Major cybersecurity events on 31st December 2020 (Evening Post): Adobe Flash Player will officially reach its end of life (EOL) on 1 January 2021. New Golang-based Crypto worm infects Windows and Linux servers. Google Chrome to display warnings for weak passwords.Continue readingData breach broker sells records of 26 companies, Wyndham Capital involved in class-action lawsuit over breach, and more
Tag: Chrome
Major cybersecurity events on 18th December 2020 (Morning Post): Power supplier People’s Energy hacked, exposes 250,000 customers’ personal info. Emirati website leaks the personal information of thousands of Israelis, used to plan trips to Dubai. 5M WordPress sites run ‘Contact Form 7’ plugin with critical bugs.Continue readingSolarWinds breached Microsoft systems as well, Mednax Services notifies patients of data breach, and more
Major cybersecurity events on 17th December 2020 (Morning Post): IRS form fraud campaign targets G Suite users, affects 50,000 executives already. FireEye, GoDaddy, and Microsoft creates kill switch for SolarWinds backdoor. DoppelPaymer ransomware gang harasses victims who refuse to pay.Continue reading3M users install 28 malicious Chrome, Edge extensions, IMAP leveraged to infiltrate email accounts, and more
Major cybersecurity events on 11th December 2020 (Evening Post): Glassdoor fixes critical issue that allows threat actors to take over accounts. Adrozek malware silently inject ads into search results in multiple browsers. Organized spear-phishing campaign targets 200 million Microsoft 365 users.Continue readingFake data breach targets Ledger wallets, Tax relief business exposes personal info of 100,000 clients, and more
Major cybersecurity events on 11th December 2020 (Morning Post): U.S. warns of increased cyberattacks against K-12 educational institutions. Scammers use Chrome, Firefox extensions in widespread ad fraud campaign. Widespread malware attacks target major browsers.Continue readingFacebook reveals the identity of APT32, Air France-KLM victim of cyber attack, impact unclear, and more
Major cybersecurity events on 8th December 2020 (Evening Post): D-Link VPN routers’ remote command injection bugs gets patched. Expert discloses zero-click, wormable flaw in Microsoft Teams. PlayStation Now critical remote code execution fixed. Google patches four high‑severity flaws in Chrome.Continue reading2,732 PickPoint package delivery lockers hacked, DoppelPaymer gang demands $34M ransom from Foxconn, and more
Major cybersecurity events on 18th November 2020 (Evening Post): COVID-19 Antigen Firm Hit by Malware Attack, Chrome 87 released with fix for NAT Slipstream attacks, Ransomware attack forces hosting provider Managed.com to take servers offline.Continue readingChrome 87 released with fix for NAT Slipstream attacks, COVID-19 Antigen Firm Hit by Malware Attack, and more
Major cybersecurity events on 16th November 2020 (Evening Post): Biotech research firm Miltenyi Biotec hit by Mount Locker ransomware, Chilean-based retail giant Cencosud hit by Egregor Ransomware, and Schneider Electric Warns Customers of Drovorub Linux Malware.Continue readingTicketmaster Fined £1.25m Over Data Breach, Image stock site 123RF hacked, Cencosud hit by Egregor Ransomware, and more
Major cybersecurity events on 13th November 2020 (Morning Post): Popular stock photo service, 123RF, suffers data breach after hacker sells database containing 8.3 million user records. YouTube, YouTube TV affected by a two-hour global outage. Ransomware threats increasingly target manufacturing companies.Continue readingMinecraft-related apps defraud millions of gamers, The North Face suffers a credential stuffing attack, and more
Major cybersecurity events on 12th November 2020 (Evening Post): KuCoin CEO, Johnny Lyu, says 84% of stolen cryptocurrency has been recovered. New modular ModPipe POS malware targets restaurants and hospitality sectors. Microsoft urges users to stop using phone-based MFA.Continue readingRakuten sends cashback emails in error, Hacker-for-hire group targets South Asian organizations, and more