<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter

Get the latest headlines, summaries, and security news!

IT Security Newsletter - 6/11/2021

Breaches

Hackers Steal FIFA 21 Source Code, Tools in EA Breach

Hackers have breached computer game maker Electronic Arts (EA) and stolen source code and related tools for the company's extensive game library, the company has confirmed. EA said it's investigating "a recent incident of intrusion into our network where a limited amount of game source code and related tools were stolen," according to a statement published in numerous online reports. The longtime game developer is known for titles such as The Sims, Madden NFL and FIFA 21. READ MORE...


CD Projekt: Data stolen in ransomware attack now circulating online

CD Projekt is warning today that internal data stolen during their February ransomware attack is circulating on the Internet. In February, CD Projekt suffered a ransomware attack that allowed threat actors to steal source code and business data before encrypting devices. In a new statement published today, CD Projekt said they have learned that this stolen data is now being circulated and may include employee and contractor details. READ MORE...

Hacking

'Fancy Lazarus' Cyberattackers Ramp up Ransom DDoS Efforts

A distributed denial-of-service (DDoS) extortion group has blazed back on the cybercrime scene, this time under the name of "Fancy Lazarus." It's been launching a series of new attacks that may or may not have any teeth, researchers said. The new name is a tongue-in-cheek combination of the Russia-linked Fancy Bear advanced persistent threat (APT) and North Korea's Lazarus Group. The choice seems natural, given that the gang was last seen purporting to be various APTs. READ MORE...

Malware

Foodservice supplier Edward Don hit by a ransomware attack

Foodservice supplier Edward Don has suffered a ransomware attack that has caused the company to shut down portions of the network to prevent the attack's spread. Edward Don and Company is one of the largest distributors of foodservice equipment and supplies, such as kitchen supplies, bar supplies, flatware, and dinnerware. Today, BleepingComputer has learned that Edward Don suffered a ransomware attack earlier this week that has disrupted their business operations. READ MORE...

Exploits/Vulnerabilities

Linux system service bug lets you get root on most modern distros

Unprivileged attackers can get a root shell by exploiting an authentication bypass vulnerability in the polkit auth system service installed by default on many modern Linux distributions. The polkit local privilege escalation bug (tracked as CVE-2021-3560) was publicly disclosed, and a fix was released on June 3, 2021. It was introduced seven years ago in version 0.113 and was only recently discovered by GitHub Security Lab security researcher Kevin Backhouse. READ MORE...


Hackers can exploit bugs in Samsung pre-installed apps to spy on users

Samsung is working on patching multiple vulnerabilities affecting its mobile devices that could be used for spying or to take full control of the system. The bugs are part of a larger set discovered and reported responsibly by one security researcher through the company's bug bounty program. Since the beginning of the year, Sergey Toshin - the founder of Oversecured company specialized in mobile app security, found more than a dozen vulnerabilities affecting Samsung devices. READ MORE...

On This Date

  • ...in 1509, Henry VIII marries his first wife, Catherine of Aragon; their subsequent divorce led to England's split from the Catholic Church.
  • ...in 1776, the Continental Congress appoints the Committee of Five to draft the Declaration of Independence.
  • ...in 1963, two African-American students, Vivian Malone and James Hood, register at the previously segregrated University of Alabama.
  • ...in 1982, "E.T.: The Extra-Terrestrial" opens in U.S. theaters, going on to become one of the highest-grossing films of all time.