https://www.cyberveille-sante.gouv.fr/alertes/zyxel-cve-2023-5593-2023-11-21

Toyota Financial Services (TFS) has confirmed that it detected unauthorized access on some of its systems in Europe and Africa after Medusa ransomware claimed an attack on the company.

A threat actor, using the alias 'DrOne,' has claimed responsibility for leaking a scraped database from Chess.com with data from 800,000 users.

Okta has concluded that the root cause of its breach was an employee storing company credentials in a private Google account.

Aerospace giant Boeing is investigating a cyberattack that impacted its parts and distribution business after the LockBit ransomware gang claimed that they breached the company's network and stole data.

https://cybernews.com/security/thousands-gas-pump-controllers-exposed/?utm_source=linkedin&utm_medium=social&utm_campaign=thousands-gas-pump-controllers-exposed_csh&utm_term=LIN-365&source=linkedin&medium=social&campaign=thousands-gas-pump-controllers-exposed_csh&term=LIN-365

MySQL servers are being targeted by the 'Ddostf' malware botnet to enslave them for a DDoS-as-a-Service platform whose firepower is rented to other cybercriminals.

The incident spotlights a danger that bank leaders concede keeps them up at night — the prospect of a cyber attack that could someday cripple a key piece of the financial system’s wiring, setting off a cascade of disruptions.

https://www-zdnet-fr.cdn.ampproject.org/c/s/www.zdnet.fr/amp/actualites/des-infrastructures-critiques-de-l-energie-danoises-visees-par-une-cyberattaque-d-une-ampleur-inedite-39962454.htm

VMware raises the alarm about an unpatched security flaw (CVE-2023-34060) in Cloud Director, which could allow attackers to bypass authentication.

Operator DP World Australia says teams ‘working diligently to contain the situation and determine impact’

Microsoft Exchange is impacted by four zero-day vulnerabilities that attackers can exploit remotely to execute arbitrary code or disclose sensitive information on affected installations.