top of page

Cyber Outlook Rundown 12/14/22

Cybersecurity News

A Cybersecurity briefing on noteworthy Cyber Attacks, Vulnerabilities, and InfoSec news.


Noteworthy Cyber Attacks

  1. Cornerstone Payment Systems - Credit Card Processing Company Exposed 9 Million Transaction Records Online including PII and PCI

  2. Riverside County Hospital (California) - It was found that the Hospital exposed sensitive patient information like SSNs and the details of medical care following an incident in the fall. Two Swedish municipalities - Declare a crisis after having to shutdown all technical services affecting over 25k people due to a cyber attack on Monday.

Noteworthy Vulnerabilities

  1. Microsoft's December 2022 Patch Tuesday fixed two zero-day vulnerabilities, including an actively exploited bug, and a total of 49 flaws. Six of which are classified as 'Critical' as they allow remote code execution, one of the most severe types of vulnerabilities.

  2. Apple discovered the ninth actively exploited zero-day flaw in 2022. Security updates for iOS, iPadOS, macOS, tvOS, and Safari web browser have been released to address this. Make sure you update ASAP.

  3. VMware has released several recent vulnerabilities, including 2 Critical vulnerabilities yesterday alone. Monitor their advisory page and make sure you're software is patched.

  4. SAP's Security Patch day was released including several Critical vulnerabilities.

Noteworthy InfoSec News

  1. Google announced their OSV-Scanner, that offers easy access to vulnerability info for various projects, currently supporting 16 ecosystems, including all major languages, Linux distributions, Android, and OSS-Fuzz.

Check our Twitter and Discord Server for more information:


Additional sources:

  1. Full report of Microsoft's CVEs

  2. A distributed vulnerability database for Open Source