Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – Aug. 16th 2021

Aug 16, 2021By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

 

Israeli organizations

A Chinese cyber espionage group has apparently been targeting Israeli government institutions and other organizations since 2019. The Hacker News: https://thehackernews.com/2021/08/experts-believe-chinese-hackers-are.html

 

Arcadyan routers

Hackers are exploiting a critical authentication vulnerability to hijack home routers and co-opt them for botnets. The Hacker News: https://thehackernews.com/2021/08/hackers-exploiting-new-auth-bypass-bug.html

 

Poly Network

In the largest crypto theft in history, a self-styled white-hat hacker stole some $610m of cryptocurrencies from the Poly Network crypto platform, then returned most of it. The hacker said he wanted to expose security flaws in Poly. Business Insider: https://www.businessinsider.in/investment/news/the-tale-of-610-million-stolen-in-cryptocurrencies-who-stole-it-why-and-what-made-them-return-the-money/articleshow/85300739.cms 

 

Electromed

Electromed, a maker of products that relieve chronic respiratory conditions, announced a data breach. The company claims that the breach did not expose customer information. StarTribune: https://www.startribune.com/electromed-reveals-data-breach-offers-identity-theft-protection-to-customers/600086643/

 

Accenture

The LockBit ransomware gang hit Accenture with a ransomware attack. The hackers plan to publish the encrypted files on the dark web if Accenture does not pay the ransom. CNN: https://www.cnn.com/2021/08/11/tech/accenture-ransomware/

 

Morse code

Microsoft discovered a group of hackers using Morse code dots and dashes to hide attacks in Excel HTML. ZDNet: https://www.zdnet.com/article/this-unique-phishing-attack-uses-morse-code-to-hide-its-approach/

 

Microsoft Exchange

Hackers are actively scanning and exploiting unpatched Exchange servers using a new exploit chain. The Hacker News: https://thehackernews.com/2021/08/hackers-actively-searching-for.html

 

Rust malware

Researchers discovered a new malware-as-a-service written in Rust that steals sensitive information from Windows machines. The Hacker News: https://thehackernews.com/2021/08/experts-shed-light-on-new-russian.html

 

SeniorAdvisor

Researchers discovered a misconfigured AWS S3 bucket containing over 180GB of data that belongs to SeniorAdvisor, a ratings and reviews website for senior care. TechRadar: https://www.techradar.com/news/millions-of-seniors-hit-by-major-data-breach

 

Chanel Korea

After a cyberattack that leaked customer data from membership databases in the fragrance and beauty divisions, Chanel Korea issued an apology. Global Cosmetics News: https://www.globalcosmeticsnews.com/chanel-korea-apologizes-after-data-leak-following-cyber-attack/

 

Murata

This Japanese electronic-components manufacturer apologized for a data breach that leaked thousands of files, including bank-account information of employees and business partners. ZDNet: https://www.zdnet.com/article/japanese-electronic-components-manufacturer-murata-apologizes-for-breach-of-employee-and-customer-data/

 

PrintNightmare

Researchers at CrowdStrike observed new activity related to the patched PrintNightmare vulnerability. CrowdStrike: https://www.crowdstrike.com/blog/magniber-ransomware-caught-using-printnightmare-vulnerability/

 

Trend Micro

Trend Micro announced that hackers attempted to exploit two zero-day vulnerabilities in its Apex One EDR platform. The Record: https://therecord.media/hackers-tried-to-exploit-two-zero-days-in-trend-micros-apex-one-edr-platform/

 

Stolen network access

A new report found that the sale of network access on the dark web is a lucrative business, with an average sale price of almost $10,000. ZDNet: https://www.zdnet.com/article/hackers-netting-average-of-nearly-10000-for-stolen-network-access/

 

NYC schools

A group of Brooklyn Technical High School students uncovered a Google Drive with teachers’ social-security numbers, student academic records and home addresses open to the internet. Bklyner: https://bklyner.com/brooklyn-tech-students-uncovered-a-nyc-schools-data-breach/

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.