Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – Nov. 15th 2021

Nov 15, 2021By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

 

FBI hack

The FBI confirmed that a hacker used its fbi.gov domain name and internet address to send fake emails about a cybercrime investigation. The hacker said he wanted to highlight a vulnerability in the FBI’s system. Krebs on Security: https://krebsonsecurity.com/2021/11/hoax-email-blast-abused-poor-coding-in-fbi-website/

 

DarkSide ransomware gang

The US State Department is offering a reward of $10m to anyone with information on leaders of the DarkSide ransomware gang. DarkSide attacked the Colonial Pipeline and caused temporary gas shortages on the East Coast. Wired: https://www.wired.com/story/darkside-ransomware-ukraine-russia-trojan-source-security-news/

 

Dallas Police Department

Distributed Denial of Secrets, an activist group similar to WikiLeaks, released a 600-hour leak of Dallas Police Department helicopter and Georgia State Patrol footage. Courthouse News: https://www.courthousenews.com/activists-leak-600-hours-of-mostly-dallas-police-helicopter-footage-after-citys-22-terabyte-loss-of-criminal-case-data/

 

Central Depository Services (India) Limited

A vulnerability at a CDSL subsidiary exposed the personal and financial data of 40m Indian investors twice in ten days. Business Standard: https://www.business-standard.com/article/companies/data-breach-at-cdsl-s-kyc-arm-exposed-43-9-mn-investors-details-cyberx9-121110700431_1.html

 

Robinhood

Robinhood’s shares fell after the company acknowledged a security breach that exposed two million people’s email addresses and personal information. Coin Desk: https://www.coindesk.com/business/2021/11/08/robinhood-shares-fall-after-reporting-data-security-breach/

 

Centara Hotels & Resorts

The Desorden hacking group attacked this luxury hotel group a second time after a $900,000 ransom deal with the company collapsed. CPO Magazine:https://www.cpomagazine.com/cyber-security/desorden-group-reportedly-hacks-centara-hotels-resorts-within-10-minutes-after-recovering-from-the-first-data-breach/

 

City of Bridgeport, West Virginia

Researchers discovered data belonging to the City of Bridgeport on the dark web after a ransomware attack. WBOY: https://www.wboy.com/news/harrison/data-stolen-in-bridgeport-ransomware-attack-found-on-dark-web/

 

Lister Fertility Clinic

Hackers stole data from this private UK fertility clinic in a ransomware attack that hit Stor-a-file Limited, a document-management company. Six of the 13 organizations impacted by the breach are in healthcare. Infosecurity Magazine: https://www.infosecurity-magazine.com/news/ransomwareattack-hits-uk-fertility/

 

Costco

Costco recently reported that it discovered a card skimmer at one of its Canadian warehouses. Costco notified shoppers of the hack but is unsure whether the criminal who installed the device retrieved any customer data. Forbes: https://www.forbes.com/sites/leemathews/2021/11/12/costco-discloses-data-breach-after-finding-card-skimmer-at-one-of-its-stores/?sh=7e538fb249fc

 

RedDoorz

A data breach at hospitality platform RedDoorz exposed the personal information of 5.9m customers. The Business Times: https://www.businesstimes.com.sg/garage/data-breach-at-reddoorz-hit-6m-customers-hospitality-platform-fined-s74000

 

Damn Brewery

Spain’s second-largest beer maker stopped production at its main brewery outside Barcelona following a cyberattack. Reuters: https://www.reuters.com/world/europe/cyber-attack-turns-off-taps-barcelonas-damm-brewery-2021-11-12/

 

Mediamarkt

More than 1,000 branches of Germany’s Mediamarkt, Europe’s largest consumer-electronics retailer, are dealing with a $50m ransomware attack that has apparently crippled the company’s retail systems. The Brussels Times: https://www.brusselstimes.com/news/world-all-news/192947/mediamarkt-cyber-attack-hackers-demand-50-million-in-bitcoin/

 

Void Balaur

A cyber-mercenary group is offering a hackers-for-hire service, and has already targeted thousands of individuals and organizations across the globe since 2015. ZDNet: https://www.zdnet.com/article/this-cyber-mercenary-hacking-group-has-targeted-thousands-of-victims-around-the-world/

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.