North Korean hackers deploying browser exploits to spread malware; Mandiant discloses critical IoT vulnerability; and Misconfigured server leaks US Terror Watchlist.
#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack
XSS Bug in SEOPress WordPress Plugin Allows Site Takeover – threatpost.com
– CVE-2021-34641 – SEOPress WordPress plugin versions 5.0.0 – 5.0.3
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang – securityintelligence.com
NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware – thehackernews.com
– CVE-2020-1380 – A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
– CVE-2021-26411 – Internet Explorer Memory Corruption Vulnerability
Mandiant Discloses Critical Vulnerability Affecting Millions of IoT Devices – fireeye.com
– CVE-2021-28372 – ThroughTek’s Kalay Platform 2.0 network allows an attacker to impersonate an arbitrary ThroughTek (TUTK) device given a valid 20-byte uniquely assigned identifier (UID).
Malicious Ads Target Cryptocurrency Users With Cinobi Banking Trojan – thehackernews.com
Misconfigured Server Leaks US Terror Watchlist – infosecurity-magazine.com
Malware dev infects own PC and data ends up on intel platform – bleepingcomputer.com
Delivery Scams Most Prominent Form of Smishing – infosecurity-magazine.com
LockBit 2.0 Ransomware Proliferates Globally – threatpost.com
Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.
Brought to you by
Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world. Sign-up below to receive daily news directly to your inbox.