Major cybersecurity events on 30th December 2020 (Morning Post): 21 arrested after allegedly using stolen WeLeakInfo.com logins to commit fraud. Voyager cryptocurrency broker halted trading due to cyberattack. Lawsuit claims flawed facial recognition led to man’s wrongful arrest.Continue readingPransksters hijack smart devices to live stream swatters, Apple loses copyright suit against security startup, and more
Category: Arbitrary Code Execution
Major cybersecurity events on 21st December 2020 (Evening Post): VMware latest to confirm breach in SolarWinds hacking campaign. Ransomware threat actors dump data from yet another k-12 district. Critical bugs in Dell Wyse Thin Client Devices allow code execution.Continue readingUS seizes domains for COVID phishing attacks, Hacker dumps crypto wallet customer data, attacks follow, and more
Major cybersecurity events on 16th December 2020 (Evening Post): Apple patches a total of 59 of code execution vulnerabilities in macOS. New 5G network flaws let attackers track users’ locations and steal data. SolarWinds removes customer list from site as It releases second hotfix.Continue readingAustralian watchdog sues Facebook over VPN app, HPE discloses critical 0 day in server management software, and more
Major cybersecurity events on 01st December 2020 (Evening Post): Baltimore County Public Schools Closed Due to Ransomware Attack, WebKit Vulnerabilities Allow Remote Code Execution via Malicious Websites, Gootkit malware returns to life alongside REvil ransomware.Continue readingBaltimore County Public Schools Closed Due to Ransomware Attack, WebKit Vulnerabilities Allow Remote Code Execution via Malicious Websites, and more
Major cybersecurity events on 30th November 2020 (Evening Post): Office 365 phishing campaign leverages Oracle and Amazon cloud services, A hacker is selling access to the email accounts of hundreds of C-level executives, Operators behind Dark Caracal are still alive and operational. Continue readingA hacker is selling access to the email accounts of hundreds of C-level executives, Operators behind Dark Caracal are still alive and operational, and more
Major cybersecurity events on 30th November 2020 (Morning Post): Suspected North Korean hackers targeted COVID vaccine maker AstraZeneca, Chip maker Advantech hit by Conti ransomware gang, Drupal emergency updates fix critical arbitrary PHP code execution. Continue readingSuspected North Korean hackers targeted COVID vaccine maker AstraZeneca, Chip maker Advantech hit by Conti ransomware gang, and more
Major cybersecurity events on 13th November 2020 (Morning Post): Popular stock photo service, 123RF, suffers data breach after hacker sells database containing 8.3 million user records. YouTube, YouTube TV affected by a two-hour global outage. Ransomware threats increasingly target manufacturing companies.Continue readingMinecraft-related apps defraud millions of gamers, The North Face suffers a credential stuffing attack, and more
Major cybersecurity events on 11th November 2020 (Evening Post): Antivirus software flags Dell printer drivers as malware, blocks installation. Chinese-linked Muhstik botnet targets Oracle WebLogic, Drupal. Patched Ubuntu desktop vulnerability allows privilege escalation.Continue readingLTO data leak involves car registrations, Ragnar Locker gang uses Facebook ads to extort victims, and more
Major cybersecurity events on 25th September 2020 (Evening Post): Russian citizen pleads guilty after being accused of offering a Tesla employee $1 million to enable a ransomware attack. Airbnb may be exposing private host inbox messages, bookings and earnings data.Continue readingMount Locker demands millions in ransom, WannaCry ransomware attack target IoT devices, and more