CyberSec Roundup
A synopsis of the Latest Cybersecurity News

DENSO hacked by Pandora

The global automotive components manufacturer was hit with a ransomware attack by the Pandora Ransomware group early in March. DENSO confirmed the attack and that they were able to limit the scope of the breach to the German division only. DENSO avoided any disruption to their supply chain, unlike Kojima Industries, after their incident. It appears that DENSO has not agreed to pay the ransom as the Pandora group has begun leaking the stolen documents.

Avoslocker Ransomware Warning

The Federal Bureau of Investigation released a cybersecurity advisory last week which warned various critical infrastructure sectors that they were being targeted by threat actors using AvosLocker ransomware. Companies in these sectors were provided with information to help them recognize and mitigate AvosLocker attacks, along with common vulnerabilities which are exploited in these situations, such as common Microsoft Exchange Server vulnerabilities (CVE-2021-26855 & CVE-2021-31207).

CirenegRAT biting Low Hanging Fruit

Cybersecurity firm AhnLab is warning administrators that unsecured Microsoft SQL and MySQL database servers that have not been patched recently are being targeted by threat actors to deploy CirenegRAT malware. The remote access trojan is used to establish a connection with the hacker’s server to steal information and take control of the compromised server. It is advised that strong credentials are used on these servers and the most recent patches be applied.

By: David Pinder
IT & Security Consultant
Certified Ethical Hacker (Master)