Cyber Weekly Digest - 2022 Week #1

In this week's Cyber Weekly Digest, we dive into the biggest cyber security stories from the beginning of 2022, including a ransomware attack impacting a school website services provider which supports over 8,000 institutions worldwide and a vulnerability allowing almost anyone to send a legitimate email from Keep reading to stay up to date on the latest cyber security news.

1. A ransomware attack hits a school website services provider, supporting 8,000 different institutions worldwide.

FinalSite, a school website services provider, has suffered a ransomware attack disrupting access to websites for thousands of schools worldwide. FinalSite provides solutions for over 8,000 schools and universities across 115 different countries. On Tuesday this week, schools that host their websites through FinalSite were either displaying errors or unreachable. After three days of disruption, FinalSite confirmed that a ransomware attack on their network had caused the outages.

2. Researchers release details of a financially motivated threat group who stay undetected on victim's networks for months.

A financially-motivated actor named 'Elephant Beetle' has been found stealing millions of dollars from organisations worldwide using over 80 unique tools and scripts. The group spends months studying the victim's environment and financial transaction processes before exploiting flaws in the operation. The actors inject fraudulent transactions into the network and steal small amounts over long periods, leading to an overall theft of millions of dollars. The report released 'Elephant Beetle' appears to target legacy Java applications on Linux systems as their entry point into corporate networks.

3. Details are released on a denial of service vulnerability in Apple HomeKit.

A novel persistent denial of service vulnerability named 'doorLock' has been discovered in Apple HomeKit, affecting iOS 14.7 through 15.2. According to the security researcher who released details on the vulnerability, Apple has known about the flaw since August 2021 but has continued to push the update and remains unresolved. However, the bug can only be exploited by someone with access to the victims "home" and is triggered by an attacker who would change the name of a HomeKit device to a string larger than 500,000 characters.

4. Google released an update for C