Major cybersecurity events on 18th September 2020 (Morning Post): UK NCSC warns about a surge in ransomware attacks targeting educational institutions. Mozilla shuts down legacy services – Firefox Send, Firefox Notes. US sanctions Rana Institute for hiding major hacking operations.Continue readingAPT39 indicted for stealing satellite tracking data, Outbound email errors increase data breaches by 93%, and more
Category: CVE
Major cybersecurity events on 16th September 2020 (Evening Post): Indian pleads guilty to his role in $600,000 malware protection scam. LockBit ransomware launches data leak site to double-extort victims. Facebook hacked by researchers exploiting MobileIron MDM flaw.Continue readingSmishing campaign masquerades as USPS, Bug in order tracking system caused Staples breach, and more
Major cybersecurity events on 16th September 2020 (Morning Post): Dunkin’ Donuts settles a lawsuit after failing to disclose 2015 data breach. Hackers face charges for defacing US websites following Soleimani killing. Billions of smartphones, tablets, laptops, and IoT devices vulnerable to BLESA.Continue readingChinese hackers target Vatican despite public disclosure, MrbMiner malware hits MSSQL databases, and more
Major cybersecurity events on 15th September 2020 (Morning Post): Election security court hearing zoombombed with swastikas, WTC attack images on 9/11 anniversary. Staples suffers data breach, exposes customer information. Nation-state hackers target unpatched Microsoft Exchange, F5, VPN bugs.Continue reading2,000 Magento online stores hacked, Department of Veteran Affairs suffers data breach, and more
Major cybersecurity events on 14th September 2020 (Evening Post): US citizen charged with running a diamond and cryptocurrency-based Ponzi scheme. Vulnerabilities expose thousands of MobileIron servers to remote attacks. Zerologon attack lets hackers take over enterprise networks.Continue readingMisconfigured Elasticsearch leaks 882GB user data, Indian orgs. report highest cyberattacks after US, and more
Major cybersecurity events on 11th September 2020 (Evening Post): Companies based in India report more cyberattacks than any other country. US Criminal Court hit by Conti ransomware, expose critical data. Researchers report Chrome sandbox escape vulnerability, earns $20,000.Continue readingHackers slip into Donald Trump’s Twitter, Small business accounts cloned on Instagram, and more
Major cybersecurity events on 10th September 2020 (Morning Post): Hackers steal $5.4 million Slovakian cryptocurrency exchange ETERBASE. Fake alert scams target mobile networks and users, reports Sophos. Zeppelin ransomware adds a new trojan downloader to its arsenal.Continue readingBlackbaud data breach affects Inova Health Systems, NexusGuard reports massive rise in DDoS campaigns, and more
Major cybersecurity events on 9th September 2020 (Morning Post): Russian government claims that USA, UK, Ukrainian DDoS attacks targeted voting in Russian Federation. France, Japan, and New Zealand warn of a surge in Emotet attacks. Adobe InDesign, Framemaker, and Experience Manager flaws fixed.Continue readingCredit card skimmer Baka evades detection methods, Netwalker targets Pakistani power utility K-Electric, and more
Major cybersecurity events on 7th September 2020 (Evening Post): ACSC’s First Annual Cyber Threat Report records 59,806 cybercrimes in a year. Russian indicted for attempting to recruit Tesla employee to install malware. DDoS attacks e-learning platforms increased by 80% in 2020.Continue readingDigital Forum exposes 800,000 user records, Charing Cross Gender Identity Clinic data leak victims claim £30,000, and more
Major cybersecurity events on 3rd September 2020 (Morning Post): Threat actors break into Russian cancer center patients’ database, demands a ransom. Google Play deletes six apps infecting users with Joker malware a.k.a. Bread. Microsoft reports new malware Anubis targeting Windows users.Continue reading$5 million lawsuit filed against Morgan Stanley, Chinese hackers targets Europe, Tibet with Sepulcher, and more