ClearInfosec TIB Logo
Date:Sep 01, 2021
 
      Cyber Security News
  ProxyShell Attacks Pummel Unpatched Exchange Servers
CISA is warning about a surge of ProxyShell attacks, as Huntress discovered 140 webshells launched against 1,900 unpatched Microsoft Exchange servers.
Read More...
  More than 12500 vulnerabilities disclosed in first half of 2021: Risk Based Security
Of the vulnerabilities disclosed in 2021, 1,425 are remotely exploitable and have a public exploit as well as a mitigating solution while nearly 900 vulnerabili...
Read More...
  Hackers netting average of nearly $10000 for stolen network access
The single most expensive offering seen by Intsights researchers was being offered for about $95,000.
Read More...
  Windows 10: Microsoft just revealed another Print Spooler bug
Microsoft discloses a new PrintNightmare bug and advises admins to disable the Print Spooler service to mitigate the issue.
Read More...
  SynAck ransomware group releases decryption keys as they rebrand to El_Cometa
Emsisoft is creating its own decryption utility based on the decryption keys released by the SynAck ransomware group.
Read More...
      Best Practices
  CSOs guide to the worst and most notable ransomware
Ransomware has a long history, dating back to the late 1980s. Today, it’s generating billions of dollars in revenue for the criminal groups behind it. Victim...
Read More...
  LockFile ransomware uses intermittent encryption to evade detection
A new ransomware threat called LockFile has been victimizing enterprises worldwide since July. Key to its success are a few new tricks that make it harder fo...
Read More...
  Chinas PIPL privacy law imposes new data handling requirements
As part of the country's growing scrutiny over the tech sector, China enacted on August 21 a sprawling and comprehensive data privacy law, the Personal Infor...
Read More...
  How ransomware runs the underground economy
The unwanted attention attracted by ransomware attacks recently have caused several of the top cybercrime forums to ban ransomware discussions and transactio...
Read More...
      New Threats and Vulnerabilities
  CVE-2021-29715
IBM API Connect 5.0.0.0 through 5.0.8.11 could alllow a remote user to obtain sensitive information or conduct denial of serivce attacks due to open ports. IBM ...
Read More...
  CVE-2021-30599
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Read More...
  CVE-2021-32076
Access Restriction Bypass via referrer spoof was discovered in SolarWinds Web Help Desk 12.7.2. An attacker can access the “Web Help Desk Get...
Read More...
  CVE-2021-36929
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
Read More...
  CVE-2021-37421
Zoho ManageEngine ADSelfService Plus 6103 and prior is vulnerable to admin portal access-restriction bypass.
Read More...
      Patch Management
  FBI warns of OnePercent ransomware gang – what you need to know
The FBI has published a warning about a ransomware gang called the OnePercent Group, which has been attacking US companies since November 2020. Read more in ...
Read More...
  Tech giants commit to Bidens cyber security action plan
Twitter has revealed that the vast majority of its users have ignored advice to protect their accounts with two-factor authentication (2FA) - one of the simples...
Read More...
  Ragnarok ransomware gang shuts down universal decryption key released
The notorious Ragnarok ransomware gang appears to have abruptly closed its operations and entered retirement, releasing a universal decryption key for its past ...
Read More...
  21-year-old tells WSJ he was behind massive T-Mobile hack
John Binns called T-Mobile's cybersecurity measures "awful."
Read More...
  Cybersecurity warning: Realtek flaw exposes dozens of brands to supply chain attacks
New attacks on IoT devices highlight weakness in the software supply chain.
Read More...