Home / Early Warning / Cybersecurity Highlights / Filter / Cybersecurity Highlights
Subscribe to CERTSI - Cybersecurity Highlights RSS

Cybersecurity Highlights

This section registers the most relevant incidents or public events related to the cybersecurity and information and communication technologies (ICT), in a way that a chronological history of them is available, together with their main links, references and information sources.
Post related to: Vulnerability

Supply-chain cyberattack against Kaseya VSA software

07/04/2021
Software company Kaseya, dedicated to offer IT solutions and products to managed service providers (MSP), confirmed that it has been the victim of sophisticated supply-chain cyberattack that...
References: 
helpdesk.kaseya.com
us-cert.cisa.gov
bleepingcomputer.com
bleepingcomputer.com
bleepingcomputer.com
xataka.com
thehackernews.com
Tags: 
0day
Cloud computing
Cybercrime
Cyberespionage
Encryption
Incident
Information leakage
Internet
Malware
Other critical infrastructures
Tool
Vulnerability

Microsoft warns that government-backed cybercriminals gained access to email systems

03/02/2021
The Microsoft Threat Intelligence Center (MSTIC) has reported multiple 0-day exploits used by a Chinese state-sponsored threat actor to attack local versions of Microsoft Exchange Server in a...
References: 
blogs.microsoft.com
microsoft.com
bleepingcomputer.com
20minutos.es
Tags: 
0day
Application
Cybercrime
Cyberespionage
Incident
Information leakage
Internet
Malware
Microsoft
Other critical infrastructures
Vulnerability
Windows

Cybercriminals compromise water treatment plant from Florida

02/08/2021
The Pinellas County (Florida) Sheriff's Office has reported that the computer system at the City of Oldsmar's industrial drinking water treatment plant was compromised by cybercriminals who altered...
References: 
pcsoweb.com
mass.gov
us-cert.cisa.gov
bleepingcomputer.com
thehackernews.com
theverge.com
Tags: 
Application
Chemical industry
Cybercrime
Health
Incident
Industrial Control System
Public administration
Vulnerability
Water treatment

Cyberattacks aimed at a product of Accellion

02/01/2021
Accellion, a company dedicated to providing cloud solutions for secure file sharing and business-to-business collaboration, has confirmed a security incident involving its File Transfer Application...
References: 
accellion.com
incibe-cert.es
asic.ov.au
sao.wa.gov
unaaldia.hispasec.com
singtel.com
qimrberghofer.edu.au
ir.kroger.com
accellion.com
transport.nsw.gov.au
bombardier.com
accellion.com
accellion.com
blog.qualys.com
flagstar.com
Tags: 
0day
Banking sector
Cloud computing
Cybercrime
Health
Incident
Public administration
Tool
Vulnerability

The DarkIRC botnet aims to exploit vulnerable Oracle WebLogic servers

12/01/2020
Researchers from Juniper Threat Labs have reported up to 5 types of cyberattacks against more than 3000 exposed Oracle WebLogic servers, including a botnet called DarkIRC.The goal of the...
References: 
blogs.juniper.net
incibe-cert.es
bleepingcomputer.com
noticiasseguridad.com
bankinfosecurity.com
Tags: 
Botnet
Cryptocurrency
Cybercrime
Cyberespionage
Incident
Industrial Control System
Information leakage
Internet
Malware
Vulnerability

Pages