2021, Information Security and Security - Information Management Today

Microsoft Patches Six Zero-Day Security Holes

Krebs on Security

JUNE 8, 2021

Microsoft today released another round of security updates for Windows operating systems and supported software, including fixes for six zero-day bugs that malicious hackers already are exploiting in active attacks. June’s Patch Tuesday addresses just 49 security holes — about half the normal number of vulnerabilities lately.

Security

Security Ransomware Phishing Cloud

Finnish police linked APT31 to the 2021 parliament attack

Security Affairs

MARCH 26, 2024

The Finnish Police attributed the attack against the parliament that occurred in March 2021 to the China-linked group APT31. The Finnish Police attributed the March 2021 attack on the parliament to the China-linked group APT31. According to the police, the offences were committed between autumn 2020 and early 2021.

Communications

Communications Government Access Security

ENISA provides data related to major telecom security incidents in 2021

Security Affairs

JULY 28, 2022

ENISA published a report that includes anonymised and aggregated information about major telecom security incidents in 2021. ENISA published a report that provides anonymized and aggregated information about major telecom security incidents in 2021. SecurityAffairs – hacking, telecom security incidents).

Security

Security Authentication Communications IT

CISA published 2021 Top 15 most exploited software vulnerabilities

Security Affairs

APRIL 28, 2022

Cybersecurity and Infrastructure Security Agency (CISA) published a list of 2021’s top 15 most exploited software vulnerabilities. Cybersecurity and Infrastructure Security Agency (CISA) published the list of 2021’s top 15 most exploited software vulnerabilities. ” reads the advisory published by CISA.

Cybersecurity

Cybersecurity Security Risk Government

Security Affairs most-read cyber stories of 2021

Security Affairs

JANUARY 1, 2022

Which are the most-read cyber stories of 2021? The development team behind the Linux Mint distro has fixed a security flaw that could have allowed users to bypass the OS screensaver. The development team behind the Linux Mint distro has fixed a security flaw that could have allowed users to bypass the OS screensaver.

Security

Security Libraries Ransomware Passwords

The worst cyber attacks of 2021

Security Affairs

JANUARY 3, 2022

Which are the cyber attacks of 2021 that had the major impact on organizations worldwide in terms of financial losses and disruption of the operations? According to Bloomberg , CNA Financial opted to pay the ransom two weeks after the security breach because it was not able to restore its operations. The pipeline allows carrying 2.5

Ransomware

Ransomware Cybersecurity Access Insurance

Security expert published NMAP script for Apache CVE-2021-41773 vulnerability

Security Affairs

OCTOBER 9, 2021

Security expert Dhiraj Mishra published an NMAP script for the CVE-2021-41773 Path Traversal vulnerability affecting Apache Web Server version 2.4.49. Security researcher Dhiraj Mishra released an NMAP script for the CVE-2021-41773 path traversal vulnerability affecting Apache Web Server version 2.4.49. Patch ASAP!

Security

Security IT Cybersecurity Information Security

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

Security Affairs

JANUARY 2, 2022

According to a report published by Invezz, the number of crypto security breaches increased by up 850% in the last decade. In 2021 we observed a spike in crypto heists, $4.25 billion worth of cryptos were stolen by cybercriminals in 2021. In 2021 we observed a spike in crypto heists, $4.25 Pierluigi Paganini.

Security

Security Marketing IT Information Security

WEIS 2021 Call for Papers

Schneier on Security

FEBRUARY 18, 2021

The 20th Annual Workshop on the Economics of Information Security (WEIS 2021) will be held online in June. We just published the call for papers.

Paper

Paper Information Security Security

CVE-2021-3490 – Pwning Linux kernel eBPF on Ubuntu machines

Security Affairs

JULY 30, 2021

Researcher published an exploit code for a high-severity privilege escalation flaw (CVE-2021-3490) in Linux kernel eBPF on Ubuntu machines. The security researcher Valentina Palmiotti published a blog post that contains technical details about the flaw along with the exploit code that works on fresh installs of both Ubuntu 20.10

Security

Security IT Cybersecurity Information Security

China-linked APT UNC3886 exploits VMware zero-day since 2021

Security Affairs

JANUARY 19, 2024

China-linked group UNC3886 has been exploiting vCenter Server zero-day vulnerability CVE-2023-34048 since at least late 2021. Mandiant researchers reported that China-linked APT group UNC3886 has been exploiting vCenter Server zero-day vulnerability CVE-2023-34048 since at least late 2021. ” concludes the report.

Authentication

Authentication Access Cloud IT

April 2021 Security Patch Day fixes a critical flaw in SAP Commerce

Security Affairs

APRIL 15, 2021

April 2021 Security Patch Day includes 14 new security notes and 5 updates to previously released notes, one of them fixes a critical issue in SAP Commerce. SAP Security Note #3040210 , tagged with a CVSS score of 9.9 ” reads the advisory published by SAP security firm Onapsis.

Security

Security IT Information Security

VMware has yet to fix CVE-2021-22048 flaw in vCenter Server disclosed one year ago

Security Affairs

OCTOBER 11, 2022

VMware has yet to address the CVE-2021-22048 privilege escalation vulnerability in vCenter Server disclosed in November 2021. VMware warns customers that it has yet to address a high-severity privilege escalation vulnerability, tracked as CVE-2021-22048 , in the vCenter Server. SecurityAffairs – hacking, CVE-2021-22048 ).

Authentication

Authentication Access Security IT

Experts warn of attacks exploiting CVE-2021-40438 flaw in Apache HTTP Server

Security Affairs

NOVEMBER 29, 2021

Threat actors are exploiting the recently patched CVE-2021-40438 flaw in Apache HTTP servers, warns German Cybersecurity Agency and Cisco. Threat actors are exploiting a recently addressed server-side request forgery (SSRF) vulnerability, tracked as CVE-2021-40438, in Apache HTTP servers. SecurityAffairs – hacking, CVE-2021-40438).

Information Security

Information Security Communications Cybersecurity Security

Apache Log4j 2.17.1 fixes new remote code execution flaw (CVE-2021-44832)

Security Affairs

DECEMBER 29, 2021

version to address recently discovered arbitrary code execution flaw tracked as CVE-2021-44832. version to address a recently discovered arbitrary code execution flaw, tracked as CVE-2021-44832, affecting Log4j 2.17.0. CVE-2021-44832 is the fifth vulnerability discovered in the popular library in the last weeks. and 2.12.4)

Libraries

Libraries Security IT Information Security

0patch releases unofficial patches for CVE-2021-24084 Windows 10 zero-day

Security Affairs

NOVEMBER 28, 2021

0patch released free unofficial patches for Windows local privilege escalation zero-day ( CVE-2021-24084 ) in Windows 10, version 1809 and later. 0patch released free unofficial patches for Windows local privilege escalation zero-day (CVE-2021-24084) in Windows 10, version 1809 and later. Pierluigi Paganini.

Access

Access Security IT Cybersecurity

Apple fixes CVE-2021-30807 flaw, the 13th zero-day this year

Security Affairs

JULY 26, 2021

Apple released a security update that addresses CVE-2021-30807 flaw in macOS and iOS that may have been actively exploited to deliver malware. Apple addressed a security flaw, tracked as CVE-2021-30807, in macOS and iOS that may have been actively exploited to plant malware on vulnerable devices. iOS 14.7.1, iOS 14.7.1,

Security

Security IT Cybersecurity Information Security

Microsoft Patch Tuesday security updates for November 2021 fix 2 Zero-Days actively exploited

Security Affairs

NOVEMBER 9, 2021

Microsoft Patch Tuesday security updates for November 2021 address 55 vulnerabilities in multiple products and warn of two actively exploited issues. “We are aware of limited targeted attacks in the wild using one of vulnerabilities ( CVE-2021-42321 ), which is a post-authentication vulnerability in Exchange 2016 and 2019.

Security

Security Authentication IT Information Security

CVE-2021-31166 Windows HTTP flaw also impacts WinRM servers

Security Affairs

MAY 23, 2021

The wormable CVE-2021-31166 vulnerability in the HTTP Protocol Stack of the Windows IIS server also affects WinRM on Windows 10 and Server systems. The security researcher Axel Souchet has published over the weekend a proof-of-concept exploit code for the wormable flaw that impacted Windows IIS. Pierluigi Paganini.

Risk

Risk Security Access IT

Why information assurance and security is important in 2021

OpenText Information Management

APRIL 22, 2021

In March 2021, Chinese hackers broke into Microsoft Exchange Server and stole emails from over 250,000 customers worldwide. Today’s information security is the combination of cyber security, information governance, … The post Why information assurance and security is important in 2021 appeared first on OpenText Blogs.

Security

Security Information governance Information Security Government

Crooks bypass a Microsoft Office patch for CVE-2021-40444 to spread Formbook malware

Security Affairs

DECEMBER 23, 2021

Crooks discovered how to bypass the patch for a recent Microsoft Office vulnerability (CVE-2021-40444) and are using it to distribute Formbook malware. Cybercriminals have found a way to bypass the patch for a recent Microsoft Office vulnerability tracked as CVE-2021-40444 (CVSS score of 8.8). Pierluigi Paganini.

Archiving

Archiving File names Ransomware Security

CVE-2021-31805 RCE bug in Apache Struts was finally patched

Security Affairs

APRIL 13, 2022

The Apache Software Foundation urges organizations to address a vulnerability, tracked as CVE-2021-31805, affecting Struts versions ranging 2.0.0 Using forced OGNL evaluation on untrusted user input can lead to a Remote Code Execution and security degradation.”. “The fix issued for CVE-2020-17530 ( S2-061 ) was incomplete.

Cybersecurity

Cybersecurity Security IT Information Security

CVE-2021-38647 OMIGOD flaw impacts IBM QRadar Azure

Security Affairs

OCTOBER 3, 2021

Experts warn that CVE-2021-38647 OMIGOD flaws affect IBM QRadar Azure and can be exploited by remote attackers to execute arbitrary code. The Open Management Infrastructure RPM package in the IBM QRadar Azure marketplace images is affected by a remote code execution vulnerability tracked as CVE-2021-38647. Pierluigi Paganini.

Security

Security IT Information Security

CVE-2021-44731 Linux privilege escalation bug affects Canonical’s Snap Package Manager

Security Affairs

FEBRUARY 18, 2022

Qualys experts found a new Linux privilege escalation vulnerability, tracked as CVE-2021-44731, in Canonical’s Snap Package Manager. Canonical’s Snap software packaging and deployment system are affected by multiple vulnerabilities, including a privilege escalation flaw tracked as CVE-2021-44731 (CVSS score 7.8).

Security

Security Information Security IT

Japanese computers hit by a wiper malware ahead of 2021 Tokyo Olympics

Security Affairs

JULY 24, 2021

Japanese researchers spotted an Olympics-themed wiper targeting Japanese users ahead of the 2021 Tokyo Olympics. Tokyo Olympics could be a great opportunity for cybercriminals and malware authors, the US FBI warned p rivate US companies of cyberattacks that might attempt to disrupt the 2021 Tokyo Olympics. Pierluigi Paganini.

File names

File names Access Security IT

Data breaches and cyber attacks in 2021: 5.1 billion breached records

IT Governance

JANUARY 20, 2022

Welcome to our review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 1,243 security incidents in 2021, which accounted for 5,126,930,507 breached records. How security incidents occurred.

Data breaches

Data breaches Ransomware Phishing Government

Expert released PoC exploit code for Microsoft Exchange CVE-2021-42321 RCE bug

Security Affairs

NOVEMBER 23, 2021

The researcher Janggggg has published on Sunday a proof-of-concept exploit code for an actively exploited vulnerability, tracked as CVE-2021-42321 , in Microsoft Exchange servers. The CVE-2021-42321 is a high-severity remote code execution issue that occurs due to improper validation of cmdlet arguments. Pierluigi Paganini.

Authentication

Authentication Security IT Information Security

CVE-2021-20090 actively exploited to target millions of IoT devices worldwide

Security Affairs

AUGUST 7, 2021

Threat actors are actively exploiting a critical authentication bypass issue (CVE-2021-20090 ) affecting home routers with Arcadyan firmware. Threat actors actively exploit a critical authentication bypass vulnerability, tracked as CVE-2021-20090 , impacting home routers with Arcadyan firmware to deploy a Mirai bot.

IoT

IoT Authentication Manufacturing Security

Cyber Defense Magazine – February 2021 has arrived. Enjoy it!

Security Affairs

FEBRUARY 2, 2021

Cyber Defense Magazine February 2021 Edition has arrived. 108 PAGESLOADED WITH EXCELLENT CONTENT Learn from the experts, cybersecurity best practices Find out about upcoming information security related conferences, expos and trade shows. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

IT

IT Cybersecurity Marketing Information Security

VMware fixed CVE-2021-22045 heap-overflow in Workstation, Fusion and ESXi

Security Affairs

JANUARY 6, 2022

VMware addressed a heap-overflow issue (CVE-2021-22045) in Workstation, Fusion and CVE-2021-22045 products that can lead to code execution on the hypervisor. VMware released security updates to address a heap-overflow vulnerability, tracked as CVE-2021-22045, in its Workstation, Fusion and ESXi products.

Cloud

Cloud Access Security IT

Cyber Defense Magazine – May 2021 has arrived. Enjoy it!

Security Affairs

MAY 5, 2021

Cyber Defense Magazine March 2021 Edition has arrived. Cyber Defense Magazine May 2021. OVER 90+ PAGESLOADED WITH EXCELLENT CONTENT Learn from the experts, cybersecurity best practices Find out about upcoming information security related conferences, expos and trade shows. appeared first on Security Affairs.

IT

IT Cybersecurity Information Security Government

Trend Micro details CVE-2021-30724 privilege escalation flaw in macOS, iOS

Security Affairs

JUNE 4, 2021

Trend Micro disclosed technical details of a patched privilege escalation issue, tracked as CVE-2021-30724 , that impacts macOS, iOS and iPadOS. Trend Micro researchers disclosed technical details of a patched privilege escalation vulnerability, tracked as CVE-2021-30724 , that impacts macOS, iOS, and iPadOS. and iPadOS 14.6.

Communications

Communications Access IT Security

VMware warns of the public availability of CVE-2021-39144 exploit code

Security Affairs

OCTOBER 31, 2022

VMware warned of the existence of a public exploit targeting a recently addressed critical remote code execution (RCE) vulnerability, tracked as CVE-2021-39144 (CVSS score of 9.8), in NSX Data Center for vSphere (NSX-V). “VMware has confirmed that exploit code leveraging CVE-2021-39144 against impacted products has been published.”

Libraries

Libraries Cloud Security IT

CISA adds Linux kernel flaw CVE-2021-3493 to its Known Exploited Vulnerabilities Catalog

Security Affairs

OCTOBER 21, 2022

CISA added a Linux kernel vulnerability, tracked as CVE-2021-3493, to its Known Exploited Vulnerabilities Catalog. Cybersecurity and Infrastructure Security Agency (CISA) this week added a Linux kernel vulnerability, tracked as CVE-2021-3493 , to its Known Exploited Vulnerabilities Catalog. Pierluigi Paganini.

IT

IT IoT Cybersecurity Risk

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Security Affairs

OCTOBER 30, 2021

MITRE and CISA announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. MITRE and the DHS’s Cybersecurity and Infrastructure Security Agency (CISA) have announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list.

Manufacturing

Manufacturing Education Access Security

Clop ransomware gang was testing MOVEit Transfer bug since 2021

Security Affairs

JUNE 9, 2023

Researchers discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. Kroll security experts discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. ” reads the analysis published by the security firm.

Ransomware

Ransomware Retail Access Personal data

USCYBERCOM and CISA warn organizations to fix CVE-2021-26084 Confluence flaw

Security Affairs

SEPTEMBER 3, 2021

USCYBERCOM is urging organizations to patch a critical CVE-2021-26084 flaw in Atlassian Confluence Server and Data Center, ahead of the Labor Day weekend. . US Cyber Command (USCYBERCOM) has issued an alert to warn US organizations to address Atlassian Confluence CVE-2021-26084 vulnerability immediately, ahead of the Labor Day weekend.

Authentication

Authentication Ransomware Security Government

Samba fixed CVE-2021-44142 remote code execution flaw

Security Affairs

JANUARY 31, 2022

Samba fixes a critical flaw, tracked as CVE-2021-44142 , that can allow remote attackers to execute code with root privileges. Samba has addressed a critical vulnerability, tracked as CVE-2021-44142 , that can be exploited by remote attackers to gain code execution with root privileges on servers running vulnerable software.

Metadata

Metadata Access Security IT

CVE-2021-26333 AMD Chipset Driver flaw allows obtaining sensitive data

Security Affairs

SEPTEMBER 17, 2021

Chipmaker AMD has addressed a vulnerability in PSP driver, tracked as CVE-2021-26333 , that could allow an attacker to obtain sensitive information from the targeted system. ” reads the security advisory. ” reads the advisory published by the security firm. SecurityAffairs – hacking, CVE-2021-26333).

Authentication

Authentication Security Access IT

Google discloses technical details of Windows CVE-2021-24093 RCE flaw

Security Affairs

FEBRUARY 25, 2021

Google Project Zero team disclosed the details of a recently patched remote code execution vulnerability (CVE-2021-24093) in Windows Operating system. The flaw was addressed with the release of February 2021 Patch Tuesday updates. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Security

Security IT Information Security

Expert released PoC exploit code for Windows CVE-2021-31166 bug

Security Affairs

MAY 17, 2021

A security researcher has published a working proof-of-concept exploit code for a wormable Windows IIS server vulnerability tracked as CVE-2021-31166. The security researcher Axel Souchet has published over the weekend a proof-of-concept exploit code for the wormable flaw that impacted Windows IIS. Pierluigi Paganini.

Security

Security IT Cybersecurity Information Security

CVE-2021-3560 flaw in polkit auth system service affects most of Linux distros

Security Affairs

JUNE 12, 2021

An authentication bypass vulnerability in the polkit auth system service, tracked as CVE-2021-3560 , which is used on most Linux distros can allow an unprivileged attacker to get a root shell. ” reads the description published by the security advisory. ” reads the description published by the security advisory.

Authentication

Authentication Security IT Cybersecurity

Threat actors use recently discovered CVE-2021-26084 Atlassian Confluence

Security Affairs

SEPTEMBER 30, 2021

Threat actors are actively exploiting the recently disclosed CVE-2021-26084 RCE vulnerability in Atlassian Confluence deployments. At the end of August, Atlassian released security patches to address the critical CVE-2021-26084 flaw that affects the Confluence enterprise collaboration product. link] — U.S.

Mining

Mining Authentication Marketing Security

Twitter says recently leaked user data are from 2021 breach

Security Affairs

DECEMBER 13, 2022

Twitter confirmed that the recent leak of members’ profile information resulted from the 2021 data breach disclosed in August 2022. Twitter confirmed that the recent data leak of millions of profiles resulted from the 2021 data breach that the company disclosed in August 2022. ” the source told 9to5Mac.

Data breaches

Data breaches Sales Authentication Archiving

Microsoft Patches Six Zero-Day Security Holes

Finnish police linked APT31 to the 2021 parliament attack

Trending Sources

ENISA provides data related to major telecom security incidents in 2021

CISA published 2021 Top 15 most exploited software vulnerabilities

Security Affairs most-read cyber stories of 2021

The worst cyber attacks of 2021

Security expert published NMAP script for Apache CVE-2021-41773 vulnerability

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

WEIS 2021 Call for Papers

CVE-2021-3490 – Pwning Linux kernel eBPF on Ubuntu machines

China-linked APT UNC3886 exploits VMware zero-day since 2021

April 2021 Security Patch Day fixes a critical flaw in SAP Commerce

VMware has yet to fix CVE-2021-22048 flaw in vCenter Server disclosed one year ago

Experts warn of attacks exploiting CVE-2021-40438 flaw in Apache HTTP Server

Apache Log4j 2.17.1 fixes new remote code execution flaw (CVE-2021-44832)

0patch releases unofficial patches for CVE-2021-24084 Windows 10 zero-day

Apple fixes CVE-2021-30807 flaw, the 13th zero-day this year

Microsoft Patch Tuesday security updates for November 2021 fix 2 Zero-Days actively exploited

CVE-2021-31166 Windows HTTP flaw also impacts WinRM servers

Why information assurance and security is important in 2021

Crooks bypass a Microsoft Office patch for CVE-2021-40444 to spread Formbook malware

CVE-2021-31805 RCE bug in Apache Struts was finally patched

CVE-2021-38647 OMIGOD flaw impacts IBM QRadar Azure

CVE-2021-44731 Linux privilege escalation bug affects Canonical’s Snap Package Manager

Japanese computers hit by a wiper malware ahead of 2021 Tokyo Olympics

Data breaches and cyber attacks in 2021: 5.1 billion breached records

Expert released PoC exploit code for Microsoft Exchange CVE-2021-42321 RCE bug

CVE-2021-20090 actively exploited to target millions of IoT devices worldwide

Cyber Defense Magazine – February 2021 has arrived. Enjoy it!

VMware fixed CVE-2021-22045 heap-overflow in Workstation, Fusion and ESXi

Cyber Defense Magazine – May 2021 has arrived. Enjoy it!

Trend Micro details CVE-2021-30724 privilege escalation flaw in macOS, iOS

VMware warns of the public availability of CVE-2021-39144 exploit code

CISA adds Linux kernel flaw CVE-2021-3493 to its Known Exploited Vulnerabilities Catalog

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Clop ransomware gang was testing MOVEit Transfer bug since 2021

USCYBERCOM and CISA warn organizations to fix CVE-2021-26084 Confluence flaw

Samba fixed CVE-2021-44142 remote code execution flaw

CVE-2021-26333 AMD Chipset Driver flaw allows obtaining sensitive data

Google discloses technical details of Windows CVE-2021-24093 RCE flaw

Expert released PoC exploit code for Windows CVE-2021-31166 bug

CVE-2021-3560 flaw in polkit auth system service affects most of Linux distros

Threat actors use recently discovered CVE-2021-26084 Atlassian Confluence

Twitter says recently leaked user data are from 2021 breach

Stay Connected