Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – August 17th

Aug 17, 2020By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities


Researchers disclosed proof-of-concept exploit code for an unpatched zero-day remote code execution vulnerability in vBulletin online-forum software that is already being actively exploited in the wild. The Hacker News: 


Michigan State University

Hackers breached Michigan State University’s online store, gaining access to more than 2,600 customer credit-card numbers and other personal information. Detroit News:



Walgreens reported a data breach affecting more than 180 US stores and 72,000 individuals containing healthcare information and customer records. Health Leaders Media:


Citrix Endpoint Management

Citrix released patches for security vulnerabilities that impact its Endpoint Management product, which helps companies to manage and secure employees’ mobile devices remotely. The Hacker News:


SANS Institute

This U.S.-based institute, which trains cybersecurity professionals worldwide, was hacked, resulting in the compromise of 28,000 records of personally identifiable information, the organization said Tuesday. CyberScoop:


Amazon Alexa

Researchers disclosed several security vulnerabilities in Amazon’s Alexa that could enable hackers to spy on users. The Hacker News:



Hackers are installing malware in projects using Xcode, an integrated development environment used to develop Apple-related software. The malware compromises Safari and other browsers. ZDNet:



A cyberattack on this alcoholic-beverage manufacturer including Jack Daniels impacted employee data and other information. Forbes:



This online exam-proctoring platform confirmed a data breach after a hacker released a stolen database of user information on a hacker forum. Bleeping Computer:


Boston University and Emerson College

These schools notified students and alumni about a potential data breach at Blackbaud, one of their third-party technology vendors. Boston Globe:

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.