cyber attack news

Javascript anti-debugging in Chromium Devtools; Conti ransomware group gaining affiliates; Indonesia probes suspected data breach in Covid-19 application

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

New Malware Uses Novel Fileless Technique to Evade Detection – darkreading.com

Javascript Anti Debugging — Some Next Level Sh*t (Part 2— Abusing Chromium Devtools Scope Pane) – medium.com

Google’s TensorFlow drops YAML support due to code execution flaw – bleepingcomputer.com
– CVE-2021-37678

Conti Ransomware Threat Rising as Group Gains Affiliates – databreachtoday.com

Indonesia Probes Suspected Data Breach on COVID-19 App – Expert Comments – informationsecuritybuzz.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

APT groups using Windows 11 in phishing attacks; Atlassian Confluence vulnerability being actively exploited; and Babuk ransomware source code leaked on hacker forum.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

FIN7 Capitalizes on Windows 11 Release in Latest Gambit – threatpost.com

US Cyber Command Warns of Ongoing ‘Mass Exploitation’ of Critical Confluence Vuln – darkreading.com
– CVE-2021-26084 – Confluence Server and Data Center versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.

Babuk ransomware’s full source code leaked on hacker forum – bleepingcomputer.com

2 UK Telecom Firms Under DDoS Attacks – databreachtoday.com

Accellion Breach Impacts Beaumont Health – infosecurity-magazine.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

Cisco patches critical TACACS+ authentication bug in Cisco Enterprise NFV Infrastructure Software; New Malware family utilizes CLFS log files to hide second stage; and US farm loses $9 million in aftermath of ransomware attack.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

Gift Card Gang Extracts Cash From 100k Inboxes Daily – krebsonsecurity.com

FTC Bans Stalkerware App in Industry First – infosecurity-magazine.com

FBI: Sextortion complaints spike leads to $8 million in losses – bleepingcomputer.com

Cisco Patches Critical Authentication Bug With Public Exploit – threatpost.com
– CVE-2021-34746 – TACACS+ authentication, authorization and accounting (AAA) feature of Cisco Enterprise NFV Infrastructure Software (NFVIS)

This New Malware Family Using CLFS Log Files to Avoid Detection – thehackernews.com

SEC fines eight investment firms for cybersecurity breaches that leaked client info – zdnet.com

US farm loses $9 million in the aftermath of a ransomware attack – therecord.media

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

WordPress plug-ins plagued with bugs; Autodesk reveals it was targeted by Russian SolarWinds hackers; and an analysis on new Quebec, Canada vaccine passport application reveals flaws in integrity.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

Gutenberg Template Library & Redux Framework Bugs Plague WordPress Sites – threatpost.com
– CVE-2021-38312 – **Reserved**
– CVE-2021-38314 – **Reserved**

Comcast RF Attack Leveraged Remotes for Surveillance – threatpost.com

Autodesk reveals it was targeted by Russian SolarWinds hackers – bleepingcomputer.com

Attackers Keep Refining Business Email Compromise Schemes – databreachtoday.com

Sacked Employee Deletes 21GB of Credit Union Files – infosecurity-magazine.com

Flaw in the Quebec vaccine passport: analysis – welivesecurity.com

Ransomware gangs target organizations during holidays and weekends – helpnetsecurity.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

STRRAT: a Java-based RAT that doesn’t need Java; Bangkok airlines hacked data leaked online; and new details on LockFile ransomware regarding, unique, intermittent encryption technique.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

LockBit gang leaks Bangkok Airways data, hits Accenture customers – bleepingcomputer.com

Data stolen from Bangkok Air in ransomware attack published on the dark web – siliconangle.com

Dreamtime Supply to pay $1.18 million to Steadfast ICT following employee breaches – arnnet.com.au

Banksy NFT Scammer Returns £240,000 to Victim – infosecurity-magazine.com

Vulnerability Allows Remote DoS Attacks Against Apps Using Linphone SIP Stack – securityweek.com
– CVE-2021-33056 – Belledonne Belle-sip before 4.5.20, as used in Linphone and other products, can crash via an invalid From header in a SIP message.

STRRAT: a Java-based RAT that doesn’t care if you have Java – isc.sans.edu

SEC Sanctions 8 Firms for ‘Deficient Cybersecurity Procedures’ – bankinfosecurity.com

LockFile Ransomware uses a new intermittent encryption technique – cyberclub.info

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

Sault Ste. Marie Police Service in the midst of ransomware attack; Indiana medical center, CarePointe ENT, hit with ransomware; and Microsoft suggests you to patch ProxyToken bug to avoid having email snooped on.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

Sault police dealing with a ransomware attack; emphasize public safety not affected – ctvnews.ca

Ransomware attack in Indiana affects 49K patients – healthcareitnews.com

Fujitsu customer data is reportedly being sold on the dark web – techradar.com

Microsoft Exchange ‘ProxyToken’ Bug Allows Email Snooping – threatpost.com
– CVE-2021-33766 – Microsoft Exchange Information Disclosure Vulnerability

DuPage Medical Group notifying 600,000 patients about a data breach – chicago.suntimes.com

Indonesia probes suspected data breach on COVID-19 app – msn.com

Canada accepted 7,300 more immigration applications due to technical bug – bleepingcomputer.com

Scammers Impersonate OpenSea Customer Support – databreachtoday.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

A defenders guide to Cobalt Strike; China’s hack on Microsoft might have been for a bigger purpose than just spying; and Bahraini government hacks activists with NSO Group zero-click iPhone exploit.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

Cobalt Strike, a Defender’s Guide – thedfirreport.com

Bangkok Airways reports cyberattack – bangkokpost.com

China’s Microsoft Hack May Have Had A Bigger Purpose Than Just Spying – npr.org

Bahraini Government Hacks Activists with NSO Group Zero-Click iPhone Exploits – citizenlab.ca

Remotely Hijacking Zoom Clients – medium.com
– CVE-2018-15715 – Zoom clients on Windows (before version 4.1.34814.1119), Mac OS (before version 4.1.34801.1116), and Linux (2.4.129780.0915 and below)

T-Mobile CEO: Hacker brute-forced his way through our network – bleepingcomputer.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

Microsoft warning of phishing attacks using http redirects; fake DMCA complaints leading to BazaLoader infection; and LockFile using intermittent file encryption to evade protection.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

Parallels Offers ‘Inconvenient’ Fix for High-Severity Bug – threatpost.com
– CVE-2021-34864 – ** Reserved **

Microsoft Azure Cosmos DB Guidance – us-cert.cisa.gov

Microsoft warns of widespread open redirection phishing attack – which Defender can block, coincidentally – theregister.com

LockFile Ransomware Bypasses Protection Using Intermittent File Encryption – thehackernews.com

Fake DMCA complaints, DDoS threats lead to BazaLoader malware – bleepingcomputer.com

Annke network video recorder vulnerability could see attackers seize control of security cameras – portswigger.net
– CVE-2021-32941 – **Reserved**

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world.

FIN8 returns with new version of BadHatch backdoor, dubbed Sardonic. Data exposed belonging to Android gamers due to insecure database; and “Sophisticated” cyber attack compromises over 70k patient records at Singapore private eye clinic.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

FIN8 Targets US Bank With New ‘Sardonic’ Backdoor – threatpost.com
– FIN8 BadHatch IOC’s

Critical Azure Cosmos DB Bug Allows Full Cloud Account Takeover – threatpost.com

Chinese developers expose data belonging to Android gamers – zdnet.com

“Sophisticated” Cyber-Attack Compromises Patient Data at Private Health Clinic – infosecurity-magazine.com

EPCOR USA Telephone Service Vendor Impacted by Ransomware – finance.yahoo.com

San Andreas Regional Center Notifies Current and Former Consumers of Data Breach Incident – ca.finance.yahoo.com

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world. Sign-up below to receive daily news directly to your inbox.

Talk to your kids about the dangers of cyberbullying with back to school season here; 70% of security pros believe cyber insurance is making ransomware attacks worse; and Ragnarok ransomware gang abruptly shuts down, leaks master decryption key.

#cybersecuritynews #infosecnews #ransomware #databreach #cyberattack

Headlines

Cyberbullying ‘very prevalent’ with Island youth, say Charlottetown police – cbc.ca

70% of Cyber Pros Believe Cyber Insurance is Exacerbating Ransomware – infosecurity-magazine.com

FBI shares technical details for Hive ransomware – bleepingcomputer.com

Win10 Admin Rights Tossed Off by Yet Another Plug-In – threatpost.com

Ragnarok ransomware releases master decryptor after shutdown – bleepingcomputer.com

Cybersecurity Experts Worried by Chinese Firm’s Control of Smart Devices  – voanews.com

Microsoft Breaks Silence on Barrage of ProxyShell Attacks – threatpost.com
– CVE-2021-34473
– CVE-2021-34523
– CVE-2021-31207

Cybersecurity Daily News is a curated list of relevant Cybersecurity and Information Security news from around the globe.

Brought to you by

---

Cybersecurity Daily News is a curated list of daily data breach, ransomware, and other cybersecurity related news articles produced by Rogue Security Intelligence Services from sources all over the world. Sign-up below to receive daily news directly to your inbox.