Cyber Bites

Hellman fell victim to a cyberattack, which was confirmed on December 9th and initially impacted all connections to their central data centre. While business operations have since started back up, there has been an increase in customers reporting fraudulent calls and mails attempting to scam them out of money. The company is still investigating what type of data was stolen during the attack and will keep updating their customers with further information as the situation...

Customers of Microsoft are being cautioned to patch a couple of Active Directory domain service privilege escalation flaws that together could allow bad actors takeover of Windows domains. The two security updates go by CVE-2021-42287 and CVE-2021-42278 and were originally reported by Andrew Bartlett of Catalyst IT. The urgency to patch these security vulnerabilities escalated as a new proof-of-concept tool to leverage them appeared on Twitter and GitHub on 11th December.

Spiderman fans have been warned to watch out for the latest scam, in which fraudsters are using the hype around the newest film to spread malicious files and phishing pages. Kaspersky researchers have discovered that scammers are taking advantage of the latest installment of the super-hero franchise, by tricking fans into entering their payment details into phishing websites. Victims are lured in with false advertisements to a streaming website, purporting to show the new movie....

Around 1.8 million customers credit card details were stolen following a cyberattack on four affiliated online sporting goods websites. The incident took place on October 1st, 2021, affecting Tackle Warehouse LLC, Running Warehouse LLC, Tennis Warehouse LLC and Skate Warehouse LLC. The website owners only became aware of the incident on October 15th, 2021. An investigation was carried out which concluded that customers payment information was stolen. The details included customers' full names, financial account...

Reuters has reported exclusively on a simulated war game in which 10 countries, including Israel, the US, UK, Germany, Italy and Switzerland, cooperated to fight a mock cyberattack on the global financial system. The event evolved over 10 days as sensitive data emerged on the Dark Web and the war game used fake news reports that further increased chaos caused in global markets. The simulated attack was purported to have been caused by what officials...

The hackers responsible for the SolarWinds supply chain attacks have again been linked to multiple attacks targeting businesses and governments globally. The hacking group is continuing to refine and retool its methods at an incredible speed while targeting cloud solution providers, services and reseller companies. The intrusions are being actively tracked under two different activity clusters: UNC3004 and UNC2652. Both of these are associated with UNC2452, an uncategorised hacking group, which has been tied to...

A recent survey, conducted by GoodFirms, assesses the risk factors associated with password management and how to safeguard them from attacks or breaches. The results revealed that 30% of respondents reported password leaks and security breaches as a result of poor password practices. Surveyees admitted to making poor password choices, such as sharing them with colleagues, family members or friends; writing them on sticky notes, papers, planners; re-using passwords across multiple sites and only changing...

GOautodial, an open source call center software suite with 50,000 users around the world, has patched two vulnerabilities that could lead to information disclosure and remote code execution (RCE). Unearthed by Scott Tolley of the Synopsys Cybersecurity Research Center (CyRC), the first bug – tracked as CVE-2021-43175 – has been rated medium severity. An API router accepts a username, password, and action that routes to other PHP files that implement the various API functions. However, vulnerable versions of GOautodial validate the username and password incorrectly, allowing...

The National Institute of Standards and Technology (NIST) released analysis showing the number of vulnerabilities reported in 2021 was 18,378 this year. The figure set a record for the fifth year in a row, though the amount of high severity vulnerabilities fell when compared with 2020 There were 3,646 reported high risk vulnerabilities in 2021, as opposed to 2020's 4,381. This year, the number of medium and low risk vulnerabilities reported exceeded those seen in 2020...

A new Identity Fraud Report, conducted by Onfido, has revealed that passports are the most frequently attacked form of identity document. In fact, over the course of the past year, fraudsters increasingly forged passports as opposed to national identity cards. Onfido's researchers believe this to be a sign of fraudsters changing their methods: "they to target the one-sided passport page, rather than a two-sided ID card, and target the most high-assurance document in the hope...