Cyber Weekly Digest - 2022 Week #19

Updated: May 20

In this week’s Cyber Weekly Digest find out about a ransomware attack that caused a 157-year-old college to close for good, and the cyber attacks which made Costa Rica declare a national emergency. Keep reading to stay up to date on the latest cyber security news from around the world.

1. Costa Rica declares a national emergency following Conti ransomware attacks.

The Costa Rican President, Rodrigo Chaves, has declared a national emergency following cyber attacks from the Conti ransomware group on multiple government bodies. Conti ransomware had originally claimed ransomware attacks against Costa Rican government entities last month demanding a $10 million ransom. Since then, Conti's data leak site had been updated to state that the group had leaked 97% of the 672 GB data dump allegedly containing information stolen from government agencies. Costa Rica’s Ministry of Finance was the first entity to be targeted which still has not yet fully evaluated the scope of the security incident.

2. Microsoft patches a new zero-day vulnerability in this month’s Patch Tuesday.

Microsoft on Tuesday issued updates for 74 security vulnerabilities, including one for a zero-day bug being actively exploited in the wild. Of the 74 issues, 7 are rated Critical and 66 are rated Important. The highest-rated vulnerability is a spoofing vulnerability affecting the Windows Local Security Authority, which Microsoft describes as a "protected subsystem that authenticates and logs users onto the local system", with an 8.1 CVSS score.