<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 2/15/2022

SHARE

Top News

Hacking group is on a tear, hitting US critical infrastructure and SF 49ers

A couple of days after the FBI warned that a ransomware group called BlackByte had compromised critical infrastructure in the US, the group hacked servers belonging to the San Francisco 49ers football team and held some of the team's data for ransom. Media representatives for the NFL franchise confirmed a security breach in an emailed statement following a post on BlackByte's dark web site. READ MORE...

Hacking

Hackers use simple methods to target orgs in the aviation sector

For years, a low-skilled attacker has been using off-the-shelf malware in malicious campaigns aimed at companies in the aviation sector as well as in other sensitive industries. The threat actor has been active since at least 2017, targeting entities in the aviation, aerospace, transportation, manufacturing, and defense industries. Tracked as TA2541 by cybersecurity company Proofpoint, the adversary is believed to operate from Nigeria and its activity has been documented before. READ MORE...

Software Updates

Adobe patches actively exploited Magento/Adobe Commerce zero-day

Adobe has released an emergency advisory for users of its Commerce and Magento platforms. It explains that a critical zero-day vulnerability is actively being exploited in attacks against sites that use these two content management system (CMSs). Users should apply the patch as soon as possible. Publicly disclosed computer security flaws are listed in the Common Vulnerabilities and Exposures (CVE) database. READ MORE...


Apple emits emergency fix for exploited-in-the-wild WebKit vulnerability

Apple on Thursday patched a zero-day security vulnerability in its WebKit browser engine, issuing updates for iOS, iPadOS, and macOS. Its Safari browser, based on WebKit, received the security update separately for instances where it is being used with an older version of macOS, like Big Sur. Apple's tvOS was also refreshed, but without the security fix. READ MORE...

Malware

CISA Ransomware report warns "triple threat" attacks still on the prowl

Though we may be stuck with endless COVID-19 scams and a gradual visible rise in all manner of cryptocurrency hijinks, the old school attacks are as perilous as ever, CISA, the Cybersecurity & Infrastructure Security Agency, have released their 2021 report detailing the increasing globalised threat of the ransomware menace. It covers a lot of ground, but many of the main findings won't come as any surprise to those dealing with attacks over the last few years. READ MORE...


'Cities: Skylines' Gaming Modder Banned Over Hidden Malware

The developer of several popular mods for the Cities: Skylines city-building game has been banned after malware was discovered hidden in their wares. The modder, who goes by the handle Chaos as well as Holy Water, reportedly tucked an automatic updater into several mods that enabled the author to deliver malware to anybody who downloaded them. It started last year, when Chaos launched a "redesigned" version of Harmony: a core framework project that most Cities: Skylines mods rely on to work. READ MORE...

On This Date

  • ...in 1909, humanitarian Hermine "Miep" Gies, who helped hide Anne Frank's family in the Netherlands during WWII, is born in Vienna, Austria.
  • ...in 1946, ENIAC, the world's first electronic general-purpose computer, is dedicated at the University of Pennsylvania.
  • ...in 1954, cartoonist Matt Groening, the creator of "The Simpsons" and "Futurama", is born in Portland, OR.
  • ...in 2001, the first draft of the complete human genome is published in the journal "Nature".