ClearInfosec TIB Logo
Date:Sep 08, 2021
 
      Cyber Security News
  FBI warns of ransomware attacks targeting food and agriculture sector as White House pushes for proactive measures
In addition to the May attack on JBS, the FBI listed dozens of ransomware incidents that have taken place over the last six months targeting the food sector.
Read More...
  CISA urges IT teams to address critical vulnerability affecting Cisco Enterprise Network Function Virtualization Infrastructure Software
CISA said a remote attacker could exploit the vulnerability to take control of an affected system.
Read More...
  Microsoft CISA urge use of mitigations and workarounds for Office document vulnerability
Microsoft said disabling the installation of all ActiveX controls in Internet Explorer mitigates the attack.
Read More...
  SEC fines eight investment firms for cybersecurity breaches that leaked client info
Thousands of people had their personal information leaked by eight SEC-registered broker dealers and investment advisory firms over the last three years.
Read More...
  SpyFone & CEO Banned From Stalkerware Biz
The FTC's first spyware ban nixes a company whose "slipshod" security practices led to exposure of thousands of victims' illegally collected personal data.
Read More...
      Best Practices
  9 notable government cybersecurity initiatives of 2021
Cybersecurity has steadily crept up the agenda of governments across the globe. This has led to initiatives designed to address cybersecurity issues that thr...
Read More...
  Critical flaw in Atlassian Confluence actively exploited
Hackers have started exploiting a critical remote code execution vulnerability that was patched recently in Atlassian Confluence Server and Data Center. Some...
Read More...
  Security and privacy laws regulations and compliance: The complete guide
This directory includes laws, regulations and industry guidelines with significant security and privacy impact and requirements. Each entry includes a link t...
Read More...
      New Threats and Vulnerabilities
  CVE-2021-26436
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36930.
Read More...
  CVE-2021-28550
Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier) and 2017.011.30194 (and earlier) are affected by a Use After Free...
Read More...
  CVE-2021-30606
Use after free in Blink in Google Chrome prior to 93.0.4577.63 allowed an attacker who convinced a user to drag and drop a malicous folder to a page to potentia...
Read More...
  CVE-2021-34765
A vulnerability in the web UI for Cisco Nexus Insights could allow an authenticated, remote attacker to view and download files related to the web application. ...
Read More...
  CVE-2021-40539
Zoho ManageEngine ADSelfService Plus version 6113 and prior is vulnerable to REST API authentication bypass with resultant remote code execution.
Read More...
  CVE-2021-39503
PHPMyWind 5.6 is vulnerable to Remote Code Execution. Becase input is filtered without "<, >, ?, =, `,...." In WriteConfig() function, an attack...
Read More...
      Patch Management
  ICO in bid to end cookie pop-ups
Accenture appears to have been hit by the LockBit ransomware gang, who are offering to sell data stolen from the global consultancy firm to interested parties.
Read More...
  SEC fines eight investment firms for cybersecurity breaches that leaked client info
Thousands of people had their personal information leaked by eight SEC-registered broker dealers and investment advisory firms over the last three years.
Read More...
  WhatsApp patches vulnerability related to image filter functionality
Check Point Research discovered the vulnerability, which involved maliciously crafted image files.
Read More...
  Fed up with constant cyberattacks one country is about to make some big changes
Italy has faced a barrage of cyberattacks in recent weeks, and has struggled to cope with the fallout. But a new security agency and a fresh influx of funding c...
Read More...