IT Security Newsletter - 9/3/2021
FBI Warns Food and Agriculture Firms of Ransomware Threat
The FBI has issued a new alert warning companies in the food and agricultural sector that they are increasingly at risk of ransomware as their corporate attack surface expands. The Private Industry Notification, seen by Infosecurity, noted that the vertical is a critical infrastructure sector which, if impacted by such threats, could negatively impact the food supply chain. READ MORE...
Hacked SolarWinds Software Lacked Basic Anti-Exploit Mitigation: Microsoft
Software vendor SolarWinds failed to enable an anti-exploit mitigation available since the launch of Windows Vista 15 years ago, an oversight that made it easy for attackers to launch targeted malware attacks in July this year. The missing mitigation was flagged by Microsoft in a post mortem of last month's zero-day attack that hit businesses using the SolarWinds Serv-U Managed File Transfer and Serv-U Secure FTP products. READ MORE...
New Zealand internet outage blamed on DDoS attack on nation's third largest internet provider
Parts of New Zealand were cut off from the digital world today after a major local ISP was hit by an aggressive DDoS attack. Vocus - the country's third-largest internet operator which is behind brands including Orcon, Slingshot and Stuff Fibre - confirmed the cyberattack originated at one of its customers. Details are still sketchy, but the outage has caused significant disruption across the country with many people working from home due to COVID-19 restrictions. READ MORE...
Brute-Force Attacks Target Inboxes for Gift Card Data
Threat actors are compromising up to 100,000 inboxes daily in a campaign that targets gift card and customer-loyalty program data in hopes of reselling it or cashing in on freebies, a security researcher has found. The actors behind the scam-outlined in a post by Brian Krebs on Krebs on Security-have been "mass-testing millions of usernames and passwords against the world's major email providers each day" for the past three years, according to the post. READ MORE...
Translated Conti ransomware playbook gives insight into attacks
Almost a month after a disgruntled Conti affiliate leaked the gang's attack playbook, security researchers shared a translated variant that clarifies any misinterpretation caused by automated translation. Apart from providing information about the gang's attack methods and the thoroughness of the instructions, which allow for less-skilled actors to become Conti ransomware affiliates and hit valuable targets. READ MORE...
Critical flaw in Atlassian Confluence actively exploited
Hackers have started exploiting a critical remote code execution vulnerability that was patched recently in Atlassian Confluence Server and Data Center. Some of the attacks deploy cryptocurrency mining malware, but Atlassian products have also been targeted in the past by cyberespionage groups. According to Atlassian, the vulnerability allows authenticated users, and in some instances unauthenticated users, to execute arbitrary code on servers running affected versions of the products. READ MORE...
- ...in 1838, future abolitionist Frederick Douglass escapes from slavery by boarding a northbound train from Maryland.
- ...in 1969, film director Noah Baumbach ("Marriage Story", "The Squid and the Whale") is born in New York City.
- ...in 1976, the Viking 2 spacecraft lands at Utopia Planitia on Mars.
- ...in 1986, American snowboarder and three-time Olympic gold medalist Shaun White is born in San Diego, CA.