<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 1/20/2022


Top News

Red Cross implores hackers not to leak data for 515k "highly vulnerable people"

The Red Cross on Wednesday pleaded with the threat actors behind a cyberattack that stole the personal data of about 515,000 people who used a program that works to reunite family members separated by conflict, disaster, or migration. "While we don't know who is responsible for this attack, or why they carried it out, we do have this appeal to make to them," Robert Mardini, the director-general of the International Committee for the Red Cross, said in a release. READ MORE...

Destructive Wiper Targeting Ukraine Aimed at Eroding Trust, Experts Say

Russia is positioned for a hot-war attack on Ukraine that the Biden administration warned could come "at any point" - but the country is already suffering an attack of a different kind. A sweeping malware campaign remains ongoing, which experts agree is intended to permanently disrupt organizations across the country and paint Ukraine as a failed state. READ MORE...


483 Crypto[.]com accounts compromised in $34 million hack

Crypto[.]com has confirmed that a multi-million dollar cyber attack led to the compromise of around 400 of its customer accounts. Although, the company's CEO stresses that customer funds are not at risk. With regards to daily trading volume, Crypto[.]com is reportedly the world's third-largest cryptocurrency trading platform "on a mission to accelerate the world's transition to cryptocurrency." READ MORE...

SEC Filing Reveals Fortune 500 Firm Targeted in Ransomware Attack

Fortune 500 integrated services firm R.R.Donnelley & Sons (RRD) is the latest victim of the hacking collective known as the Conti Group. According to regulatory disclosures RRD was the victim of a network breach that resulted in stolen data in December. RRD, a global firm with 33,000 employees, disclosed incident details in its U.S. Securities and Exchange Commission (SEC) 8-K form - filed Dec. 27. READ MORE...

Software Updates

Microsoft fixes Outlook search issues for Windows 10 users

Microsoft has fixed a known issue causing search issues for Outlook users after installing Windows 10 security updates released since November 2021. As the company explained, searches on the Outlook desktop app might fail and recent emails might not appear in search results if they're stored locally in PST or OST files. "It might affect POP and IMAP accounts, as well as Microsoft Exchange and Microsoft 365 hosted accounts," Microsoft explained in a newly added entry on the Windows health dashboard. READ MORE...

Information Security

OpenSubtitles Hack Shows Why Paying Ransom Offers No Guarantees

Popular subtitles website OpenSubtitles on Tuesday admitted that its systems had been hacked after the details of nearly seven million user accounts were leaked, despite the site allegedly paying a ransom to avoid this situation. Law enforcement and cybersecurity professionals have often advised against paying a ransom to cybercriminals as it encourages them to continue their malicious activities, and there is no guarantee that the attacker will hold up their end of the bargain. READ MORE...


New SolarWinds Serv-U vulnerability exploited in Log4j-related attacks

Attackers looking to exploit recently discovered Log4j vulnerabilities are also trying to take advantage of a previously undisclosed vulnerability in the SolarWinds Serv-U software (CVE-2021-35247). It affects version 15.2.5 and previous versions of Serv-U, and has been patched by SolarWinds in version 15.3. CVE-2021-35247 is an input validation vulnerability in the Serv-U File Server's web login screen that could allow attackers to build a query after being given some input. READ MORE...

On This Date

  • ...in 1918, Mexican composer and bandleader Juan Garcia Esquivel, known as "The King of Space Age Pop", is born in Tampico, Mexico.
  • ...in 1920, actor DeForest Kelley, best known as Dr. Leonard "Bones" McCoy from "Star Trek", is born in Toccoa, GA.
  • ...in 1946, film/TV director and screenwriter David Lynch ("Blue Velvet", "Twin Peaks") is born in Missoula, MT.
  • ...in 2009, Barack Obama is inaugurated as the 44th President of the United States, becoming the first African-American man to hold the office.