CyberSec Roundup A synopsis of the Latest Cybersecurity News   Passwordstate under a series of attacks The Australian software developer, Click Studios, had their enterprise password manager hacked in late April. User passwords were exposed for 28 hours before Click Studio fixed the exploit but advised all users to reset their passwords. But then the[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   CISA Issues directive for unpatched PCS devices Pulse Connect Secure VPN devices are being exploited with a zero-day vulnerability, according to a report by the cybersecurity firm FireEye. As many organizations in the US have been affected, the US Cybersecurity and Infrastructure Security Agency has[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   FBI cleans up infected Exchange Servers The FBI received a court order from the DOJ to remove any existing backdoors which were still up on compromised Microsoft Exchange Servers belonging to Americans. They specifically targeted Hafnium shells, and successfully removed shells from thousands of machines[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   SAP Apps under attack Hackers have been setting their sights on unsecured SAP applications. This was revealed in a report by SAP and Onapsis, where they divulged that 300 targets out of 1500 were compromised over the last few months. Applications that were targeted include[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Facebook User Data Leaked A serious vulnerability in Facebook’s website caused data from over 500 million Facebook user accounts to be accessed by hackers in 2019. The information has likely been sold within hacker communities since then, but it was recently released for free within[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Android Spyware Disguised as System Updates Most malware on Android devices resemble other apps, but there is a new form of spyware that appears as a system update. If the user is fooled by the malware, it connects the phone to a command-and-control server, where[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Acer Hit with Largest Ransom Ever Acer, the multinational Taiwanese computer company was hit with a ransomware attack by the REvil group. The group is demanding a $50 million ransom, which is the highest ever from a ransomware operator. Acer has not yet confirmed the[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Microsoft Exchange Servers under assault from hackers As various organizations lag in their efforts to patch their Exchange servers, the volume of attacks is increasing, as hackers attempt to take advantage of any organizations that may still be vulnerable. Microsoft has confirmed that a new[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Passenger Data Hacked from Airlines Worldwide SITA disclosed this week that their servers were hacked late in February. SITA provides IT and communications services to many airlines around the world, and it was their Passenger Service System servers that were compromised. SITA did not give[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Largest Private Ecuadorian Bank Hacked Banco Pichincha and Ecuador’s Ministry of Finance were both victims of a cyberattack last week, carried out by the Hotarus Corp hacking group. The group used different types of ransomware attacks to compromise organizations and steal sensitive information. The bank[…]