IT Security Newsletter

IT Security Newsletter - 03/01/2021

Written by Cadre | Mon, Mar 1, 2021

Oxford University COVID-19 lab hacked

Oxford University has confirmed that one of its biology laboratories that is researching ways to combat the COVID-19 pandemic has fallen victim to a cyberattack. Details about the incident at the Division of Structural Biology (Strubi) were released by Forbes. "We have identified and contained the problem and are now investigating further. There has been no impact on any clinical research, as this is not conducted in the affected area. READ MORE...

T-Mobile discloses data breach after SIM swapping attacks

American telecommunications provider T-Mobile has disclosed a data breach after an unknown number of customers were apparently affected by SIM swap attacks. SIM swap fraud (or SIM hijacking) allows scammers to take control of targets' phone numbers after porting them using social engineering or after bribing mobile operator employees to a SIM controlled by the fraudsters. Subsequently, they receive the victims' messages and calls which allows for easily bypassing SMS. READ MORE...

Chinese Threat Actor Uses Browser Extension to Hack Gmail Accounts

In early 2021, a Chinese threat actor tracked as TA413 attempted to hack into the Gmail accounts of Tibetan organizations using a malicious browser extension, researchers with cybersecurity firm Proofpoint have discovered. Active for roughly a decade, the hacking group has been previously associated with malware such as LuckyCat and ExileRAT, and is believed to have orchestrated numerous cyber-assaults targeting the Tibetan community. READ MORE...

The Windows 10 Sun Valley design refresh - Here's what's coming

Windows 10 'Sun Valley' UI refresh, otherwise known as 'version 21H2', is reportedly arriving in the second half of this year and it will also include several new features. Windows 10 21H2 will be released in the fall of 2021 after Windows 10 21H1 is released in the spring followed by Windows 10X. Sun Valley." Windows 10 21H2 will be a full-featured update that includes numerous new features and improvements for the Start Menu, Taskbar, Action Center, and more, which we have outlined below. READ MORE...

Boat Building Giant Beneteau Says Cyberattack Disrupted Production

French boat maker Groupe Beneteau is working on restoring operations after falling victim to a cyber-attack roughly ten days ago. Founded in 1884, the Vendée, France-based company employs more than 8,000 people in France, the United States, Poland, Italy and China, and focuses on two business lines: boats and leisure homes. Last week, Beneteau announced that it suffered a malware intrusion on some of its servers, and that it decided to disconnect all "information systems." READ MORE...

Malware Gangs Partner Up in Double-Punch Security Threat

Cybergangs are joining forces under the guise of affiliate groups and "as-a-service" models, warns Maya Horowitz, the director of threat intelligence research with Check Point Research. She said the trend is driving a new and thriving cybercriminal underground economy. "In some cases, it's just an as-a-service model, so the groups don't necessarily have to know each other," Horowitz said. "But in many cases, the cooperation is so tight. READ MORE...

Lazarus Targets Defense Companies with ThreatNeedle Malware

The prolific North Korean APT known as Lazarus is behind a spear-phishing campaign aimed at stealing critical data from defense companies by leveraging an advanced malware called ThreatNeedle, new research has revealed. The elaborate and ongoing cyberespionage campaign used emails with COVID-19 themes paired with publicly available personal information of targets to lure them into taking the malware bait, according to Kaspersky, which first observed the activity in mid-2020. READ MORE...

Beware: AOL phishing email states your account will be closed

An AOL mail phishing campaign is underway to steal users' login name and password by warning recipients that their account is about to be closed. While most people are using Gmail, Outlook, or other modern free mail services, many older people continue to use AOL simply because they are used to the service and find it too complicated to switch to a new email service.e. Unfortunately, this also makes them prime targets for phishing scams. READ MORE...

Vendor Quickly Patches Serious Vulnerability in NATO-Approved Firewall

A critical vulnerability discovered in a firewall appliance made by Germany-based cybersecurity company Genua could be useful to threat actors once they've gained access to an organization's network, according to Austrian cybersecurity consultancy SEC Consult. Genua Genugate is a firewall designed for protecting internal networks against external threats, segmenting internal networks, and protecting machine-to-machine communications. READ MORE...

  • ...in 1803, Ohio becomes the 17th state of the United States.
  • ...in 1944, The Who lead singer Roger Daltrey ("My Generation", "Pinball Wizard") is born in London, England.
  • ...in 1990, publisher Steve Jackson Games is raided by the U.S. Secret Service, after a cyberpunk-themed role playing game was mistaken for an actual computer hacking manual.
  • ...in 1998, James Cameron's "Titanic" becomes the first motion picture to gross over $1 billion worldwide.