Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – September 21st

Sep 21, 2020By Shaina Raskin

Cybersecurity companies

According to a new study, 97% of cybersecurity companies have data leaks and other security issues that result in sensitive information being exposed on the Dark Web. The Hacker News:


Department of Veterans Affairs

A cybersecurity breach at the Department of Veterans Affairs has potentially exposed the personal information of 46,000 veterans. FederalNewsNetwork:


Greenville Technical College

Greenville Technical College in South Carolina discovered malware-infected files on its systems that impacted its ability to access those systems. WSPA:


Dunkin’ Donuts Settlement

New York Attorney General Letitia James announced a settlement with Dunkin’ Brands, resolving a lawsuit over its failure to respond to successful cyberattacks that compromised tens of thousands of customers’ online accounts. SecurityMagazine:


First death caused by ransomware

For the first time, a hospital patient’s death has been linked directly to a cyberattack. Police have launched a “negligent homicide” investigation after ransomware disrupted emergency care at Düsseldorf University Hospital in Germany. TechnologyReview:


Android malware

An Iranian hacker group developed Android malware to steal two-factor-authentication SMS codes. The malware could steal codes for Google accounts and contained some functionality to do the same for Telegram and various social networks. ZDNet:



A company that provides online marketing tools left an Elasticsearch server unprotected online, exposing the personal data of hundreds of thousands of users who signed up for online dating sites. ZDNet:



Hackers hit California-based Equinix, one of the US’s largest datacenter providers, with a ransomware attack and demanded $4.5m in ransom. The Windows Club:


Manitoulin Transport

Following a ransomware attack on this large Canadian trucking company in July, hackers posted a cache of stolen data online. CDLLife:


Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.