OSN MARCH 23, 2021

Fortify Security Team
Mar 23, 2021

Title: Oil Giant Shell Discloses Data Breach Linked to Accellion FTA Vulnerability

Date Published: March 23, 2021


Excerpt: “Shell has not disclosed how many individuals are involved in the security incident beyond saying that impacted parties have been contacted, alongside law enforcement agencies and regulators. The firm added that it does not appear core IT systems have been compromised, as the route of access was isolated from the rest of Shell’s central infrastructure.”

Title: Critical Flaws Affecting GE’s Universal Relay Pose Threat to Electric Utilities

Date Published: March 23, 2021


Excerpt: “The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned of critical security shortcomings in GE’s Universal Relay (UR) family of power management devices. “Successful exploitation of these vulnerabilities could allow an attacker to access sensitive information, reboot the UR, gain privileged access, or cause a denial-of-service condition,” the agency said in an advisory published on March 16.”

Title: RIT Admin With Axe to Grind Sent to Prison for Wiping Microsoft User Accounts

Date Published: March 23, 2021


Excerpt: “However, two months later, Kher decided to exact revenge on the Californian company, according to the US Department of Justice (DoJ). The 32-year-old infiltrated the firm’s servers while outside of the US and deleted over 80% of employee Microsoft Office 365 accounts, with over 1,200 out of 1,500 wiped in total. The company’s entire operations ground to a halt for two days. The VP of IT said, “In my 30-plus years as an IT professional, I have never been a part of a more difficult and trying work situation.”

Title: Microsoft Releases Printer Fix for Older Windows Versions


Date Published: March 22, 2021

Excerpt: “Microsoft has released out-of-band emergency updates for Windows 7, 8.1, Windows Server 2008, and Windows Server 2012 to fix printer issues arising from the March 2021 Patch Tuesday updates. Now that Microsoft has ironed out the bugs in its recent Windows 10 OOB printing updates, they have now released versions of Windows’s older versions.”

Title: Silverfish: Swiss Firm Accesses Servers Linked to Solarwinds Hackers

Date Published: March 22, 2021


Excerpt: “A Swiss cybersecurity company Proactive Defense Against Future Threats (PRODAFT), reported that it has accessed servers tied to a hacking group with a possible connection to the infamous SolarWinds breach. The hackers, as per PRODAFT’s analysis, have kept their campaign alive throughout this month. However, the company states that its researchers managed to break into the hackers’ computer infrastructure and discovered evidence of an extensive campaign active between August 2020 and March 2021.”

Title: Adobe Addresses a Critical Vulnerability in Coldfusion Product


Date Published: March 22,  2021

Excerpt: “The flaw affects ColdFusion 2016 Update 16 and earlier version, all ColdFusion 2018 Update 10, and earlier versions All ColdFusion 2021 Version 2021.0.0.323925. Adobe recommends updating your ColdFusion JDK/JRE to the latest version of the LTS releases for 1.8 and JDK 11, it pointed out that installing the ColdFusion update without a corresponding JDK update will NOT secure the server. The software giant also recommends customers apply the security configuration settings as outlined on the ColdFusion Security page as well as review the respective Lockdown guides.”

Title: When Melissa Virus Transformed World’s Perspective on Cyber Security

Date Published: March 23,  2021


Excerpt: “It completely damaged large companies that had a huge amount of emails being created on their web servers. It managed to disrupt hundreds of networks including those of Microsoft! The New York Times reported in March 1999 that 250 organizations had called the Computer Emergency Response Team, a Pentagon-financed security service at Carnegie Mellon University, which meant that at least 100,000 workplace computers were affected. The final number of infected computers was much larger.”

Title: Thousands of Taxpayers’ Personal Details Potentially Exposed Online Through Councils’ Debt-Chasing Texts

Date Published: March 23, 2021


Excerpt: “Upon investigating the enumerable URLs, it was discovered that London’s Bexley Council, a user of the Telsolutions service, had implemented no authentication at all. Anyone could freely view the full details of an alleged tax defaulter in the borough without proving their identity. To view the information of another taxpayer, all the recipient needed to do was follow the URL from the SMS, alter the alphanumeric characters, and click a button labelled “proceed.”

Title: Cybercrime Complaints Are up, According to the FBI’s Latest Report

Date Published: March 22, 2021


Excerpt: “The FBI’s Internet Crime Complaint Center (IC3) received nearly 800,000 complaints about cybercrime last year, more than two-thirds of a jump from what was seen in 2019. About a third of these complaints are from phishing attacks. The report summarizes data submitted by the general public and businesses on its website portal and is produced each year. Over $4 billion in losses attributable to these complaints was calculated, the most ever for what has been seen in one of these reports.”

Title: Understanding Remote Work Security

Date Published: March 23, 2021


Excerpt: “The second approach to security in a remote environment is to admit that employees pose an inevitable security risk. In this view, rather than trying to protect every employee from every possible threat, you focus on protecting the company itself from employees. It sounds harsh, but it’s for the greater good. A breach of one employee’s laptop is bad, but a breach of an entire company’s IT infrastructure, and potentially everyone connected to it, is much worse.”

Recent Posts

June 10, 2022

Title: Bizarre Ransomware Sells Decryptor on Roblox Game Pass Store Date Published: June 9, 2022 https://www.bleepingcomputer.com/news/security/bizarre-ransomware-sells-decryptor-on-roblox-game-pass-store/ Excerpt: “A new ransomware is taking the unusual approach of...

June 9, 2022

Title: New Symbiote Malware Infects all Running Processes on Linux Systems Date Published: June 9, 2022 https://www.bleepingcomputer.com/news/security/new-symbiote-malware-infects-all-running-processes-on-linux-systems/ Excerpt: “A newly discovered Linux malware known...

June 8, 2022

Title: Surfshark, ExpressVPN pull out of India Over Data Retention Laws Date Published: June 7, 2022 https://www.bleepingcomputer.com/news/legal/surfshark-expressvpn-pull-out-of-india-over-data-retention-laws/ Excerpt: “Surfshark announced today they are shutting down...

June 6, 2022

Title: Italian City of Palermo Shuts Down all Systems to Fend off Cyberattack Date Published: June 6, 2022 https://www.bleepingcomputer.com/news/security/italian-city-of-palermo-shuts-down-all-systems-to-fend-off-cyberattack/ Excerpt: “The municipality of Palermo in...

June 3, 2022

Title: Critical Atlassian Confluence Zero-Day Actively Used in Attack Date Published: June 2, 2022 https://www.bleepingcomputer.com/news/security/critical-atlassian-confluence-zero-day-actively-used-in-attacks/ Excerpt: “Hackers are actively exploiting a new Atlassian...

June 2, 2022

Title: Conti Ransomware Targeted Intel Firmware for Stealthy Attacks Date Published: June 2, 2022 https://www.bleepingcomputer.com/news/security/conti-ransomware-targeted-intel-firmware-for-stealthy-attacks/ Excerpt: “Researchers analyzing the leaked chats of the...

June 1, 2022

Title: Ransomware Attacks Need Less Than Four Days to Encrypt Systems Date Published: June 1, 2022 https://www.bleepingcomputer.com/news/security/ransomware-attacks-need-less-than-four-days-to-encrypt-systems/ Excerpt: “The duration of ransomware attacks in 2021...