Major cybersecurity events on 22nd December 2020 (Morning Post): Nosy ex-partners armed with Instagram passwords pose a serious cybersecurity threat. Partial lists of organizations infected with Sunburst malware released online. Dell Wyse ThinOS flaws allow hacking thin clients.Continue readingTennCare breached, impacts 3,300 members, Hades ransomware gang targets Trucking giant Forward Air, and more
Tag: Instagram
Major cybersecurity events on 18th December 2020 (Morning Post): Power supplier People’s Energy hacked, exposes 250,000 customers’ personal info. Emirati website leaks the personal information of thousands of Israelis, used to plan trips to Dubai. 5M WordPress sites run ‘Contact Form 7’ plugin with critical bugs.Continue readingSolarWinds breached Microsoft systems as well, Mednax Services notifies patients of data breach, and more
Major cybersecurity events on 15th December 2020 (Evening Post): WhatsApp denies that its encrypted data can be hacked by Pegasus, an Israeli spyware. Wormable Gitpaste-12 botnet returns to target Linux servers, IoT devices. ‘PGMiner’ crypto-mining botnet abuses PostgreSQL for distribution.Continue readingOver 45 million medical images leaked online, Twitter fined €450,000 for GDPR breach, and more
Major cybersecurity events on 10th December 2020 (Evening Post): njRAT Trojan operators use Pastebin as alternative to central command server. Leaky Elasticsearch server reveals massive Instagram click farm. Potential Starbucks remote code execution vulnerability uncovered and patched.Continue readingVermont Medical Center attack costs $1.5M a day, Steam flaws let gamers crash opponents’ computers, and more
Major cybersecurity events on 8th December 2020 (Morning Post): DoppelPaymer ransomware operators hit Mexican facility of electronics giant Foxconn. Rana Android malware variant spies on instant messages in WhatsApp, Telegram, Skype. PS Now bugs let sites run malicious code on Windows PCs.Continue readingPhishing campaign targets 200M 365 accounts, Mercy Health fires employee over insider breach, and more
Major cybersecurity events on 25th November 2020 (Morning Post): Stantinko Bot masqueraded as httpd targeting Linux servers, Post Breach, Peatix Data Reportedly Found on Instagram, Telegram, Latest Version of TrickBot Employs Clever New Obfuscation Trick.Continue readingStantinko Bot masqueraded as httpd targeting Linux servers, Post Breach, Peatix Data Reportedly Found on Instagram, Telegram, and more
Major cybersecurity events on 20th October 2020 (Evening Post): Ransomware gang Darkside donated part of its ransom demands to charities. Nefilim ransomware operators publish long list of Luxottica data on leak site. Google’s Waze allows hackers to identify and track user.Continue readingUS charges Russian intelligence officers for malware attacks, Phishing campaign targets Microsoft, Google, and more
Major cybersecurity events on 1st October 2020 (Morning Post): Twitter removes 130 Iranian accounts attempting to disrupt US Presidential Debates. Two men charged for hacking NBA, NFL players’ social media accounts. Kylie Jenner’s makeup company suffers data breach.Continue readingAPT group TA2552 uses OAuth2 to access O365, Australian DFAT leaks personal details of 1000 citizens, and more
Major cybersecurity events on 25th September 2020 (Morning Post): Microsoft removes 18 Azure AD applications tied to the Chinese state-sponsored threat actor group APT40. Polish authorities shut down hacker super-group associated with bomb threats, ransomware attacks, SIM swapping. Continue readingBlackbaud breach affects more than 5.6 million patients, Hacker exfiltrates data from federal agency, and more