2021 - Information Management Today

China-linked spies target Asian Telcos since at least 2021

Security Affairs

JUNE 20, 2024

A China-linked cyber espionage group has compromised telecom operators in an Asian country since at least 2021. The Symantec Threat Hunter Team reported that an alleged China-linked APT group has infiltrated several telecom operators in a single, unnamed, Asian country at least since 2021.

Communications

Communications Encryption IT Information Security

Finnish police linked APT31 to the 2021 parliament attack

Security Affairs

MARCH 26, 2024

The Finnish Police attributed the attack against the parliament that occurred in March 2021 to the China-linked group APT31. The Finnish Police attributed the March 2021 attack on the parliament to the China-linked group APT31. According to the police, the offences were committed between autumn 2020 and early 2021.

Communications

Communications Government Access Security

China-linked APT UNC3886 exploits VMware zero-day since 2021

Security Affairs

JANUARY 19, 2024

China-linked group UNC3886 has been exploiting vCenter Server zero-day vulnerability CVE-2023-34048 since at least late 2021. Mandiant researchers reported that China-linked APT group UNC3886 has been exploiting vCenter Server zero-day vulnerability CVE-2023-34048 since at least late 2021. ” concludes the report.

Authentication

Authentication Access Cloud IT

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

UK ICO Reprimands Electoral Commission for 2021 Hack Attack

Data Breach Today

JULY 31, 2024

s Electoral Commission for its failure to prevent a 2021 hack attack that resulted in the exposure of millions of voter records. Hackers Exploited ProxyShell Vulnerability to Compromise Commission Systems The British data regulator reprimanded the U.K.'s

IT

2021 State of Analytics: Why Users Demand Better

As organizations become more data driven, their analytics requirements grow. The expectation to do more with their data becomes a moving target for them and the applications that serve them. To stand up to the challenge, applications must evolve to accommodate their users and ensure their success. But what do users really want?

Analytics

Mazda Connect flaws allow to hack some Mazda vehicles

Security Affairs

NOVEMBER 9, 2024

The vulnerabilities impact the Mazda Connect Connectivity Master Unit (CMU) system installed in multiple car models, including the Mazda 3 model year 2014-2021. Like in so many cases, these vulnerabilities are caused by insufficient sanitization when handling attacker-supplied input.” ” reads the advisory.

Ransomware

Ransomware Manufacturing Access Risk

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Security Affairs

JANUARY 4, 2025

. “These incidents have been publicly attributed to Flax Typhoon, a Chinese malicious state-sponsored cyber group that has been active since at least 2021, often targeting organizations within U.S. critical infrastructure sectors.“

Cybersecurity

Cybersecurity IoT Risk IT

Netgear urges users to upgrade two flaws impacting WiFi router models

Security Affairs

FEBRUARY 4, 2025

Netgear addressed two critical vulnerabilities, internally tracked as PSV-2023-0039 and PSV-2021-0117 , impacting multiple WiFi router models and urged customers to install the latest firmware. Netgear disclosed two critical flaws impacting multiple WiFi router models and urges customers to address them. ” reads the advisory.

Authentication

Authentication Security IT Information Security

Tor Project needs 200 WebTunnel bridges more to bypass Russia’ censorship

Security Affairs

DECEMBER 2, 2024

Russia first blocked Tor in 2021, but at the time the censorship was bypassed via bridges. .” reads the announcement published by Tor Project. Tor Project maintainers are urging users to deploy 200 WebTunnel bridges by year-end allow users in Russia to bypass government censorship.

Government

Government Access Security IT

The Forrester Wave™: B2B Marketing Data Providers, Q2 2021

Advertiser: ZoomInfo

In our 24-criterion evaluation of B2B marketing data providers, we identified the 11 most significant vendors — Data Axle, Dun & Bradstreet, Enlyft, Global Database, InsideView, Leadspace, Oracle, SMARTe, Spiceworks Ziff Davis, TechTarget, and ZoomInfo Technologies — and researched, analyzed, and scored them.

B2B

Russia-linked group APT29 is targeting Zimbra and JetBrains TeamCity servers on a large scale

Security Affairs

OCTOBER 12, 2024

Since April 2021, Russian state-sponsored hackers have exploited vulnerabilities, including Zimbra’s CVE-2022-27924 for injecting commands to access credentials and emails, and JetBrains TeamCity’s CVE-2023-42793 for arbitrary code execution through an authentication bypass.

Data collection

Data collection Authentication Access Cybersecurity

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

The carrier suffered multiple data breaches in the last years, the last one in order of time took place in December 2021 when it disclosed a data breach that impacted a “very small number of customers” who were victims of SIM swap attacks. In February 2021, hundreds of users were hit with SIM swapping attacks.

Data breaches

Data breaches Communications Artificial Intelligence Government

ITRC Report: Breaches Up 78% in 2023, Breaking 2021 Record

Data Breach Today

JANUARY 25, 2024

Identity Theft Resource Center's James E. Lee Calls for Uniform Breach Reporting Supply chain attacks and zero-day exploits surged in 2023, helping to set yet another record for data breaches tracked by the Identity Theft Resource Center.

Data breaches

Adobe is aware that ColdFusion bug CVE-2024-53961 has a known PoC exploit code

Security Affairs

DECEMBER 24, 2024

The flaw impacts Adobe ColdFusion versions2023 and 2021. “Adobe has released security updates for ColdFusion versions2023 and 2021.These The vulnerability is an improper limitation of a pathname to a restricted directory (‘Path Traversal’) that could lead to arbitrary file system readings. ” reads the advisory.

Cybersecurity

Cybersecurity Access Security IT

You’re Invited: Innovate Through Data Virtual Summit

Speaker: Logi Analytics

Join us on October 19th & 20th for Logi Spark 2021, the premier event dedicated to helping application teams create engaging state-of-the-art analytics. Logi Spark 2021 consists of two days of networking, best practice sessions, and forward-thinking keynotes on the future of data.

Analytics

CISA adds Cisco IOS XE flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 20, 2023

US CISA added the vulnerability CVE-2021-1435 in Cisco IOS XE to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability CVE-2021-1435 in Cisco IOS XE. ” reads the report published by Cisco Talos.

IT

IT Authentication Access Cybersecurity

Chinese threat actors use Quad7 botnet in password-spray attacks

Security Affairs

NOVEMBER 3, 2024

Active since 2021, Storm-0940 gains access through password spraying, brute-force attacks, and exploiting network edge services, targeting sectors like government, law, defense, and NGOs in North America and Europe. Other variants like axlogin and zylogin target Axentra NAS and Zyxel VPNs respectively, but they are smaller and less observed.

Passwords

Passwords Access Cloud Government

An ongoing malware campaign exploits Microsoft Exchange Server flaws

Security Affairs

MAY 22, 2024

According to the researchers, the malware campaign targeting MS Exchange Server has been active since at least 2021. The threat actors exploited the ProxyShell vulnerabilities ( CVE-2021-34473 , CVE-2021-34523 , and CVE-2021-31207 ) in Microsoft Exchange Server to inject an info stealer.

Government

Government Access IT Information Security

U.S. CISA adds Dahua IP Camera, Linux Kernel and Microsoft Exchange Server bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

AUGUST 22, 2024

CVE-2021-31196 is a remote code execution (RCE) flaw in Microsoft Exchange Server. Microsoft released patches to address this vulnerability as part of their security updates in May 2021. A remote attacker can exploit both vulnerabilities by sending specially crafted data packets to the vulnerable cameras.

Authentication

Authentication IT Cybersecurity Risk

Are You Ready For Predictive Analytics?

Speaker: Anita Lauper Wood, Product Strategist

Tuesday May 18, 2021 at 8AM PDT, 11AM EDT, 3PM GMT. Proven keys to success in predictive analytics implementations. If you are in the process of implementing or considering predictive analytics, this is a session you won’t want to miss.

Analytics

Irish Healthcare Ransomware Hack Cost Over 80 Million Euros

Data Breach Today

DECEMBER 13, 2022

Victims Still Learning Their Personal Data Was Illegally Accessed, Copied in 2021 A ransomware attack on the Irish healthcare system in 2021 has cost the government 80 million euros in damages and counting.

Ransomware

Ransomware Personal data Government Access

SEC fined 4 companies for misleading disclosures about the impact of the SolarWinds attack

Security Affairs

OCTOBER 23, 2024

“According to the SEC’s orders, Unisys, Avaya, and Check Point learned in 2020, and Mimecast learned in 2021, that the threat actor likely behind the SolarWinds Orion hack had accessed their systems without authorization, but each negligently minimized its cybersecurity incident in its public disclosures.”

Cybersecurity

Cybersecurity Risk Access Government

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs

OCTOBER 9, 2023

The HelloKitty gang has been active since January 2021. In November 2021, the US FBI has published a flash alert warning private organizations of the evolution of the HelloKitty ransomware (aka FiveHands). CVE-2021-20016 , CVE-2021-20021 , CVE-2021-20022 , CVE-2021-2002 ) or using compromised credentials.

Ransomware

Ransomware Archiving Encryption Cybersecurity

FBI deleted China-linked PlugX malware from over 4,200 US computers

Security Affairs

JANUARY 14, 2025

According to court documents , threat actors used the malware to target European shipping firms (2024), European governments (2021-2023), Chinese dissident groups, and Indo-Pacific governments, including Taiwan and Japan. A French law enforcement agency has gained access to the C2 server (45.142.166.112) used to control the malware.

Government

Government Cybersecurity Access IT

Your Team's Pragmatic Guide to Security

Speaker: Naresh Soni, CTO, Tsunami XR

Tuesday February 16th, 2021 at 9:30AM PST, 12:30PM EST, 5:30PM GMT What methods and architectures you should consider to proactively protect your data. How to evaluate pros and cons of different processes. His perspectives on the best cyber security approaches.

Security

Threat actors leaked 70,000,000+ records allegedly stolen from AT&T

Security Affairs

MARCH 17, 2024

The seller, who goes online with the moniker MajorNelson, claims that the data was obtained from an unamed AT&T division by @ ShinyHunters in 2021. “It should be noted before anyone hits us with an “aktschually” – the data was stolen in 2021. The archive contains 73.481.539 records.

Data breaches

Data breaches Archiving Sales Authentication

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Krebs on Security

DECEMBER 19, 2024

codes in 2021 using the password “ ceza2003 ” [full disclosure: Constella is currently an advertiser on KrebsOnSecurity]. Archive.org’s history for that domain shows that in 2021 it featured a website for a then 18-year-old Altu ara from Ankara, Turkey. LinkedIn finds this same altugsara[.]com

IT

IT Data breaches Cloud Passwords

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

DECEMBER 5, 2024

He graduated with a degree in Journalism in 2021 and has a background in cybersecurity PR. With the intelligent use of AI, organizations can vastly improve the working lives of their SOC analysts. We can only hope that they do. About the author: Josh is a Content writer at Bora.

Cybersecurity

Cybersecurity Artificial Intelligence Risk Data collection

Russian national sentenced to 40 months for selling stolen data on the dark web

Security Affairs

AUGUST 16, 2024

In June 2021, the US Department of Justice announced the seizure of the infrastructure of SlilPP. Between July 2016 and May 2021, Kavzharadze listed over 626,100 stolen login credentials on Slilpp and sold more than 297,300 of them. The Russian man was sentenced to 40 months in prison and ordered to pay $1,233,521.47 in restitution.

Sales

Sales Retail Personal data Passwords

Marketing-Led Post-COVID-19 Growth Strategies

Advertiser: ZoomInfo

In this eBook, we’ll discuss leading strategies to create a marketing-led growth strategy for 2021 and beyond, including: Positioning your organization for automation. Marketers are uniquely positioned to provide creative solutions to aid their organization in times of change and chart a course for navigating success.

Marketing

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

Security Affairs

NOVEMBER 26, 2024

It was previously known as JDA Software before rebranding to Blue Yonder in 2020 and was acquired by Panasonic Corporation in 2021 to strengthen its AI-driven supply chain solutions. The company has more than 6,000 employees and over 3,000 customers across 76 countries.

Ransomware

Ransomware Retail Manufacturing Cloud

New York Fines Geico, Travelers $11.3M for Data Breaches

Data Breach Today

NOVEMBER 25, 2024

Fines Tied to Wave of 2021 Driver's License Number Theft New York state authorities fined auto insurance giant Geico $9.75 million for failing to protect customers' driver's license numbers during a wave of cyber incidents in early 2021. million after hackers used stolen credentials to flitch license numbers in mid-2021.

Data breaches

Data breaches Insurance

AT&T confirmed that a data breach impacted 73 million customers

Security Affairs

MARCH 30, 2024

The seller, who goes online with the moniker MajorNelson, claims that the data was obtained from an unnamed AT&T division by @ ShinyHunters in 2021. It should be noted before anyone hits us with an “aktschually” – the data was stolen in 2021. The archive contains 73.481.539 records. “It It was leaked online today.”

Data breaches

Data breaches Archiving Sales Access

BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider

Security Affairs

OCTOBER 30, 2022

The BlackByte ransomware operation has been active since September 2021, in October 2021 researchers from Trustwave’s SpiderLabs released a decryptor that can allow victims of early versions of BlackByte ransomware to restore their files for free. The ransomware gang is demanding 500k$ to buy data and 600k$ to delete the stolen data.

Manufacturing

Manufacturing Ransomware Sales Security

A Recruiter’s Guide To Hiring In 2021

Advertiser: ZoomInfo

With vaccination rates rising, consumers spending more money, and people returning to offices, the job market is going through a period of unprecedented adjustment. As the New York Times observed, “It’s a weird moment for the American economy.” And recruiting professionals are caught in the middle.

Marketing

AT&T states that the data breach impacted 51 million former and current customers

Security Affairs

APRIL 10, 2024

The seller, who goes online with the moniker MajorNelson, claimed that the data was obtained from an unnamed AT&T division by @ ShinyHunters in 2021. It should be noted before anyone hits us with an “aktschually” – the data was stolen in 2021. The archive contains 73.481.539 records. “It It was leaked online today.”

Data breaches

Data breaches Archiving Sales Authentication

From Risk Assessment to Action: Improving Your DLP Response

Security Affairs

OCTOBER 25, 2024

He graduated with a degree in Journalism in 2021 and has a background in cybersecurity PR. Failure to do so could result in data loss and, hence, hefty legal and financial consequences. About the author: Josh Breaker-Rolfe Josh is a Content writer at Bora.

Risk

Risk Cybersecurity Cloud Compliance

A WhatsApp zero-day exploit can cost several million dollars

Security Affairs

OCTOBER 5, 2023

TechCrunch reported that a zero-day exploits for popular applications like WhatsApp “are now worth millions of dollars” TechCrunch obtained leaked documents that demonstrate that, as of 2021, a zero-click, zero-day exploit for the Android version of WhatsApp had a bounty between $1.7 and $8 million.

Marketing

Marketing Libraries Sales Government

Fertility Test Lab Will Pay $1.25M to Settle Breach Lawsuit

Data Breach Today

JANUARY 12, 2024

ReproSource Also Agrees to Beef Up Security in Wake of 2021 Ransomware Attack A fertility testing laboratory has agreed to improve its data security practices and pay up to $1.25

Ransomware

Ransomware Security IT

2021 Dresner Advisory Services Business Intelligence Market Study

For 12 years Dresner Advisory Services has run analysis on the importance of business intelligence, and the different providers of embedded BI solutions. BI Defined. Business intelligence is the technological capability to include BI features and functions as an inherent part of another application.

Marketing

US offers $10 million reward for info on Hive ransomware group leaders

Security Affairs

FEBRUARY 8, 2024

The authorities reported that from June 2021 through at least November 2022, threat actors targeted a wide range of businesses and critical infrastructure sectors, including Government Facilities, Communications, Critical Manufacturing, Information Technology, and especially Healthcare and Public Health (HPH).

Ransomware

Ransomware Blockchain Manufacturing Analytics

Upgrade to Microsoft Office Pro and Windows 11 Pro with this bundle for 87% off

Collaboration 2.0

NOVEMBER 2, 2024

This lifetime license bundle deal gives you access to the entire Microsoft Office Pro 2021 suite and Windows 11 Pro for just $53 for a limited time.

Access

NYS: Clinic Must Pay $450K Fine, Spend $1.2M on Security

Data Breach Today

JANUARY 8, 2024

State AG Settlement Comes After 2021 Lorenz Ransomware Attack on Health Center A federally funded health center that provides services to underserved communities in New York has been fined up to $450,000 and must invest $1.2

Security

Security Ransomware IT

US Gov dismantled the Moobot botnet controlled by Russia-linked APT28

Security Affairs

FEBRUARY 15, 2024

The Mirai -based Moobot botnet was first documented by Palo Alto Unit 42 researchers in February 2021, in November 2021, it started exploiting a critical command injection flaw ( CVE-2021-36260 ) in the webserver of several Hikvision products.

Military

Military Government Access Cybersecurity

TCO Considerations of Using a Cloud Data Warehouse for BI and Analytics

According to the study conducted by Wakefield Research in 2021, only 22% of the data leaders surveyed have fully realized ROI in the past two years, with most data leaders (56%) having no consistent way of measuring it.

Cloud

China-linked spies target Asian Telcos since at least 2021

Finnish police linked APT31 to the 2021 parliament attack

Webinars

Trending Sources

China-linked APT UNC3886 exploits VMware zero-day since 2021

Webinars

UK ICO Reprimands Electoral Commission for 2021 Hack Attack

2021 State of Analytics: Why Users Demand Better

Mazda Connect flaws allow to hack some Mazda vehicles

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Netgear urges users to upgrade two flaws impacting WiFi router models

Tor Project needs 200 WebTunnel bridges more to bypass Russia’ censorship

The Forrester Wave™: B2B Marketing Data Providers, Q2 2021

Russia-linked group APT29 is targeting Zimbra and JetBrains TeamCity servers on a large scale

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

ITRC Report: Breaches Up 78% in 2023, Breaking 2021 Record

Adobe is aware that ColdFusion bug CVE-2024-53961 has a known PoC exploit code

You’re Invited: Innovate Through Data Virtual Summit

CISA adds Cisco IOS XE flaw to its Known Exploited Vulnerabilities catalog

Chinese threat actors use Quad7 botnet in password-spray attacks

An ongoing malware campaign exploits Microsoft Exchange Server flaws

U.S. CISA adds Dahua IP Camera, Linux Kernel and Microsoft Exchange Server bugs to its Known Exploited Vulnerabilities catalog

Are You Ready For Predictive Analytics?

Irish Healthcare Ransomware Hack Cost Over 80 Million Euros

SEC fined 4 companies for misleading disclosures about the impact of the SolarWinds attack

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

FBI deleted China-linked PlugX malware from over 4,200 US computers

Your Team's Pragmatic Guide to Security

Threat actors leaked 70,000,000+ records allegedly stolen from AT&T

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Russian national sentenced to 40 months for selling stolen data on the dark web

Marketing-Led Post-COVID-19 Growth Strategies

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

New York Fines Geico, Travelers $11.3M for Data Breaches

AT&T confirmed that a data breach impacted 73 million customers

BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider

A Recruiter’s Guide To Hiring In 2021

AT&T states that the data breach impacted 51 million former and current customers

From Risk Assessment to Action: Improving Your DLP Response

A WhatsApp zero-day exploit can cost several million dollars

Fertility Test Lab Will Pay $1.25M to Settle Breach Lawsuit

2021 Dresner Advisory Services Business Intelligence Market Study

US offers $10 million reward for info on Hive ransomware group leaders

Upgrade to Microsoft Office Pro and Windows 11 Pro with this bundle for 87% off

NYS: Clinic Must Pay $450K Fine, Spend $1.2M on Security

US Gov dismantled the Moobot botnet controlled by Russia-linked APT28

TCO Considerations of Using a Cloud Data Warehouse for BI and Analytics

Stay Connected