This week’s most mentioned cybersecurity topics have been covered in this newsletter for you. Latest developments, cyberattacks, data breaches, recent vulnerabilities, threat intelligence insights, and more.
Dark Web Insights
-
NSW Government Casual Recruiter Suffers Ransomware Hit
Learn more -
Facebook to Pay Hackers for Reporting Data Scraping Bugs and Scraped Datasets
Learn more -
Russian Hackers Leak Confidential UK Police Data on the “Dark Web” After Their Ransom was Rejected
Learn more -
S2W Noted Log4j-Related Vulnerability Attacks are Already Underway on the Dark Web
Learn more -
California Man Pleads Guilty To Dark Web Narcotics Distribution
Learn more
Critical Vulnerabilities
-
Second Log4j Vulnerability (CVE-2021-45046) Discovered — New Patch Released
CVE-2021-44228 | CVE-2021-45046 -
VMware 2FA Flaw Can Divulge That Vital Second Credential to Malicious Actors
CVE-2021-22057 -
Apple iOS Update Fixes Cringey iPhone 13 Jailbreak Exploit
CVE-2021-30955 -
New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability
CVE-2021-45105 | CVE-2021-4104 -
SAP Squashes SQL Injection, XSS Bugs in December Patch Round
CVE-2021-37714 | CVE-2021-42068 | CVE-2021-42070 | CVE-2021-42069 | CVE-2021-42069 -
Lenovo Laptops Vulnerable to Bug Allowing Admin Privileges
CVE-2021-3922 | CVE-2021-3969 -
MobileIron Customers Urged to Patch Systems Due to Potential Log4j Exploitation
Learn more -
TinyNuke Info-Stealing Malware is Again Attacking French Users
Learn more
Trending Threat Actors
-
Conti Ransomware Uses Log4j Bug to Hack VMware vCenter Servers
Learn more -
Clop Ransomware Gang is Leaking Confidential Data from the UK Police
Learn more -
Log4j: Conti Ransomware Attacking VMware Servers and TellYouThePass Ransomware Hits China
Learn more -
FBI’s Investigation Accidentally Revealed the HelloKitty Ransomware Gang Operates Out of Ukraine
Learn more -
Microsoft Spots Multiple Nation-State APTs Exploiting Log4j Flaw
Learn more -
Hackers Exploit Log4Shell to Drop Khonsari Ransomware on Windows Systems
Learn more -
“Seedworm” Attackers Target Telcos in Asia, Middle East
Learn more
Important Cybersecurity News
-
Credit Card Info of 1.8 Million People Stolen From Sports Gear Sites
Learn more -
Android Malware Warning: Over 500,000 Users Have Been Infected After Downloading This App From Google Play
Learn more -
Facebook Bans Spy-for-Hire Firms for Targeting 50K People
Learn more -
New PseudoManuscrypt Malware Infected Over 35,000 Computers in 2021
Learn more -
Spider-Man Movie Release Frenzy Bites Fans with Credit-Card Harvesting
Learn more -
New Stealthy DarkWatchman Malware Hides in the Windows Registry
Learn more -
This Company Was Hit With Ransomware But Didn’t Have to Pay Pp. Here’s How They Did It
Learn more