News

Japanese cryptocurrency exchange Liquid says hackers have compromised some of its wallets and stolen more than $90 million. The firm’s operations and technology teams detected unauthorised access to “warm” wallets early Thursday. Warm wallets are based online. Crooks took over $91 million in crypto assets, of which just over $16 million was frozen thanks…

Breach Notification , Governance & Risk Management , Incident & Breach Response Firm Pays $1 Million Settlement After Regulator Says It Misled Investors and Victims Mathew J. Schwartz (euroinfosec) • August 17, 2021     When is a data exposure not just a data exposure? See Also: Forrester Consulting: Strained Relationship Between Security and IT…

Executive Summary Informations Name CVE-2021-34645 First vendor Publication 2021-08-19 Vendor Cve Last vendor Modification 2021-08-19 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA impact SubScore NA Temporal Score NA Exploitabality Sub Score NA   Calculate full CVSS 3.0 Vectors scores Security-Database Scoring CVSS v2 Cvss…

HolesWarm crypto malware hits unpatched Linux, Windows servers | IT Security News Android App Android App with push notifications Sponsors Endpoint Cybersecurity www.endpoint-cybersecurity.com – Consulting in building your security products– Employee awareness training– Security tests for applications and pentesting… and more. Daily Summary Categories CategoriesSelect Category(ISC)2 Blog  (323)(ISC)2 Blog infosec  (13)(ISC)² Blog  (409)2020-12-08 – Files for an ISC…

Japan-based cryptocurrency exchange Liquid has suspended deposits and withdrawals after attackers have compromised its warm wallets. Liquid is one of the largest cryptocurrency-fiat exchange platforms worldwide (based on daily traded spot volume). The exchange has more than 800,000 customers from over 100 countries and says that it reached a $1.1B+ daily trade volume this year….

Unpatched Fortinet Bug Would Allow Remote Attackers To Execute Arbitrary Commands | IT Security News Android App Android App with push notifications Sponsors Endpoint Cybersecurity www.endpoint-cybersecurity.com – Consulting in building your security products– Employee awareness training– Security tests for applications and pentesting… and more. Daily Summary Categories CategoriesSelect Category(ISC)2 Blog  (323)(ISC)2 Blog infosec  (13)(ISC)² Blog  (409)2020-12-08 – Files…

Breach Notification , Cybercrime , Cybercrime as-a-service 40 Million Credit Applications Also Stolen; Social Security Numbers Exposed Mathew J. Schwartz (euroinfosec) • August 18, 2021     T-Mobile’s store in Times Square, New York (Photo: T-Mobile) T-Mobile USA has confirmed that its systems were breached and that investigators have found that details for 8.6 million…

Fraud Management & Cybercrime , Governance & Risk Management , Insider Threat Researchers Learn Details During a Telegram Chat With an Attacker Doug Olenick (DougOlenick) • August 19, 2021     Ransom demand screen provided by the attacker to Abnormal Security A Nigeria-based ransomware gang is conducting a campaign that dangles a $1 million bribe…

Governance & Risk Management , Government , Incident & Breach Response OIG Report: Bureau Did Not Properly Maintain Security Logs of Incident Scott Ferguson (Ferguson_Writes) • August 19, 2021     Photo: U.S. Census Bureau Following a breach of some of its servers in January 2020, the U.S. Census Bureau failed to follow standard cybersecurity…