Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Polyverse Weekly Breach Report – Mar. 9th 2020

Mar 9, 2020By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities


Visser, a manufacturer of parts for space and defense contractors, announced a data breach. The likely culprit is DoppelPaymer, a new kind of file-encrypting ransomware. With the object of allowing attackers to later publish stolen data, this malware exfiltrates victims’ data before encrypting files. To read more:


WordPress plugins

Hackers continue to exploit vulnerabilities in WordPress plugins. The attacks attempt to hijack sites before administrators apply security patches. To read more:



This provider of free WiFi at UK railway stations confirmed a data breach that exposed 146m records. To read more:


Let’s Encrypt

Non-profit certificate authority Let’s Encrypt is revoking more than 3m TLS certificates. The certificates may have been issued incorrectly because of a bug. To read more:


US property and demographic database

Over 200m records containing property-related information on US residents were exposed in a database on Google Cloud. The database was eventually taken offline, but not until more than a month after researchers discovered it and alerted Google’s security team. To read more:


Toyota, Hyundai, Kia

Researchers discovered that hackers exploit radio-enabled keys to steal vehicles. These thefts are possible because of a flaw in how Toyota, Hyundai and Kia implement an encryption system called DST80. To read more:


Virgin Media

A data breach at Virgin Media exposed the personal details of 900,000 customers. To read more:


PPP daemon

A 17-year-old remote code-execution vulnerability exists in PPP daemon software, which is preinstalled on Linux operating systems. To read more:


Intel CSME

A patched vulnerability in Intel CSME is worse than previously thought. All but the latest generation of chips are vulnerable to exploitation. To read more:



A bug in the mobile app of Walgreens, a large US pharmacy chain, leaked customers’ prescription data. To read more:


Carnival Corp

Cruise operator Carnival Corp announced that it was targeted by cyberattacks last year. To read more:



A lawsuit was filed against gaming company Zynga over a data breach that exposed 173m users. The breach occurred in September 2019. To read more:



UK-based pharmacy-chain Boots suspended payments using the Boots Advantage loyalty card after a hacker broke into customer accounts. Fewer than 150,000 users were affected. To read more:


Google Authenticator

New malware was discovered that steals 2FA codes generated by the Google Authenticator app. The malware works on Android devices and is a hybrid between a banking trojan and a remote-access trojan. To read more:



Clothes retailer J.Crew reported a data breach that occurred in April 2019 and exposed customer information. To read more:


Trident Crypto Fund

A hacker published the usernames and passwords of more than 120,000 customers of this “crypto investment index fund.” To read more:



Microsoft is warning users about Netwalker, a new ransomware strain that injects malicious code into Windows 10 Explorer executables. To read more:



Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.