Cybersecurity Daily News for Aug 18, 2021

North Korean hackers deploying browser exploits to spread malware; Mandiant discloses critical IoT vulnerability; and Misconfigured server leaks US Terror Watchlist.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

XSS Bug in SEOPress WordPress Plugin Allows Site Takeover – threatpost.com
CVE-2021-34641 – SEOPress WordPress plugin versions 5.0.0 – 5.0.3

Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang – securityintelligence.com

NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware – thehackernews.com
CVE-2020-1380 – A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
CVE-2021-26411 – Internet Explorer Memory Corruption Vulnerability

Mandiant Discloses Critical Vulnerability Affecting Millions of IoT Devices – fireeye.com
CVE-2021-28372 – ThroughTek’s Kalay Platform 2.0 network allows an attacker to impersonate an arbitrary ThroughTek (TUTK) device given a valid 20-byte uniquely assigned identifier (UID).

Malicious Ads Target Cryptocurrency Users With Cinobi Banking Trojan – thehackernews.com

Healthcare provider expected to lose $106.8 million following ransomware attack – therecord.media

Misconfigured Server Leaks US Terror Watchlist – infosecurity-magazine.com

Malware dev infects own PC and data ends up on intel platform – bleepingcomputer.com

Delivery Scams Most Prominent Form of Smishing – infosecurity-magazine.com

LockBit 2.0 Ransomware Proliferates Globally – threatpost.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by


Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world. Sign-up below to receive daily news directly to your inbox.

[ms-form id=1]

Leave a Reply