Major cybersecurity events on 28th December 2020 (Evening Post): Multi-platform card skimmer found on Shopify, BigCommerce stores. REvil hackers plan to leak photos of plastic surgery patients after massive hack. GitHub-hosted malware calculates Cobalt Strike payload from Imgur pic.Continue readingThreat actors target Finnish politicians’ email accounts, 21 Buttons exposes millions of users’ data, and more
Tag: GitHub
Major cybersecurity events on 21st December 2020 (Morning Post): Unsecured Azure blob exposed 500,000+ highly confidential docs from UK firm’s CRM customers. The horrific Vastaamo breach provokes Finnish government’s quick response. Telangana govt. site flaw exposes employees’ sensitive data.Continue readingPremier Kids Care notifies patients of cyberattack, SolarWinds hackers breach US NNSA nuclear agency, and more
Major cybersecurity events on 15th December 2020 (Evening Post): WhatsApp denies that its encrypted data can be hacked by Pegasus, an Israeli spyware. Wormable Gitpaste-12 botnet returns to target Linux servers, IoT devices. ‘PGMiner’ crypto-mining botnet abuses PostgreSQL for distribution.Continue readingOver 45 million medical images leaked online, Twitter fined €450,000 for GDPR breach, and more
Major cybersecurity events on 27th November 2020 (Evening Post): Personal data of 16 million Brazilian COVID-19 patients exposed online, Massive Zoom phishing targets Thanksgiving meetings, Ransomware hits US Fertility the largest US fertility network.Continue readingPersonal data of 16 million Brazilian COVID-19 patients exposed, Massive Zoom phishing targets Thanksgiving meetings, and more
Major cybersecurity events on 12th November 2020 (Morning Post): RegretLocker ransomware encrypts virtual hard disks on Windows machines. Cobalt Strike toolkit source code allegedly leaked online. Intel fixes 95 vulnerabilities as part of November 2020 Patch Tuesday.Continue readingAnimal Jam data breach impacts 46M accounts, Malicious Minecraft scams millions of users, and more
Major cybersecurity events on 11th November 2020 (Evening Post): Antivirus software flags Dell printer drivers as malware, blocks installation. Chinese-linked Muhstik botnet targets Oracle WebLogic, Drupal. Patched Ubuntu desktop vulnerability allows privilege escalation.Continue readingLTO data leak involves car registrations, Ragnar Locker gang uses Facebook ads to extort victims, and more
Major cybersecurity events on 11th November 2020 (Morning Post): Microsoft Teams users under attack in ‘FakeUpdates’ malware campaign that deploys backdoors. Microsoft publishes fixes for 112 software vulnerabilities for November Patch Tuesday. Android TVs plagued with extraordinary flaws.Continue readingMicrosoft investigates undeletable Outlook emails, Scalper bots drive prices of PS5, Xbox Series X up, and more
Major cybersecurity events on 10th November 2020 (Evening Post): Prestige reservation platform’s S3 bucket exposes millions of hotel guests. Cyber criminals scam bank customers pretending to be from bank security. Tetrade hackers target 112 financial apps with Ghimob banking Trojan.Continue readingUkrainian jailed for stealing $10M from Microsoft, Cadbury scammers trick social media users, and more
Major cybersecurity events on 05th November 2020 (Morning Post): QBOt election-themed phishing emails infect victims with malicious payloads, to harvest user data. Japanese game developer Capcom targeted by cyberattack, disrupts business operations. Hackers abuse Google Forms to phish for AT&T credentials.Continue readingCork hospital fined €65K over data mishandling, ShinyHunters target Mashable, leaks 5.22GB database, and more
Major cybersecurity events on 3rd November 2020 (Morning Post): Microsoft Tips leaks images of new Windows 10 screens, dialogs using rounded corners. US city fined $200k for failing to terminate former employee who later stole data. Over 250,000 malicious email attacks hit BBC, per day.Continue readingWakefern’s ShopRite fined $235K for negligence, UNC1945 uses Solaris 0-day to breach corporate networks, and more