April 2021 - Cyber Security Minute

BIND Vulnerabilities Expose DNS Servers to Remote Attacks

Issued by: Security Week

Three new security advisories have been published, including two that cover high-severity vulnerabilities that can be exploited remotely. The advisories describing the vulnerabilities were made public on April 28, but some organizations were privately notified in advance. The most serious of the flaws — based on its CVSS score of 8.1 — is CVE-2021-25216, a…

Malware & Threats

Cybersecurity Community Unhappy With GitHub’s Proposed Policy Updates

Issued by: Security Week

The community has been asked to provide feedback until June 1 on proposed clarifications regarding exploits and malware hosted on GitHub. “Our policy updates focus on the difference between actively harmful content, which is not allowed on the platform, and at-rest code in support of security research, which is welcome and encouraged. These updates also…

Vulnerabilities

Several High-Severity Vulnerabilities Expose Cisco Firewalls to Remote Attacks

Issued by: Security Week

Tracked as CVE-2021-1448 and having a CVSS score of 7.8, the command injection bug is mitigated by the fact that authentication and local access are required for successful exploitation. An attacker able to abuse it, however, may execute arbitrary commands as root on the underlying OS. The flaw exists because user-supplied command arguments aren’t sufficiently…

Malware & Threats

FluBot Android Malware Expected to Start Targeting U.S.

Issued by: Security Week

Initially observed in Spain, FluBot has since expanded operations to reach Germany, Hungary, Italy, Poland, and the UK as well, with tens of thousands of malicious SMS messages that leverage FedEx, DHL, and Correos lures being sent hourly. The malware is believed to have made over 7,000 victims in the UK alone, where the campaign…

Application Security, Cloud Security

DevSecOps Company Sysdig Raises $188 Million at $1.19 Billion Valuation

Issued by: Security Week

The latest funding round, which brings the total raised by the company to $394 million, was led by Premji Invest & Associates and Third Point Ventures, with participation from Accel, Bain Capital Ventures, DFJ Growth, Glynn Capital, Goldman Sachs, Insight Partners, and Next47. The money will be used by the company to improve its products,…

Malware & Threats

Dark Hash Collisions: New Service Confidentially Finds Leaked Passwords

Issued by: Security Week

Businesses need to keep their user accounts safe. But there are billions of username and password pairs available to hackers on the dark web. User tendency to reuse passwords on multiple accounts means that hackers may already have your users’ credentials, stolen from a breached third party. The result is the credential stuffing attack. Credential…

Vulnerabilities

Vulnerabilities in Eaton Product Can Allow Hackers to Disrupt Power Supply

Issued by: Security Week

Eaton’s IPM solution is designed to ensure system uptime and data integrity by allowing organizations to remotely monitor, manage and control the uninterruptible power supply (UPS) devices on their network. According to security advisories published this month by Eaton and the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the IPM product is affected by six…

Application Security

Adobe Releases Open Source Anomaly Detection Tool “OSAS”

Issued by: Security Week

Building on previous research, white papers, and other projects from Adobe’s Security Intelligence Team, OSAS out-of-the-box allows researchers to experiment with datasets, control data processing and feature combining, and help identify a solution for detecting security threats. The new open-source project tackles the issue of data sparsity, which may appear when using machine learning (ML)…

Application Security, Cloud Security, Network Security

Cybersecurity M&A Roundup for April 19-25, 2021

Issued by: Security Week

Several cybersecurity-related acquisitions and mergers were announced in the week of April 19-25, 2021. Altron acquires Lawtrust South Africa-based technology solutions provider Altron has acquired Lawtrust, which provides digital trust and cybersecurity solutions, for ZAR 245 million (USD 17 million). Lawtrust, which is also based in South Africa, will help Altron expand its security offerings….

Network Security

Outages Blamed on Malware Still Plaguing Budget Airlines

Issued by: Security Week

The company, Radixx, said it noticed “unusual activity” around its reservations program on Tuesday. It did not describe the malware or say how it got into the program. A spokeswoman for Radixx’s parent, Southlake, Texas-based Sabre Corp., said Friday that the company was beginning to restore service to airline customers. Kristin Hays said the company…