<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 6/18/2021

SHARE

Breaches

Carnival Cruise hit by data breach, warns of data misuse risk

Carnival Corporation, the world's largest cruise ship operator, has disclosed a data breach after attackers gained access to some of its IT systems and the personal, financial, and health information belonging to customers, employees, and crew. Carnival is included in both S&P 500 and FTSE 100 stock market indices, has more than 150,000 employees in roughly 150 countries, and provides leisure travel to roughly 13 million guests each year. READ MORE...

Hacking

Faux 'DarkSide' Gang Takes Aim at Global Energy, Food Sectors

Several organizations in the oil, gas and food sectors have received threatening emails from cybercriminals posing as DarkSide - the ransomware gang behind the Colonial Pipeline hack. According to researchers at Trend Micro, threat actors are taking advantage of the notoriety around the pipeline ransomware incident and the DarkSide name, in order to mount a fear-based social-engineering campaign. READ MORE...


Threat Actors Use Google Docs to Host Phishing Attacks

Threat actors are exploiting Google Docs by hosting their attacks within the web-based document service in a new phishing campaign that delivers malicious links aimed at stealing victims' credentials. Researchers at email and collaboration security firm Avanan discovered the campaign, which is the first time they said they've seen attackers use this type of exploit in Google's hosted document service, according to a report published Thursday by Jeremy Fuchs, marketing content manager for Avanan. READ MORE...

Malware

Newly discovered Vigilante malware outs software pirates and blocks them

A researcher has uncovered one of the more unusual finds in the annals of malware: booby-trapped files that rat out downloaders and try to prevent unauthorized downloading in the future. The files are available on sites frequented by software pirates. Vigilante, as SophosLabs Principal Researcher Andrew Brandt is calling the malware, gets installed when victims download and execute what they think is pirated software or games. READ MORE...


Polazert Trojan using poisoned Google Search results to spread

Trojan.Polazert aka SolarMarker has gone back and fine-tuned an old tactic known as SEO-poisoning to plant their Remote Access Trojan (RAT) on as many systems as possible. This RAT runs in memory and is used by attackers to install additional malware on affected systems. Trojan.Polazert is specifically designed to steal credentials from browsers and provide an attacker with a backdoor that allows them to further compromise infected systems. To achieve this, collected data is sent to a C&C server. READ MORE...

Exploits/Vulnerabilities

Poltergeist attack could leave autonomous vehicles blind to obstacles - or haunt them with new ones

Researchers at the Ubiquitous System Security Lab of Zhejiang University and the University of Michigan's Security and Privacy Research Group say they've found a way to blind autonomous vehicles to obstacles using simple audio signals. "Autonomous vehicles increasingly exploit computer-vision based object detection systems to perceive environments and make critical driving decisions," they explained in the abstract to a newly released paper. READ MORE...

On This Date

  • ...in 1812, the United States declares war on the United Kingdom, beginning the War of 1812.
  • ...in 1815, British and Prussian forces led by Wellington and Blucher defeat Napoleon Bonaparte's army at Waterloo.
  • ...in 1942, singer-songwriter Paul McCartney is born in Liverpool, England.
  • ...in 1983, astronaut Sally Ride becomes the first American woman in space, aboard the STS-7 mission.