Cybersecurity Highlights

This section registers the most relevant incidents or public events related to the cybersecurity and information and communication technologies (ICT), in a way that a chronological history of them is available, together with their main links, references and information sources.

Post related to: Vulnerability

QNAP devices affected by Qlocker and eCh0raix ransomware

Multiple devices from QNAP, a Taiwanese company specialising in NAS storage, have been affected by two types of ransomware, called Qlocker and eCh0raix, aimed at encrypting their NAS devices for...

References:

qnap.com

bleepingcomputer.com

genbeta.com

incibe.es

Tags:

Data breach at Codecov

After an investigation, the company Codecov, which offers an online platform for code testing, has confirmed a data breach via a supply chain attack affecting its Bash Uploader script.The incident,...

References:

about.codecov.io

securityweek.com

reuters.com

gizmodo.com

unaaldia.hispasec.com

Tags:

Microsoft warns that government-backed cybercriminals gained access to email systems

The Microsoft Threat Intelligence Center (MSTIC) has reported multiple 0-day exploits used by a Chinese state-sponsored threat actor to attack local versions of Microsoft Exchange Server in a...

References:

blogs.microsoft.com

microsoft.com

bleepingcomputer.com

20minutos.es

Tags:

Other critical infrastructures

Vulnerability

Windows

Cybercriminals compromise water treatment plant from Florida

The Pinellas County (Florida) Sheriff's Office has reported that the computer system at the City of Oldsmar's industrial drinking water treatment plant was compromised by cybercriminals who altered...

References:

pcsoweb.com

mass.gov

us-cert.cisa.gov

bleepingcomputer.com

thehackernews.com

theverge.com

Tags:

Industrial Control System

Public administration

Vulnerability

Water treatment

Cyberattacks aimed at a product of Accellion

Accellion, a company dedicated to providing cloud solutions for secure file sharing and business-to-business collaboration, has confirmed a security incident involving its File Transfer Application...

References:

accellion.com

incibe-cert.es

asic.ov.au

sao.wa.gov

unaaldia.hispasec.com

singtel.com

qimrberghofer.edu.au

ir.kroger.com

accellion.com

transport.nsw.gov.au

bombardier.com

accellion.com

blog.qualys.com

flagstar.com

Tags:

Public administration

Tool

Vulnerability

A company was victim of the same ransomware twice

Toby L., technical lead for Incident Management at the National Cyber Security Centre (NCSC), explains, in a new post, the evolution of ransomware and the importance for companies, which have...

References:

ncsc.gov.uk

zdnet.com

Tags:

Campaign targeting cybersecurity researchers detected

Google has identified an ongoing campaign targeting cybersecurity researchers working on study of vulnerabilities across multiple companies and organizations, suspected to be perpetrated by an...

References:

blog.google

bleepingcomputer.com

zdnet.com

unaaldia.hispasec.com

microsoft.com

blog.google

Tags:

The DarkIRC botnet aims to exploit vulnerable Oracle WebLogic servers

Researchers from Juniper Threat Labs have reported up to 5 types of cyberattacks against more than 3000 exposed Oracle WebLogic servers, including a botnet called DarkIRC.The goal of the...

References:

blogs.juniper.net

incibe-cert.es

bleepingcomputer.com

noticiasseguridad.com

bankinfosecurity.com

Tags:

Industrial Control System

Vulnerabilities in the EMV protocol allow payments without PIN

The contactless payment protocol for EMV bank cards, named after its founders Europay, Mastercard and Visa, contains several security flaws that allow criminals to make payments without using the...

References:

emvrace.github.io

hackread.com

welivesecurity.com

europapress.es

xataka.com

Tags:

FCM keys expose millions of users to spam and phishing

Security researcher Abhishek Dharani, known as Abss, has blogged an investigation related to a vulnerability in Firebase Cloud Messaging (FCM), a cloud solution for messages and notifications on...

References:

abss.me

portswigger.net

cybernews.com

nakedsecurity.sophos.com

Tags:

Corporate access

Cybersecurity Highlights

QNAP devices affected by Qlocker and eCh0raix ransomware

Data breach at Codecov

Microsoft warns that government-backed cybercriminals gained access to email systems

Cybercriminals compromise water treatment plant from Florida

Cyberattacks aimed at a product of Accellion

A company was victim of the same ransomware twice

Campaign targeting cybersecurity researchers detected

The DarkIRC botnet aims to exploit vulnerable Oracle WebLogic servers

Vulnerabilities in the EMV protocol allow payments without PIN

FCM keys expose millions of users to spam and phishing

Pages