Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – October 5th

Oct 5, 2020By Shaina Raskin

Windows XP

The source code for Microsoft Windows XP and Windows server 2003 was leaked online, the first time the OS has been leaked to the public. The Hacker News:


Universal Health Services

A major hospital chain is experiencing one of the largest medical cyberattacks in U.S. history. Its hospitals have resorted to filing patient information with pen and paper. NBC News:


Operation SideCopy

Researchers discovered a cyber-espionage campaign targeting Indian defense units and armed forces. The Hacker News:


Smart coffee machine

A security researcher discovered that he could hack a smart coffee machine without compromising the network or router it was connected to. Forbes:


District of Columbia Bar

A security lapse by Washington DC’s bar association exposed lawyers’ application files, including government IDs and background checks. Tech Crunch:


International Maritime Organization

This U.N. shipping agency announced that a cyberattack had disabled its website and intranet. gCaptain:


Microsoft Digital Defense Report

Microsoft published a new report that found hackers can in some cases encrypt an entire network in less than 45 minutes. ZDNet:



Hackers hit this major French shipping company with a ransomware attack. The company managed to contain the attack before it spread throughout its entire network. gCaptain:


Cache Creek Casino Resort

A cyberattack shut down this Northern California casino and caused an internal system infrastructure failure. Security Infowatch:


Flight-tracking services

Several flight-tracking services experienced a cyberattack that disrupted functionality and rendered them unusable for several hours. Latest Hacking News:


Ransomware gangs

According to new research, ransomware gangs are adding more sophisticated tools to their toolsets and increasing their ransom demands. ZDNet:


Clark County, Nevada

Hackers published documents containing grades and social-security numbers of students from Clark County, Nevada, after school officials refused to pay ransom demands to unlock district computer servers. Wall Street Journal:


Anthem data breach

America’s second-largest health insurer agreed to pay out $39.5m as part of a multi-state settlement in the wake of a cyberattack and data breach in 2014 that exposed the personal information of almost 80m Americans. Reuters:  


Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.