2021, Accountability, Information Security and Passwords

Top 10 web application vulnerabilities in 2021–2023

SecureList

MARCH 12, 2024

Profile of participants and applications We collected the data from a sample of the application security assessment projects our team completed in 2021–2023. Recommendations provided in these rankings are general in nature and based on information security best practices standards and guidelines, such as OWASP and NIST.

Passwords

Passwords Authentication Architecture Risk

Over 3.7 million accounts were compromised in the FlexBooker data breach

Security Affairs

JANUARY 7, 2022

million accounts. Threat actors compromised the FlexBooker accounts of more than 3.7 The threat actors claim the stolen database contains customer information, including names, emails, phone numbers, hashed passwords, and password salt. million accounts. ” states HIBP. Pierluigi Paganini.

Data breaches

Data breaches Accountability Passwords Cybercrime

The Have I Been Pwned service now includes 441K accounts stolen by RedLine malware

Security Affairs

DECEMBER 31, 2021

The Have I Been Pwned data breach notification service now includes credentials for 441K accounts that were stolen by RedLine malware. The service now includes credentials for 441K accounts stolen by the popular info-stealer. Internationally sourced data, exfiltrated in Sept and Aug 2021. Pierluigi Paganini.

Accountability

Accountability Malware Data breaches Passwords

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Study reveals top 200 most common passwords

Security Affairs

NOVEMBER 20, 2021

The annual study on top-used passwords published by Nordpass revealed that we are still using weak credentials that expose us to serious risks. Nordpass has published its annual report, titled “Top 200 most common passwords,” on the use of passwords. The report shows that we are still using weak passwords.

Passwords

Passwords Password Management Data breaches Authentication

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Security Affairs

DECEMBER 5, 2023

Microsoft warns that the Russia-linked APT28 group is actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts. The researchers noticed that the attackers also commonly employed multiple known vulnerabilities, including CVE-2023-38831 in WinRAR or CVE-2021-40444 in Windows MSHTML.

Accountability

Accountability Government Phishing Authentication

Microsoft announces passwordless authentication for consumer accounts

Security Affairs

SEPTEMBER 15, 2021

Microsoft announced that users can access their consumer accounts without providing passwords and using more secure authentication methods. “One of our recent surveys found that 15 percent of people use their pets’ names for password inspiration. . Follow me on Twitter: @securityaffairs and Facebook.

Authentication

Authentication Accountability Passwords Phishing

Box flaw allowed to bypass MFA and takeover accounts

Security Affairs

JANUARY 19, 2022

A vulnerability in the implementation of multi-factor authentication (MFA) for Box allowed threat actors to take over accounts. A vulnerability in the implementation of multi-factor authentication (MFA) for Box allowed attackers to take over accounts without having access to the victim’s phone, Varonis researchers reported.

Accountability

Accountability Authentication Passwords Data breaches

Bug bounty hunter awarded $50,000 for a Microsoft account hijack flaw

Security Affairs

MARCH 3, 2021

A researcher received a $50,000 bug bounty by Microsoft for having reported a vulnerability that could’ve allowed to hijack any account. Microsoft has awarded the security researcher Laxman Muthiyah $50,000 for reporting a vulnerability that could have allowed anyone to hijack users’ accounts without consent.

Accountability

Accountability Passwords Encryption Mobile

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Hackers are breaking into the AT&T email accounts and then using the access they are logging into the victim’s cryptocurrency exchange accounts to drain their crypto funds, TechCrunch reported.

Cryptocurrency

Cryptocurrency Accountability Passwords Hacking

Cyber Security Roundup for May 2021

Security Boulevard

MAY 3, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, April 2021. The UK Security Service MI5 said 10,000 staff from every UK government department and from important UK industries have been lured by fake LinkedIn profiles.

Ransomware

Ransomware Passwords Scams Government

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Security Affairs

FEBRUARY 10, 2022

The FBI reported that US citizens have lost more than $68 million to SIM swapping attacks in 2021, the number of complaints since 2018 and associated losses have increased almost fivefold. In 2021, IC3 received 1,611 SIM swapping complaints with adjusted losses of more than $68 million.”

Mobile

Mobile Cryptocurrency Authentication Accountability

Twitter says recently leaked user data are from 2021 breach

Security Affairs

DECEMBER 13, 2022

Twitter confirmed that the recent leak of members’ profile information resulted from the 2021 data breach disclosed in August 2022. Twitter confirmed that the recent data leak of millions of profiles resulted from the 2021 data breach that the company disclosed in August 2022. Source: Twitter account @sonoclaudio.

Data breaches

Data breaches Accountability Media Hacking

Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts

Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking

Banking Accountability Mobile Cryptocurrency

npm libraries coa and rc. have been hijacked to deliver password-stealing malware

Security Affairs

NOVEMBER 5, 2021

have been hijacked, threat actors replaced them with versions laced with password-stealing malware. The security team of the npm JavaScript package warns that two popular npm libraries, coa and rc. have been hijacked, threat actors replaced them versions laced with password-stealing malware. The last stable coa version 2.0.2

Passwords

Passwords Malware Accountability Hacking

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

“Unknown cyber criminals using Ranzy Locker ransomware had compromised more than 30 US businesses as of July 2021. The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, the information technology sector, and the transportation sector.”

Ransomware

Ransomware Firmware Antivirus Accountability

Large-scale AiTM phishing campaign targeted +10,000 orgs since 2021?

Security Affairs

JULY 12, 2022

Microsoft observed a large-scale phishing campaign that used adversary-in-the-middle (AiTM) phishing sites to steal passwords, hijack a user’s sign-in session, and bypass the authentication process even when the victim has enabled the MFA. The post Large-scale AiTM phishing campaign targeted +10,000 orgs since 2021? Pierluigi Paganini.

Phishing

Phishing Authentication Social Engineering Passwords

Twitter confirms zero-day used to access data of 5.4 million accounts

Security Affairs

AUGUST 5, 2022

million accounts was caused by the exploitation of a zero-day flaw. million Twitter accounts that were obtained by exploiting a now-fixed vulnerability in the popular social media platform. “This bug resulted from an update to our code in June 2021. . “This bug resulted from an update to our code in June 2021.

Accountability

Accountability Data breaches Authentication Media

North Korea-linked SharpTongue spies on email accounts with a malicious browser extension

Security Affairs

JULY 31, 2022

North Korea-linked threat actor SharpTongue is using a malicious extension on Chromium-based web browsers to spy on victims’ email accounts. North Korea-linked actor SharpTongue has been using a malicious extension on Chromium-based web browsers to spy on victims’ Gmail and AOL email accounts. In the last 12 months.

Accountability

Accountability Malware Passwords Hacking

New GoDaddy data breach impacted 1.2 million customers

Security Affairs

NOVEMBER 22, 2021

million of its managed WordPress customer accounts. Threat actors compromised the company network since at least September 6, 2021, but the security breach was only discovered by the company on November 17. “On November 17, 2021, we discovered unauthorized third-party access to our Managed WordPress hosting environment.”

Data breaches

Data breaches Passwords Accountability Phishing

LastPass investigated recent reports of blocked login attempts

Security Affairs

DECEMBER 28, 2021

Password manager app LastPass confirmed that threat actors have launched a credential stuffing attack against its users. “Someone just used your master password to try to log in to your account from a device or location we didn’t recognize,” reads the warnings. Was this you?” What the hell is going on?

Password Management

Password Management Passwords Accountability Authentication

Hackers accessed Mint Mobile subscribers’ data and ported some numbers

Security Affairs

JULY 10, 2021

Mint Mobile discloses a data breach, an unauthorized attacker gained access to subscribers’ account information and ported phone numbers. BleepingComputer reported that Mint Mobile has disclosed a data breach that exposed subscribers’ account information and ported phone numbers to another carrier.

Mobile

Mobile Data breaches Telecommunications Passwords

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. FatFace CEO Liz Evans released a statement which said “ On 17th January 2021 FatFace identified some suspicious activity within its IT systems.

Energy and Utilities

Energy and Utilities Ransomware Banking Hacking

Info stealers and how to protect against them

Security Affairs

DECEMBER 18, 2023

These pieces of malware are created with the intent of stealing valuable data, such as login credentials, financial information, personal details, and more. This data may include usernames, passwords, credit card numbers, social security numbers, and other sensitive information.

Banking

Banking Cybercrime Malware Accountability

CISA adds D-Link DIR router flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

MAY 17, 2024

CVE-2021-40655 An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT. CVE-2021-40655 An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT.

Firmware

Firmware Authentication Passwords Hacking

Mobile virtual network operator Mint Mobile discloses a data breach

Security Affairs

DECEMBER 23, 2023

. “We are writing to inform you about a security incident we recently identified in which an unauthorized actor obtained some limited types of customer information. Our investigation indicates that certain information associated with your account was impacted.”

Mobile

Mobile Data breaches Wireless Data collection

Mother of all breaches – a historic data leak reveals 26 billion records: check what’s exposed

Security Affairs

JANUARY 22, 2024

“The dataset is extremely dangerous as threat actors could leverage the aggregated data for a wide range of attacks, including identity theft, sophisticated phishing schemes, targeted cyberattacks, and unauthorized access to personal and sensitive accounts,” the researchers said. The leak’s scale is of yet unseen proportions.

Identity Theft

Identity Theft Data breaches Accountability Phishing

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Security Affairs

JANUARY 7, 2024

The group targets government entities, Kurdish (political) groups like PKK, telecommunication, ISPs, IT-service providers (including security companies), NGO, and Media & Entertainment sectors; Over the years, the group enhanced its evasion capabilities. Enable 2FA on all externally exposed accounts.

Media

Media Accountability Telecommunications Government

Expert found a secret backdoor in Zyxel firewall and VPN

Security Affairs

JANUARY 1, 2021

Zyxel addressed a critical flaw in its firmware, tracked as CVE-2020-29583 , related to the presence of a hardcoded undocumented secret account. The Taiwanese vendor Zyxel has addressed a critical vulnerability in its firmware related to the presence of a hardcoded undocumented secret account. Patch1 in April 2021 NXC5500 V6.10

Firewall

Firewall VPN Firmware Passwords

Microsoft AI research division accidentally exposed 38TB of sensitive data

Security Affairs

SEPTEMBER 18, 2023

The exposed data exposed a disk backup of two employees’ workstations containing secrets, private keys, passwords, and over 30,000 internal Microsoft Teams messages. “The researchers shared their files using an Azure feature called SAS tokens, which allows you to share data from Azure Storage accounts.” 5, 2021 Oct.

Accountability

Accountability Backups Risk Passwords

Venafi Wins 2021 CyberSecurity Breakthrough Awards

CyberSecurity Insiders

OCTOBER 1, 2021

SALT LAKE CITY–( BUSINESS WIRE )– Venafi , the inventor and leading provider of machine identity management, today announced that the company’s Trust Protection Platform won the “Identity Management Platform of the Year” award in the 2021 CyberSecurity Breakthrough Awards. For more information, visit: www.venafi.com.

Cybersecurity

Cybersecurity Digital transformation IoT Marketing

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

This exposure of sensitive credential and network access information, especially privileged user accounts, could lead to subsequent cyber attacks against individual users or affiliated organizations.” Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means.

Cybercrime

Cybercrime Education Accountability Phishing

A database containing data of +8.9 million Zacks users was leaked online

Security Affairs

JUNE 13, 2023

According to HIBP, the records in the database contain names, addresses, phone numbers, email addresses, usernames, and passwords stored as unsalted SHA-256 hashes. The company attempted to downplay the security breach by telling Have I Been Pwned that threat actors only had access to encrypted passwords. ” reported HIBP.

Data breaches

Data breaches Passwords Cybercrime Encryption

Zacks Investment Research data breach impacted hundreds of thousands of customers

Security Affairs

JANUARY 25, 2023

We believe the unauthorized access occurred sometime between November 2021 and August 2022.” “Upon this discovery, Zacks took immediate action to implement additional security measures to our network, and to investigate and understand the scope of the incident.” ” reads the notice of data breach.

Data breaches

Data breaches Passwords Accountability Hacking

UScellular data breach: attackers ported customer phone numbers

Security Affairs

JANUARY 30, 2021

The company detected the security breach on January 6, 2021, and determined that the intrusion took place early this year, on January 4th, 2021. The malware allowed the attackers to access the CRM using the employee’s accounts and then access personal information, including phone numbers, of the company customers.

Data breaches

Data breaches Wireless Retail Accountability

Iran-linked DEV-0343 APT target US and Israeli defense technology firms

Security Affairs

OCTOBER 11, 2021

DEV-0343: Iran-linked threat actors are targeting US and Israeli defense technology companies leveraging password spraying attacks. Threat actors are launching extensive password spraying attacks aimed at the target organizations, the malicious campaign was first spotted in July 2021. ” continues the report.

Technology

Technology Passwords Accountability Authentication

Fortinet addressed multiple vulnerabilities in several products

Security Affairs

JULY 9, 2022

Four of the fixed issues have been rated as a “high” severity, they are CVE-2022-26117, CVE-2021-43072, CVE-2022-30302, and CVE-2021-41031.

Authentication

Authentication Passwords Hacking Accountability

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs

SEPTEMBER 3, 2021

.” The PIN provides a series of examples of ransomware attacks impacting food and agriculture sector businesses, such as an attack that took place in January 2021 against an identified US farm that resulted in losses of approximately $9 million due to the disruption of the farming operations. Implement network segmentation.

Ransomware

Ransomware Passwords Backups Firmware

Threat actors exploit a flaw in Coinbase 2FA to steal user funds

Security Affairs

OCTOBER 2, 2021

Threat actors stole funds from the accounts of more than 6,000 users of the crypto exchange Coinbase exploiting a flaw to bypass 2FA authentication. At least 6,000 Coinbase customers had funds removed from their accounts, including you.” Once discovered the campaign, the company updated its SMS Account Recovery protocols.

Cryptocurrency

Cryptocurrency Data breaches Authentication Accountability

OpenWRT forum hacked, intruders stole user data

Security Affairs

JANUARY 18, 2021

The attack took place on Saturday, around 04:00 (GMT), when threat actors compromised an administrator account and downloaded a copy of the list of users. “Around 0400 GMT on 16 Jan 2021, an administrator account on the OpenWrt forum ( [link] ) was breached.

Hacking

Hacking Data breaches Passwords Accountability

1.8 Million customers of four sports gear sites impacted by credit cards breach

Security Affairs

DECEMBER 18, 2021

According to the law firm representing the four websites, the security breach took place on October 1st, 2021, but the websites discovered it on October 15. The attackers had access to the personal information and credit card information of the customers, including full CVV.

Accountability

Accountability Banking Cyber Attacks Passwords

AT&T is notifying millions of customers of data breach after a third-party vendor hack

Security Affairs

MARCH 10, 2023

AT&T is notifying millions of customers that some of their information was exposed after a third-party vendor was hacked. CPNI is information related to the telecommunications services purchased by the customers, including the number of lines for each account or the wireless plan to which customers are subscribed.

Data breaches

Data breaches Hacking Wireless Telecommunications

Cyber CEO: A Look Back at Cybersecurity in 2021

Herjavec Group

DECEMBER 15, 2021

Needless to say, in 2021 cybersecurity was front and center for individuals, enterprises, and governments alike. This forced security leaders and enterprise executives to assess their information security operations and overall cybersecurity posture to ensure their organizations were ready to face the challenges ahead.

Cybersecurity

Cybersecurity Digital transformation Ransomware Cyber Risk

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

The AvosLocker ransomware-as-a-service emerged in the threat landscape in September 2021, since January the group expanded its targets by implementing the support for encrypting Linux systems, specifically VMware ESXi servers. Regularly back up data, password protect backup copies offline. Avoid reusing passwords for multiple accounts.

Ransomware

Ransomware DDOS Passwords Backups

Russia-linked threats actors exploited default MFA protocol and PrintNightmare bug to compromise NGO cloud

Security Affairs

MARCH 16, 2022

The nation-state actors gained access to the network by exploiting default MFA protocols and the Windows Print Spooler vulnerability, “PrintNightmare” ( CVE-2021-34527 ), reads the advisory. In order to compromise the target network, the attackers conducted a brute-force password guessing attack against an un-enrolled and inactive account.

Accountability

Accountability Passwords Authentication Firmware

Top 10 web application vulnerabilities in 2021–2023

Over 3.7 million accounts were compromised in the FlexBooker data breach

Webinars

Trending Sources

The Have I Been Pwned service now includes 441K accounts stolen by RedLine malware

Webinars

Study reveals top 200 most common passwords

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Microsoft announces passwordless authentication for consumer accounts

Box flaw allowed to bypass MFA and takeover accounts

Bug bounty hunter awarded $50,000 for a Microsoft account hijack flaw

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Cyber Security Roundup for May 2021

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Twitter says recently leaked user data are from 2021 breach

Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts

npm libraries coa and rc. have been hijacked to deliver password-stealing malware

Ranzy Locker ransomware hit tens of US companies in 2021

Large-scale AiTM phishing campaign targeted +10,000 orgs since 2021?

Twitter confirms zero-day used to access data of 5.4 million accounts

North Korea-linked SharpTongue spies on email accounts with a malicious browser extension

New GoDaddy data breach impacted 1.2 million customers

LastPass investigated recent reports of blocked login attempts

Hackers accessed Mint Mobile subscribers’ data and ported some numbers

Cyber Security Roundup for April 2021

Info stealers and how to protect against them

CISA adds D-Link DIR router flaws to its Known Exploited Vulnerabilities catalog

Mobile virtual network operator Mint Mobile discloses a data breach

Mother of all breaches – a historic data leak reveals 26 billion records: check what’s exposed

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Expert found a secret backdoor in Zyxel firewall and VPN

Microsoft AI research division accidentally exposed 38TB of sensitive data

Venafi Wins 2021 CyberSecurity Breakthrough Awards

FBI: Compromised US academic credentials available on various cybercrime forums

A database containing data of +8.9 million Zacks users was leaked online

Zacks Investment Research data breach impacted hundreds of thousands of customers

UScellular data breach: attackers ported customer phone numbers

Iran-linked DEV-0343 APT target US and Israeli defense technology firms

Fortinet addressed multiple vulnerabilities in several products

FBI warns of ransomware attacks targeting the food and agriculture sector

Threat actors exploit a flaw in Coinbase 2FA to steal user funds

OpenWRT forum hacked, intruders stole user data

1.8 Million customers of four sports gear sites impacted by credit cards breach

AT&T is notifying millions of customers of data breach after a third-party vendor hack

Cyber CEO: A Look Back at Cybersecurity in 2021

Avoslocker ransomware gang targets US critical infrastructure

Russia-linked threats actors exploited default MFA protocol and PrintNightmare bug to compromise NGO cloud

Stay Connected