Each week Zacco tracks the latest cyber security threats, current industry news or trends and insights into the latest protection best practice. The Cyber Security Digest is a weekly compilation of the most significant developments within both cybersecurity and digital protection space, with links to further information on how it might affect you, your company or your clients.
Essential reading for cyber security professionals, as well as the general public, to keep you informed of current events and emerging threats.
Cyber security researchers from Zimperium discovered Phonespy malware spying on South Korean citizens. This malware was found on 23 different malicious apps and the victims have been broadcasting sensitive information to the hackers without their knowledge
Cyber security researchers of Claroty and JForg has discovered 14 new vulnerabilities in the BusyBox Linux utility. The vulnerabilities could have led to denial-of-service attacks and data leakage
Microsoft released patches for 55 vulnerabilities for November 2021. Among those 55 vulnerabilities, 6 are classified as critical and 49 as important. The locally exploitable vulnerabilities are at 68% and 28% are remotely exploitable.
Cybereason a security firm has discovered an Android malware named Snake. This malware is found in over 50 well-known android applications. It is capable of stealing user’s credentials and takes screenshots from user’s phone. The following are some of the few apps that are being affected by this malware Discord, Outlook, Avast secure browser, Brave, Edge, Opera and UC Browser
The U.S Cybersecurity and Infrastructure Security Agency has ordered the federal agencies to patch the security flaws within an aggressive timeframe. CISA has issued a catalogue of vulnerabilities that have known exploits and are being actively exploited. The catalogue also included patches from Apple, Cisco, Microsoft, and Google
Philips Tasy EMR is a healthcare informatics solution that is used by thousands of hospitals, mainly in South America. The vulnerability has got CVSS V3 severity score of 8.8. These vulnerabilities could be exploited to gather sensitive information such as patient records and finical data
Security Researchers from CISO identified that threat actors are targeting Microsoft’s exchange vulnerability to drop Babuk ransomware. The hackers have targeted countries like Germany, Thailand, Brazil, U.K., and most of the targets are U.S.-based.
Threat intelligence team Wordfence discovered multiple vulnerabilities on a popular WordPress plugin, OptinMonster. This plugin has already been installed on over 1 million WordPress websites. This vulnerability allows unauthorised API access to sensitive data on compromised websites
Lookout Threat Labs discovered 19 Android malicious applications. Among those only one managed to get into the Google Play Store and has around 10,000 downloads. The malware has been named as AbstractEmu. It can gain root access and can completely take over the device to add on. It even avoids detection
On Thursday, Google Thursday pushed an urgent security fix for the Chrome browsers, which fixes two vulnerabilities that are being actively exploited in the wild. The vulnerability is tracked as CVE-2021-38000 and CVE-2021-38003. This vulnerability was discovered and reported by TAG on 15th September 2021 and 26th October 2021
On Monday, Firefox disclosed that it has blocked two malicious addons named Bypass and Bypass XN. As it was found misusing the proxy API, to block security updates to the browser. A total of 4,45,000 users have installed this add-on on their browsers
A bug has been discovered in the WinRAR trialware file archiver utility for Windows. A remote attacker can execute arbitrary code on targeted systems. It has been tracked as CVE-2021-35052. This bug allows the attacker to intercept and modify requests sent to the user.
Cybersecurity experts from Security Detectives discovered an unsecured Elasticsearch server belonging to IGBlade.com, a social media analytic firm. The victims of a data breach includes celebrities like Alicia Keys, Loren Gray, Kylie Jenner, Ariana Grande and Kim Kardashian
The cybercrime gang FIN7 masqueraded themselves as a cybersecurity company called “Bastion Secure”, who are recruiting penetration testers to launch a ransomware attack. They are known for targeting restaurants, gambling, hospitality industries in the U.S.
Acer was hit by a cyberattack again in a few days after its compromise of servers in India. They have also breached some of its systems in Taiwan. The threat actors (Desorden) were behind this attack. They have posted advertising for 60 GB of data on an underground cybercrime forum
IT and consulting giant Accenture has confirmed a data breach after the Lockbit ransomware attack during August. Accenture has not confirmed the amount of data stolen by the ransomware gang. But cybersecurity firm Cybele reported that the gang has stolen a database containing 6TB of data and were demanding 50 million as ransom
