Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – Nov. 22nd 2021

Nov 22, 2021By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

 

Conti

The Conti ransomware gang released thousands of files stolen from UK jewelry retailer Graff. The hackers then apologized because some of the leaked files belonged to the UAE, Qatar and Saudi royal families — the last of which has a record of disposing of enemies. Vice: https://www.vice.com/en/article/n7nw8m/conti-ransomware-hackers-apologize-to-arab-royal-families-for-leaking-their-data

 

Netgear

Netgear released patches to fix a remote code-execution vulnerability in many of its SOHO routers. The Hacker News: https://thehackernews.com/2021/11/critical-root-rce-bug-affects-multiple.html?_m=3n%2e009a%2e2615%2eev0ao0doh3%2e1nvs

 

California Pizza Kitchen

California Pizza Kitchen is notifying current and former employees of a data breach that exposed their social security numbers. Gizmodo: https://gizmodo.com/california-pizza-kitchen-data-breach-exposed-over-100-0-1848084509

 

Southern Ohio Medical Center

A week after a ransomware attack, the Southern Ohio Medical Center is still canceling appointments. Healthcare IT News: https://www.healthcareitnews.com/news/ohio-health-system-forced-cancel-appointments-following-targeted-cyber-attack

 

Aruba Networks/HPE

Hackers stole a “limited subset” of customer data in a data breach at Aruba Networks, a subsidiary of HPE. TechCrunch: https://techcrunch.com/2021/11/15/hpe-aruba-data-breach/

 

Utah Imaging Associates

This Utah-based radiology center announced a data breach that exposed the personal information of 582,170 people. Bleeping Computer: https://www.bleepingcomputer.com/news/security/utah-medical-center-hit-by-data-breach-affecting-582k-patients/

 

Rowhammer

Researchers discovered new Rowhammer exploits that enable attackers to change or corrupt data stored in memory chips, including those with added defenses against such attacks. Ars Technica: https://arstechnica.com/gadgets/2021/11/ddr4-memory-is-even-more-susceptible-to-rowhammer-attacks-than-anyone-thought/

 

Firefox

Thousands of Firefox cookie databases are available on request from GitHub repositories. The Register: https://www.theregister.com/2021/11/18/firefox_cookies_github/

 

Vestas

One of the world’s largest wind-turbine makers announced that it had experienced a cyberattack, and was forced to shut down IT systems across multiple business units. Reuters: https://www.reuters.com/markets/europe/vestas-hit-by-cyber-security-incident-shuts-some-it-systems-2021-11-20/

 

Zelle fraud scam

Attackers are draining their victim’s bank accounts via Zelle, a peer-to-peer payment service, in phishing schemes where they pretend to be from the bank’s fraud department. Krebs on Security: https://krebsonsecurity.com/2021/11/the-zelle-fraud-scam-how-it-works-how-to-fight-back/

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.