Clicky

Security

CVE-2021-21973

The vSphere Client (HTML5) contains an SSRF (Server Side Request Forgery) vulnerability due to improper validation of URLs in a vCenter Server plugin. A malicious actor with network access to port 443 may exploit this issue by sending a POST request to vCenter Server plugin leading to information disclosure.

Cyberpunk 2077’s next big patch delayed to second half of March after studio hack

Cyberpunk 2077’s next big patch has been delayed following developer CD Projekt Red’s disclosure that it fell victim to a ransomware attack earlier this month. The next big patch, 1.2, is now scheduled for a release sometime in the second half of March. “While we dearly wanted to deliver Patch 1.2 for Cyberpunk 2077 in …

Cyberpunk 2077’s next big patch delayed to second half of March after studio hack Read More »

Bombardier Statement on Cybersecurity Breach Toronto Stock Exchange:BBD-A

MONTREAL, Feb. 23, 2021 (GLOBE NEWSWIRE) — Bombardier (TSX: BBD.B) announced today that it recently suffered a limited cybersecurity breach. An initial investigation revealed that an unauthorized party accessed and extracted data by exploiting a vulnerability affecting a third-party file-transfer application, which was running on purpose-built servers isolated from the main Bombardier IT network. In …

Bombardier Statement on Cybersecurity Breach Toronto Stock Exchange:BBD-A Read More »

Updated Minebridge RAT Targets Security Researchers

Fraud Management & Cybercrime , Social Engineering Zscaler: Malware Buries Itself Into TeamViewer Theo Nassiokas, Head of Technology, Governance & Risk Controls, Westpac Group • February 24, 2021     Attack flow for Minebridge malware (Source: Zscaler) The operators behind the Minebridge remote-access Trojan have updated the malware, which is targeting security researchers by using …

Updated Minebridge RAT Targets Security Researchers Read More »

State sponsored cyber threats are a major concern for 80% of businesses around the world

Nearly eight in 10 businesses globally feel that the pandemic has increased the likelihood of a state-led or -sponsored cyberattack on their organisation, revealed a new survey by the Economist Intelligence Unit (EIU) and the Cybersecurity Tech Accord on Monday. The businesses call for greater international political cooperation to mitigate these state-sponsored threats. The survey …

State sponsored cyber threats are a major concern for 80% of businesses around the world Read More »

SolarWinds, Microsoft, FireEye, CrowdStrike executives face Senate grilling

Feb 23 (Reuters) – Top executives at Texas-based software company SolarWinds, digital giant Microsoft and cybersecurity firms FireEye and CrowdStrike are expected on Tuesday to defend their companies’ responses to a sprawling series of breaches blamed on Russian hackers when they face the U.S. Senate’s Select Committee on Intelligence. The four are expected to argue …

SolarWinds, Microsoft, FireEye, CrowdStrike executives face Senate grilling Read More »

Chinese Hacking Group ‘Cloned’ NSA Exploit Tool

Researchers: ‘Jian’ Hacking Tool Targeted Zero-Day Flaw in Windows Scott Ferguson (Ferguson_Writes) • February 22, 2021     A Chinese hacking group reportedly “cloned” and deployed a zero-day exploit developed by the U.S. National Security Agency’s Equation Group before Microsoft patched the Windows vulnerability that was being exploited in 2017, according to an analysis published …

Chinese Hacking Group ‘Cloned’ NSA Exploit Tool Read More »

NY Department of Financial Services Issues Cyber Fraud Alert to Auto Insurers – HOTforSecurity

The New York Department of Financial Services (NYDFS) has issued an alert to instant-quote websites, particularly car insurers, warning of a growing campaign to steal nonpublic information (NPI). The agency says it learned of the threat after receiving reports from auto insurers that cybercriminals were targeting their premium quote sites to steal driver’s license numbers. …

NY Department of Financial Services Issues Cyber Fraud Alert to Auto Insurers – HOTforSecurity Read More »

Attacks Targeting Accellion Product Linked to FIN11 Cybercrime Group

The hacking group behind the recent cyber-attack targeting Accellion’s FTA file transfer service appears to be linked to a threat actor known as FIN11, security researchers with FireEye’s Mandiant division reveal. The attacks on FTA, a soon-to-be-retired service, started in mid-December 2020 and resulted in the compromise of data pertaining to multiple Accellion customers. As …

Attacks Targeting Accellion Product Linked to FIN11 Cybercrime Group Read More »

Heimdal Security Blog | Bombardier data posted on ransomware leak site following FTA hack

At the beginning of the week, Accellion File Transfer Appliance (FTA) was subject to a security breach and extortion campaign orchestrated by the FIN11 group. Following the attacks, Accellion issued an official statement announcing that they have patched four FTA vulnerabilities that were known to be exploited by the threat actors, and incorporated new monitoring …

Heimdal Security Blog | Bombardier data posted on ransomware leak site following FTA hack Read More »

Scroll to Top