Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – May 10th 2021

May 10, 2021By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

 

Colonial Pipeline

Hackers hit one of the United States’ largest refined-oil pipelines with a ransomware attack that forced it to shut down operations preemptively. The company feared that the hackers might have information that would enable them to attack sections of the pipeline. The New York Times:https://www.nytimes.com/2021/05/08/us/politics/cyberattack-colonial-pipeline.html

 

Apple

Apple released an emergency update to iOS, macOS, and watchOS to fix four zero-day vulnerabilities that were being actively exploited in the wild. The Hacker News: https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html

 

21Nails

Maintainers of the Exim email software released patches to fix 21 vulnerabilities, known as 21Nails, that could enable hackers to take over servers. The Record: https://therecord.media/21nails-vulnerabilities-impact-60-of-the-internets-email-servers/

 

Insight Global

Pennsylvania lawmakers announced a data breach that compromised the personal information of 70,000 residents who participated in the state’s COVID contact-tracing program. The Progress News: http://www.theprogressnews.com/news/state/contact-tracing-data-breach-in-pennsylvania-warrants-investigation-lawmakers-say/article_d8959242-c8fd-5c76-96e3-740bc6b58838.html

 

Glovo

Hackers broke into an administrator platform belonging to Spanish rapid-delivery startup Glovo. The company says that the hacker did not access client card data. WHBL: https://whbl.com/2021/05/04/spanish-delivery-startup-glovo-hit-by-cyber-attack/

 

Scripps Health

Scripps Health, a California-based healthcare network, switched to an offline chart system after hackers attacked their servers. NBC San Diego:https://www.nbcsandiego.com/news/local/cyberattack-on-scripps-health-creates-disruptions-forces-some-rescheduling/2594291/

 

Schepisi Communications

This Melbourne Australia-based telecommunications provider experienced a cyberattack that exposed SIM-card information. ARN: https://www.arnnet.com.au/article/688127/telstra-partner-falls-victim-cyber-attack/

 

Dell

DBUtil, a driver that some Dell machines install and load during the BIOS update process, contains a collection of five bugs that, if exploited, could lead to a hacker gaining increased privileges. Bleeping Computer:https://www.bleepingcomputer.com/news/security/vulnerable-dell-driver-puts-hundreds-of-millions-of-systems-at-risk/

 

Peloton

A bug in Peloton’s API exposed customer user data, including details hidden on their profiles. TechCrunch: https://techcrunch.com/2021/05/05/peloton-bug-account-data-leak/

 

NHS Digital

The process for booking Covid vaccinations on the UK’s National Health Service website leaked confidential medical data. If a user had basic personal details of anyone, they could find out that individual’s vaccination status. The Guardian: https://www.theguardian.com/world/2021/may/06/nhs-covid-jab-booking-site-leaks-peoples-vaccine-status

 

Cisco

Cisco released patches to address critical vulnerabilities in HyperFlex HX and SD-WAN vManage Software that enabled hackers to launch code injection attacks. Cisco said there are no workarounds that remediate the issues. The Hacker News: https://thehackernews.com/2021/05/critical-flaws-hit-cisco-sd-wan-vmanage.html

 

US Agency for Global Media

The US Agency for Global Media disclosed a data breach that exposed the personal information of current and former employees. A phishing attack caused the breach in December 2020. Bleeping Computer: https://www.bleepingcomputer.com/news/security/us-agency-for-global-media-data-breach-caused-by-a-phishing-attack/

 

Qualcomm

Researchers discovered a new vulnerability in Qualcomm’s mobile station modems that could enable an attacker to leverage the Android operating system to put malicious code onto mobile phones. The Hacker News: https://thehackernews.com/2021/05/new-qualcomm-chip-bug-could-let-hackers.html

 

Belnet

Hackers targeted Belgium’s Belnet internet network, which connects public institutions, higher education and public administrations, with a DDoS attack. The attack impacted 200 organizations and canceled several parliamentary committees. Euractiv: https://www.euractiv.com/section/politics/short_news/belgium-suffers-major-cyber-attack/

 

Spectre

A new Spectre attack exploits micro-operations caches, on-chip components that decompose machine instructions to simpler commands that speed up computing. The Hacker News: https://thehackernews.com/2021/05/new-spectre-flaws-in-intel-and-amd-cpus.html

 

Windows Defender

A bug in Windows Defender creates thousands of small files and takes up gigabytes of storage space on Windows 10 hard drives. Bleeping Computer: https://www.bleepingcomputer.com/news/microsoft/windows-defender-bug-fills-windows-10-boot-drive-with-thousands-of-files/

 

Philippines Solicitor General

Hackers accessed more than 300,000 files that contained sensitive information belonging to the Office of the Solicitor General of the Philippines. The hacker gained access to a misconfigured cloud database. Security Boulevard: https://securityboulevard.com/2021/05/embarrassing-data-breach-for-solicitor-general/

 

Akva

This Norwegian technology group reported significant first-quarter losses because of a cyberattack that shut down its IT systems. Yahoo Finance: https://finance.yahoo.com/news/akva-group-asa-cyber-attack-073000114.html

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.