Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – Oct. 11th

Oct 11, 2021By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities


Apache Airflow

Researchers discovered exposed instances of Apache Airflow leaking sensitive information from well-known tech companies. Airflow is an open-source workflow management platform. Bleeping Computer:


Sandhills Global

Sandhills Global, which hosts a range of online entities from publications to auction sites, experienced a ransomware attack last week, taking its systems and operations offline. Agweb:


Apache webserver

The Apache Software Foundation released a security patch to address a zero-day vulnerability in its HTTP Web Server project. The Record:


UEFI bootkit

Researchers discovered a new bootkit malware that can be traced back to 2012. The malware roots in the EFI System Partition and persists through a patch in the Windows Boot Manager. ZDNet:



A hacker published 125GB of source-code repositories, creator payouts, proprietary software-development kits, and other internal data from Twitch, a video-game streaming company owned by Amazon. Tech Crunch:


Several days after the cyberattack was made public, hackers adorned Twitch users’ screens with a picture of Amazon founder Jeff Bezos. GeekWire:


Gustafson & Co

A Portland, Oregon, accounting firm settled with the state after a 2020 data breach compromised the personal and financial information of 1,900 Oregonians. The Oregonian:


Lodi Unified School District

A cybersecurity incident took down the network, computers and phone lines of this California school system. The district has not confirmed whether it was a ransomware attack. CBS Sacramento:


State-backed hacks

Microsoft said that Russia accounted for 58% of the state-sponsored hacking it had detected over the past year; other major attackers include North Korea, Iran, China, Turkey and Vietnam. The hacks targeted government agencies, think tanks and NATO members, among others. The Register:


FontOnLake malware

Researchers found a new malware campaign targeting entities in Southeast Asia with Linux malware engineered to enable remote access. The Hacker News:



Hackers hit one of Scotland’s biggest engineering firms with a ransomware attack, forcing it to shut down some operations. The company estimates that the incident will cost it up to £5m. BBC:



Hackers exposed students’ and alumnis’ confidential academic files from Los Angeles private school Harvard-Westlake. The students include children of billionaires, influential political donors, and well-known actors. The Hollywood Reporter:

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.