Major cybersecurity events on 20th November 2020 (Morning Post): German COVID-19 Contact-Tracing Vulnerability Allowed RCE, VMware SD-WAN Vulnerabilities Expose Enterprise Networks to Attacks, Robot Vacuums Suck Up Sensitive Audio in ‘LidarPhone’ Hack.Continue readingRobot Vacuums Suck Up Sensitive Audio in ‘LidarPhone’ Hack, German COVID-19 Contact-Tracing Vulnerability Allowed RCE, and more
Tag: Magecart
Major cybersecurity events on 13th November 2020 (Evening Post): Three of 337,384 Maltese voters demand €10m fine for IT firm behind huge data breach. COVID-19 data-sharing app leaked healthcare worker information. Australian government issues warning against Clop ransomware.Continue readingRussian, North Korean Hackers Target Vaccine Work, Vertafore ‘data event’ affects 27.7 million people, and more
Major cybersecurity events on 7th September 2020 (Morning Post): Visa warns users of new e-skimmer dubbed Baka that exfiltrates payment card details, removes itself from memory. Ad scammers target TikTok’s #ForYou page. Zero-day vulnerability exploited to attack millions of WordPress sites.Continue readingHackers breach Warner Music Group websites, Criminals pilfer card data on Telegram through new skimming technique, and more
Major cybersecurity events on 2nd September 2020 (Morning Post): Russian engineer, Pavel Zhovner, raised $5 million for Tamagotchi for Flipper Zero hackers. Cybercriminals launch new scams targeting global brand domain names. Magecart credit-card skimmer adds Telegram as C2 channel.Continue readingFacebook, Twitter suspends Russian propaganda accounts, Russia’s IRA discusses QAnon on Facebook, and more
Major cybersecurity events on 10th August 2020 (Evening Post): New evasive Magecart phishing attacks leverage modified favicon to inject e-skimmers, steal payment card data. Maze group claims responsibility for a ransomware attack targeted at Canon.Continue readingProctorU confirms breach after data leaked online, Subreddits vandalized with pro-Trump messages, and more
Major cybersecurity events on 8th July 2020 (Evening Post): German authorities seize BlueLeaks server, after it provided access to US police departments internal documents. Keeper threat group compromises 57o e-commerce sites, profiting around $7 million from it.Continue readingBEC gang Cosmic Lynx associated with 200 campaigns, Google Play hosts app delivering Cerebrus, and more
Major cybersecurity events on 29th June 2020 (Evening Post): Attackers hack E27, asks for donation in exchange for details about vulnerabilities. Maine Information and Analysis Center suffers data breach, leaks data. Evil Corp stopped from spreading ransomware, preventing attack on 30 major firms.Continue readingHackers sent explicit messages to breached list of students, Hidden Web Skimmers used to target ecommerce sites, and more
Major cybersecurity events on 23rd June 2020 (Morning Post): New Zealand police apprehends Alexander Vinnik for fraud, freezes his assets. Online fraudsters target young shoppers, steals £17 million. Flaw in firmware allows attackers to evade security on home routers.Continue readingGoogle Analytics leveraged to steal credit cards, CLOP hits Indiabulls, demands ransom in a day, and more
Major cybersecurity events on 15th June 2020 (Evening Post): Australian beverages company and Japanese beverage giant Kirin’s subsidiary Lion infected with ransomware, disrupts manufacturing process. Magecart hacks accessories’ giant Claire’s, gains access to credit card data.Continue readingScammers blackmail website owners for ransom, Defragger bug defrags SSD Drives too often, and more
Major cybersecurity events on 10th June 2020 (Evening Post): Misconfigured S3 bucket that has Magecart, malicious redirector code, compromised. Fake SpaceX YouTube channels scam viewers out of $150K in bitcoin. Adobe and Intel patches vulnerabilities.Continue readingHacker breaches 300,000 Nintendo accounts, Malicious Android apps bypass Google security scans, and more