Major cybersecurity events on 7th October 2020 (Morning Post): Chowbus delivery service breached, hacker emails data to users. Ransomware attack on health tech firm disrupted COVID-19 medical trials. PoetRAT malware targets public and private sector in Azerbaijan.Continue readingGitLab patches Elasticsearch data leak bug, Canada bombarded with COVID-themed cyber attacks, and more
Tag: Elasticsearch
Major cybersecurity events on 5th October 2020 (Morning Post): University Hospital New Jersey pays ransom of $670K to prevent publishing of 240GB data. Egregor ransomware threatens a mass-media release of victims’ corporate data. Emotet malware interferes in the 2020 US Presidential Election. Continue readingH&M charged with €35.2m fine for GDPR violations, 2 million Edureka users’ data exposed in data breach, and more
Major cybersecurity events on 28th September 2020 (Evening Post): Hacker (m1gh7yh4ck3r) uploads PDF documents to WHO, UNESCO websites. REvil ransomware deposits $1 million in Bitcoins for hacker recruitment drive. FinCEN outlines world’s biggest banks embezzle trillions for terrorists and drug cartels.Continue readingBrandBQ exposes 7 million customer records, Town Sports leaks personal data of 600,000 customers, and more
Major cybersecurity events on 23rd September 2020 (Evening Post): OldGremlin hacking group strikes Russian companies with ransomware. New Zebrocy campaign, associated with Russian state-linked threat actor APT28, targets countries affiliated with NATO.Continue readingFBI warns over election disinformation campaign, Indian COVID-19 monitoring tool exposes 8M users data, and more
Major cybersecurity events on 15th September 2020 (Evening Post): 97% of cybersecurity companies reportedly leaked data on dark web. Mailfire exposes 320 million users records of 70 dating, e-commerce sites. Bug in Joe Biden’s campaign app allows access to millions of voter files. Continue readingDaimler settles US emission charges for $1.5B, SunCrypt ransomware targets University Hospital NJ, and more
Major cybersecurity events on 14th September 2020 (Evening Post): US citizen charged with running a diamond and cryptocurrency-based Ponzi scheme. Vulnerabilities expose thousands of MobileIron servers to remote attacks. Zerologon attack lets hackers take over enterprise networks.Continue readingMisconfigured Elasticsearch leaks 882GB user data, Indian orgs. report highest cyberattacks after US, and more
Major cybersecurity events on 14th September 2020 (Morning Post): 3.4 million patient data breached in Blackbaud ransomware incident, states interim report. New Twitter phishing scam steals login credentials of unsuspecting users. Development Bank of Seychelles hit by ransomware attack.Continue readingRyuk targets US court with the Conti strain, Zoom adds and extra layer of security: 2FA, and more
Major cybersecurity events on 11th September 2020 (Morning Post): Telehealth applications and services broaden the attack surface, more actors target such apps. Twitter to remove misleading election tweets, gets on Trump’s bad side. SoftServe hit by ransomware attack, exploits Windows customization tool.Continue readingState-backed hackers target 2020 US elections, 100,000 Razer fans’ sensitive data exposed, and more
Major cybersecurity events on 8th September 2020 (Evening Post): DoppelPaymer ransomware targets Newcastle University, in response university took down its systems. New study by ImmuniWeb indicates that most cybersecurity companies leak sensitive data. Banco Estado shuts down, after ransomware attack.Continue reading860K Webmaster users data leaked online and more
Major cybersecurity events on 7th September 2020 (Evening Post): ACSC’s First Annual Cyber Threat Report records 59,806 cybercrimes in a year. Russian indicted for attempting to recruit Tesla employee to install malware. DDoS attacks e-learning platforms increased by 80% in 2020.Continue readingDigital Forum exposes 800,000 user records, Charing Cross Gender Identity Clinic data leak victims claim £30,000, and more