The latest articles on DEV Community by BeyondMachines (@bsp_beyondmachines). https://dev.to/bsp_beyondmachines https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2445503%2F3faf5e64-542b-44d9-9bb9-e5bdaa993b59.png https://dev.to/bsp_beyondmachines en BeyondMachines Sun, 03 May 2026 09:01:28 +0000 https://dev.to/beyondmachines/integrated-pain-associates-data-breach-exposes-patient-social-security-numbers-and-medical-records-3m4i https://dev.to/beyondmachines/integrated-pain-associates-data-breach-exposes-patient-social-security-numbers-and-medical-records-3m4i <h3> Summary </h3> <p>Integrated Pain Associates disclosed a data breach occurring in February 2026 that exposed sensitive patient information, including Social Security numbers and medical records.</p> <p><em><a href="https://beyondmachines.net/event_details/integrated-pain-associates-data-breach-exposes-patient-social-security-numbers-and-medical-records-j-f-1-o-r/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Sun, 03 May 2026 08:01:28 +0000 https://dev.to/beyondmachines/zcash-foundation-releases-zebra-440-to-patch-consensus-and-dos-flaws-3e1p https://dev.to/beyondmachines/zcash-foundation-releases-zebra-440-to-patch-consensus-and-dos-flaws-3e1p <h3> Summary </h3> <p>Zcash Foundation released Zebra 4.4.0 to address critical consensus-level vulnerabilities and denial-of-service flaws that could lead to chain forks and permanent node halts.</p> <h3> Take Action: </h3> <p>If you operate a Zebra node, upgrade to version 4.4.0 ASAP, as there are no workarounds for the consensus-level flaws that could push your node onto an invalid chain. After upgrading, verify that your RPC cookie file has 0600 permissions to block unauthorized local access.</p> <p><em><a href="https://beyondmachines.net/event_details/zcash-foundation-releases-zebra-4-4-0-to-patch-critical-consensus-and-dos-flaws-2-c-s-b-d/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Sat, 02 May 2026 20:01:29 +0000 https://dev.to/beyondmachines/dermcare-management-data-breach-exposes-sensitive-patient-records-7nf https://dev.to/beyondmachines/dermcare-management-data-breach-exposes-sensitive-patient-records-7nf <h3> Summary </h3> <p>DermCare Management, Inc. suffered a data breach in February 2025 that exposed the sensitive medical and financial information of thousands of patients across multiple states.</p> <p><em><a href="https://beyondmachines.net/event_details/dermcare-management-data-breach-exposes-sensitive-patient-records-p-u-m-p-1/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Sat, 02 May 2026 19:01:29 +0000 https://dev.to/beyondmachines/trellix-confirms-unauthorized-access-to-source-code-repository-f75 https://dev.to/beyondmachines/trellix-confirms-unauthorized-access-to-source-code-repository-f75 <h3> Summary </h3> <p>Cybersecurity firm Trellix confirmed that unauthorized actors accessed a portion of its source code repository. The company reports no evidence of impact on its software distribution or product integrity.</p> <p><em><a href="https://beyondmachines.net/event_details/trellix-confirms-unauthorized-access-to-source-code-repository-r-j-x-6-z/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Sat, 02 May 2026 18:01:28 +0000 https://dev.to/beyondmachines/canonical-and-ubuntu-infrastructure-hit-by-sustained-cross-border-ddos-attack-28j https://dev.to/beyondmachines/canonical-and-ubuntu-infrastructure-hit-by-sustained-cross-border-ddos-attack-28j <h3> Summary </h3> <p>Canonical and Ubuntu infrastructure suffered a sustained, cross-border DDoS attack claimed by a pro-Iran group, resulting in a nearly two-day outage of web services and primary update servers.</p> <p><em><a href="https://beyondmachines.net/event_details/canonical-and-ubuntu-infrastructure-hit-by-sustained-cross-border-ddos-attack-2-8-r-e-p/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Sat, 02 May 2026 08:01:29 +0000 https://dev.to/beyondmachines/critical-authentication-bypass-in-cpanel-and-whm-actively-exploited-11o7 https://dev.to/beyondmachines/critical-authentication-bypass-in-cpanel-and-whm-actively-exploited-11o7 <h3> Summary </h3> <p>A critical authentication bypass vulnerability (CVE-2026-41940, CVSS 9.8) in cPanel and WHM is being actively exploited to grant attackers full root access to web servers.</p> <h3> Take Action: </h3> <p>If you use cPanel or WHM on your servers, this is urgent, you are being hacked. Immediately run /scripts/upcp --force to apply the emergency patch, then verify the version with /usr/local/cpanel/cpanel -V. Until you've confirmed the update, block external access to ports 2083 and 2087. If you are using cPanel as a customer, reach to your hosting provider to confirm that they have updated cPanel.</p> <p><em><a href="https://beyondmachines.net/event_details/critical-authentication-bypass-in-cpanel-and-whm-actively-exploited-t-j-b-6-s/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Fri, 01 May 2026 18:01:29 +0000 https://dev.to/beyondmachines/prime-properties-targeted-by-emerging-m3rx-ransomware-group-171d https://dev.to/beyondmachines/prime-properties-targeted-by-emerging-m3rx-ransomware-group-171d <h3> Summary </h3> <p>Sydney-based Prime Properties was listed on the M3rx ransomware leak site with claims of significant amount of stolen data.</p> <p><em><a href="https://beyondmachines.net/event_details/prime-properties-targeted-by-emerging-m3rx-ransomware-group-j-5-n-y-l/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Fri, 01 May 2026 08:01:29 +0000 https://dev.to/beyondmachines/churchill-claims-services-ransomware-attack-exposes-ssns-of-2610-individuals-1n3c https://dev.to/beyondmachines/churchill-claims-services-ransomware-attack-exposes-ssns-of-2610-individuals-1n3c <h3> Summary </h3> <p>Churchill Claims Services suffered a ransomware attack by the Securotrop group that exposed the Social Security numbers and personal data of 2,610 individuals. The breach remained undetected for six months after the threat actors claimed to have stolen 240 GB of internal records.</p> <p><em><a href="https://beyondmachines.net/event_details/churchill-claims-services-ransomware-attack-exposes-ssns-of-2610-individuals-7-a-q-3-1/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Thu, 30 Apr 2026 20:01:28 +0000 https://dev.to/beyondmachines/moldova-national-health-insurance-company-suffers-massive-data-breach-affecting-one-third-of-47hc https://dev.to/beyondmachines/moldova-national-health-insurance-company-suffers-massive-data-breach-affecting-one-third-of-47hc <h3> Summary </h3> <p>Moldova's National Health Insurance Company (CNAM) suffered a cyberattack that compromised approximately 30% of the national healthcare database, including personal and payment information. Authorities suspect the incident was a coordinated operation by Russian-linked actors aimed at data theft, not financial gain.</p> <p><em><a href="https://beyondmachines.net/event_details/moldova-national-health-insurance-company-suffers-massive-data-breach-affecting-one-third-of-database-f-d-q-y-0/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Thu, 30 Apr 2026 15:01:30 +0000 https://dev.to/beyondmachines/sandhills-medical-foundation-discloses-ransomware-breach-affecting-170000-patients-544h https://dev.to/beyondmachines/sandhills-medical-foundation-discloses-ransomware-breach-affecting-170000-patients-544h <h3> Summary </h3> <p>Sandhills Medical Foundation disclosed a ransomware attack by the Inc Ransom group that compromised the personal and medical data of approximately 170,000 individuals. The breach resulted in the theft and subsequent leaking of Social Security numbers, financial records, and personal health information.</p> <p><em><a href="https://beyondmachines.net/event_details/sandhills-medical-foundation-discloses-ransomware-breach-affecting-170000-patients-t-6-v-0-m/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Thu, 30 Apr 2026 14:01:30 +0000 https://dev.to/beyondmachines/celebrity-private-communications-exposed-in-stalkerware-database-breach-iib https://dev.to/beyondmachines/celebrity-private-communications-exposed-in-stalkerware-database-breach-iib <h3> Summary </h3> <p>A misconfigured database belonging to an individual using stalkerware exposed nearly 87,000 screenshots from a prominent celebrity's device, including private chats and sensitive documents. The breach highlights how spyware bypasses end-to-end encryption by capturing data directly from the device's screen.</p> <p><em><a href="https://beyondmachines.net/event_details/celebrity-private-communications-exposed-in-stalkerware-database-breach-u-y-n-m-r/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec BeyondMachines Thu, 30 Apr 2026 11:01:29 +0000 https://dev.to/beyondmachines/copy-fail-linux-kernel-flaw-grants-root-access-on-all-major-distributions-4hnb https://dev.to/beyondmachines/copy-fail-linux-kernel-flaw-grants-root-access-on-all-major-distributions-4hnb <h3> Summary </h3> <p>A Linux kernel vulnerability called "Copy Fail" (CVE-2026-31431) allows unprivileged local users to gain root privileges with 100% reliability by corrupting the shared page cache. The flaw affects nearly all Linux distributions since 2017 and enables container escapes because the memory corruption does not modify files on disk.</p> <h3> Take Action: </h3> <p>If you run Linux servers, especially shared environments like Kubernetes clusters, CI/CD runners, or multi-tenant hosts, patch your kernel immediately to a version that includes the fix (mainline commit a664bf3d603d) for CVE-2026-31431. If you can't patch right away, disable the vulnerable module by running echo "install algif_aead /bin/false" &gt; /etc/modprobe.d/disable-algif.conf followed by rmmod algif_aead, and for untrusted code environments block AF_ALG socket creation via seccomp as a long-term safeguard.</p> <p><em><a href="https://beyondmachines.net/event_details/copy-fail-linux-kernel-flaw-grants-root-access-on-all-major-distributions-w-l-v-0-c/9uoJWdGwxq" rel="noopener noreferrer">Read the full article on BeyondMachines</a></em></p> <p><em>This article was originally published on <a href="https://beyondmachines.net" rel="noopener noreferrer">BeyondMachines</a></em></p> cybersecurity infosec