Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – July 19th 2021

Jul 19, 2021By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

 

ForgeRock

Cybersecurity agencies warn users of ForgeRock’s OpenAM access management solution of a vulnerability that can execute arbitrary code on an affected system. The Hacker News: https://thehackernews.com/2021/07/critical-rce-flaw-in-forgerock-access.html

 

Iran transport agency

Iran’s transport and urbanization ministry websites went offline after a cyberattack, which also caused train delays and cancellations. The Guardian: https://www.theguardian.com/world/2021/jul/11/cyber-attack-hits-irans-transport-ministry-and-railways

 

SolarWinds

SolarWinds issued patches to mitigate a remote code execution flaw in its Serv-U managed file transfer service. The Hacker News: https://thehackernews.com/2021/07/a-new-critical-solarwinds-zero-day.html

 

Guess

The American fashion retailer is notifying customers of a data breach after a ransomware attack that led to data theft. Bleeping Computer: https://www.bleepingcomputer.com/news/security/fashion-retailer-guess-discloses-data-breach-after-ransomware-attack/

 

Candiru

Microsoft and Citizen Lab discovered Israeli spyware made by Candiru that targets people in Europe based on their political beliefs. The spyware leverages two zero-day vulnerabilities in Windows. Vice: https://www.vice.com/en/article/bvz5yv/israeli-spyware-vendor-candiru-zero-day-exploits-microsoft-citizen-lab

 

iOS

The hackers that orchestrated the SolarWinds attack also exploited a vulnerability in iOS to steal authentication credentials from Western European governments. Arstechnica: https://arstechnica.com/gadgets/2021/07/solarwinds-hackers-used-an-ios-0-day-to-steal-google-and-microsoft-credentials/

 

Team Shirts

An online organization that creates soccer jerseys for amateur clubs experienced a cyberattack where hackers gained access to servers and stored data like addresses and passwords. Herald Scotland: https://www.heraldscotland.com/news/homenews/19441202.team-shirts-targeted-vicious-organised-cyber-attack/

 

Comparis

Hackers launched a ransomware attack on the Swiss price comparison website and stole client data. Swissinfo.ch: https://www.swissinfo.ch/eng/ransomware-attack-at-comparis-resulted-in-data-breach/46789448

 

EA Games

Hackers released 1.3GB of the data stolen from EA Games in a cyberattack that occurred in June. The data includes references to internal tools and its Origin store. Video Games Chronicle: https://www.videogameschronicle.com/news/hackers-have-started-releasing-parts-of-stolen-ea-data-publicly/

 

Russian Defense Ministry

Foreign hackers targeted the Russian Defense Ministry with a DDoS attack but did not breach the technical infrastructure. The Jerusalem Post: https://www.jpost.com/breaking-news/russian-defense-ministry-website-targeted-by-foreign-cyberattack-674093

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.