Month: September 2021

Cybersecurity Daily News for Sept 5, 2021

Javascript anti-debugging in Chromium Devtools; Conti ransomware group gaining affiliates; Indonesia probes suspected data breach in Covid-19 application

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

New Malware Uses Novel Fileless Technique to Evade Detection – darkreading.com

Javascript Anti Debugging — Some Next Level Sh*t (Part 2— Abusing Chromium Devtools Scope Pane) – medium.com

Google’s TensorFlow drops YAML support due to code execution flaw – bleepingcomputer.com
– CVE-2021-37678

Conti Ransomware Threat Rising as Group Gains Affiliates – databreachtoday.com

Indonesia Probes Suspected Data Breach on COVID-19 App – Expert Comments – informationsecuritybuzz.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by


Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

Cybersecurity Daily News for Sept 4, 2021

APT groups using Windows 11 in phishing attacks; Atlassian Confluence vulnerability being actively exploited; and Babuk ransomware source code leaked on hacker forum.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

FIN7 Capitalizes on Windows 11 Release in Latest Gambit – threatpost.com

US Cyber Command Warns of Ongoing ‘Mass Exploitation’ of Critical Confluence Vuln – darkreading.com
CVE-2021-26084 – Confluence Server and Data Center versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.

Babuk ransomware’s full source code leaked on hacker forum – bleepingcomputer.com

2 UK Telecom Firms Under DDoS Attacks – databreachtoday.com

Accellion Breach Impacts Beaumont Health – infosecurity-magazine.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by


Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

Cybersecurity Daily News for Sept 3, 2021

Cisco patches critical TACACS+ authentication bug in Cisco Enterprise NFV Infrastructure Software; New Malware family utilizes CLFS log files to hide second stage; and US farm loses $9 million in aftermath of ransomware attack.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

Gift Card Gang Extracts Cash From 100k Inboxes Daily – krebsonsecurity.com

FTC Bans Stalkerware App in Industry First – infosecurity-magazine.com

FBI: Sextortion complaints spike leads to $8 million in losses – bleepingcomputer.com

Cisco Patches Critical Authentication Bug With Public Exploit – threatpost.com
CVE-2021-34746 – TACACS+ authentication, authorization and accounting (AAA) feature of Cisco Enterprise NFV Infrastructure Software (NFVIS)

This New Malware Family Using CLFS Log Files to Avoid Detection – thehackernews.com

SEC fines eight investment firms for cybersecurity breaches that leaked client info – zdnet.com

US farm loses $9 million in the aftermath of a ransomware attack – therecord.media

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by


Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

Cybersecurity Daily News for Sept 2, 2021

WordPress plug-ins plagued with bugs; Autodesk reveals it was targeted by Russian SolarWinds hackers; and an analysis on new Quebec, Canada vaccine passport application reveals flaws in integrity.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

Gutenberg Template Library & Redux Framework Bugs Plague WordPress Sites – threatpost.com
CVE-2021-38312**Reserved**
CVE-2021-38314**Reserved**

Comcast RF Attack Leveraged Remotes for Surveillance – threatpost.com

Autodesk reveals it was targeted by Russian SolarWinds hackers – bleepingcomputer.com

Attackers Keep Refining Business Email Compromise Schemes – databreachtoday.com

Sacked Employee Deletes 21GB of Credit Union Files – infosecurity-magazine.com

Flaw in the Quebec vaccine passport: analysis – welivesecurity.com

Ransomware gangs target organizations during holidays and weekends – helpnetsecurity.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by


Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

Cybersecurity Daily News for Sept 1, 2021

STRRAT: a Java-based RAT that doesn’t need Java; Bangkok airlines hacked data leaked online; and new details on LockFile ransomware regarding, unique, intermittent encryption technique.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

LockBit gang leaks Bangkok Airways data, hits Accenture customers – bleepingcomputer.com

Data stolen from Bangkok Air in ransomware attack published on the dark web – siliconangle.com

Dreamtime Supply to pay $1.18 million to Steadfast ICT following employee breaches – arnnet.com.au

Banksy NFT Scammer Returns £240,000 to Victim – infosecurity-magazine.com

Vulnerability Allows Remote DoS Attacks Against Apps Using Linphone SIP Stack – securityweek.com
CVE-2021-33056 – Belledonne Belle-sip before 4.5.20, as used in Linphone and other products, can crash via an invalid From header in a SIP message.

STRRAT: a Java-based RAT that doesn’t care if you have Java – isc.sans.edu

SEC Sanctions 8 Firms for ‘Deficient Cybersecurity Procedures’ – bankinfosecurity.com

LockFile Ransomware uses a new intermittent encryption technique – cyberclub.info

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by


Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.