more aggressive pricing strategies. Additionally, economic challenges have led enterprises to curtail spending on cybersecurity solutions, focusing more on cost optimization.

Generative AI, while offering opportunities, has also opened the door for increased cyberattacks. The rise of malicious AI usage has made the cybersecurity industry more critical, with global cyberattacks becoming a significant threat. For example, X, the social media platform owned by Elon Musk, experienced intermittent outages earlier this week due to a powerful cyberattack. Similarly, a cyberattack on UnitedHealth Group‘s technology unit last year compromised the personal information of 190 million individuals, marking it as the largest healthcare data breach in the United States.

Despite these cybersecurity challenges, SentinelOne’s first-quarter revenue forecast was $228 million, below the Wall Street estimate of $235.1 million. For the full year, the company expects revenue between $1.01 billion and $1.012 billion, which is also below analysts’ average estimate of $1.03 billion.

In its most recent financial results for the fourth quarter ending January 31, SentinelOne reported $225.5 million in revenue, surpassing expectations of $222.3 million. The company’s adjusted profit per share for the quarter was 4 cents, exceeding the 1-cent estimate.