CyberSec Roundup
A synopsis of the Latest Cybersecurity News
Passwordstate under a series of attacks
The Australian software developer, Click Studios, had their enterprise password manager hacked in late April. User passwords were exposed for 28 hours before Click Studio fixed the exploit but advised all users to reset their passwords. But then the attackers managed to hack the password manager’s update facility, which distributed malware called Moserpass, that will harvest information from Passwordstate. All users were not affected by this vulnerability and Click Studios was supporting the affected customers with a hotfix via email. However, attackers are now impersonating Click Studios support and sending phishing emails to their customers to distribute Moserpass malware as the hotfix.
MPD of Washington DC held to ransom
The Metropolitan Police Department of the District of Columbia had its systems hit with a ransomware attack by The Babuk Locker Group. They stole 250 GB worth of files which, includes FBI arrest information, crime and gang activity reports. The group has threatened to release the information if the ransom is not paid.
UNC2447 APT group targets SonicWall appliances
The UNC2447 APT group has taken advantage of a zero-day vulnerability in SonicWall VPN devices to distribute FiveHands ransomware. The cybersecurity firm Mandiant discovered the group was exploiting the CVE-2021-20016 vulnerability before it was patched.
By: David Pinder
IT & Security Consultant
Certified Ethical Hacker