OSN MARCH 23, 2021

Fortify Security Team
Mar 23, 2021

Title: Oil Giant Shell Discloses Data Breach Linked to Accellion FTA Vulnerability

Date Published: March 23, 2021


Excerpt: “Shell has not disclosed how many individuals are involved in the security incident beyond saying that impacted parties have been contacted, alongside law enforcement agencies and regulators. The firm added that it does not appear core IT systems have been compromised, as the route of access was isolated from the rest of Shell’s central infrastructure.”

Title: Critical Flaws Affecting GE’s Universal Relay Pose Threat to Electric Utilities

Date Published: March 23, 2021


Excerpt: “The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned of critical security shortcomings in GE’s Universal Relay (UR) family of power management devices. “Successful exploitation of these vulnerabilities could allow an attacker to access sensitive information, reboot the UR, gain privileged access, or cause a denial-of-service condition,” the agency said in an advisory published on March 16.”

Title: RIT Admin With Axe to Grind Sent to Prison for Wiping Microsoft User Accounts

Date Published: March 23, 2021


Excerpt: “However, two months later, Kher decided to exact revenge on the Californian company, according to the US Department of Justice (DoJ). The 32-year-old infiltrated the firm’s servers while outside of the US and deleted over 80% of employee Microsoft Office 365 accounts, with over 1,200 out of 1,500 wiped in total. The company’s entire operations ground to a halt for two days. The VP of IT said, “In my 30-plus years as an IT professional, I have never been a part of a more difficult and trying work situation.”

Title: Microsoft Releases Printer Fix for Older Windows Versions


Date Published: March 22, 2021

Excerpt: “Microsoft has released out-of-band emergency updates for Windows 7, 8.1, Windows Server 2008, and Windows Server 2012 to fix printer issues arising from the March 2021 Patch Tuesday updates. Now that Microsoft has ironed out the bugs in its recent Windows 10 OOB printing updates, they have now released versions of Windows’s older versions.”

Title: Silverfish: Swiss Firm Accesses Servers Linked to Solarwinds Hackers

Date Published: March 22, 2021


Excerpt: “A Swiss cybersecurity company Proactive Defense Against Future Threats (PRODAFT), reported that it has accessed servers tied to a hacking group with a possible connection to the infamous SolarWinds breach. The hackers, as per PRODAFT’s analysis, have kept their campaign alive throughout this month. However, the company states that its researchers managed to break into the hackers’ computer infrastructure and discovered evidence of an extensive campaign active between August 2020 and March 2021.”

Title: Adobe Addresses a Critical Vulnerability in Coldfusion Product


Date Published: March 22,  2021

Excerpt: “The flaw affects ColdFusion 2016 Update 16 and earlier version, all ColdFusion 2018 Update 10, and earlier versions All ColdFusion 2021 Version 2021.0.0.323925. Adobe recommends updating your ColdFusion JDK/JRE to the latest version of the LTS releases for 1.8 and JDK 11, it pointed out that installing the ColdFusion update without a corresponding JDK update will NOT secure the server. The software giant also recommends customers apply the security configuration settings as outlined on the ColdFusion Security page as well as review the respective Lockdown guides.”

Title: When Melissa Virus Transformed World’s Perspective on Cyber Security

Date Published: March 23,  2021


Excerpt: “It completely damaged large companies that had a huge amount of emails being created on their web servers. It managed to disrupt hundreds of networks including those of Microsoft! The New York Times reported in March 1999 that 250 organizations had called the Computer Emergency Response Team, a Pentagon-financed security service at Carnegie Mellon University, which meant that at least 100,000 workplace computers were affected. The final number of infected computers was much larger.”

Title: Thousands of Taxpayers’ Personal Details Potentially Exposed Online Through Councils’ Debt-Chasing Texts

Date Published: March 23, 2021


Excerpt: “Upon investigating the enumerable URLs, it was discovered that London’s Bexley Council, a user of the Telsolutions service, had implemented no authentication at all. Anyone could freely view the full details of an alleged tax defaulter in the borough without proving their identity. To view the information of another taxpayer, all the recipient needed to do was follow the URL from the SMS, alter the alphanumeric characters, and click a button labelled “proceed.”

Title: Cybercrime Complaints Are up, According to the FBI’s Latest Report

Date Published: March 22, 2021


Excerpt: “The FBI’s Internet Crime Complaint Center (IC3) received nearly 800,000 complaints about cybercrime last year, more than two-thirds of a jump from what was seen in 2019. About a third of these complaints are from phishing attacks. The report summarizes data submitted by the general public and businesses on its website portal and is produced each year. Over $4 billion in losses attributable to these complaints was calculated, the most ever for what has been seen in one of these reports.”

Title: Understanding Remote Work Security

Date Published: March 23, 2021


Excerpt: “The second approach to security in a remote environment is to admit that employees pose an inevitable security risk. In this view, rather than trying to protect every employee from every possible threat, you focus on protecting the company itself from employees. It sounds harsh, but it’s for the greater good. A breach of one employee’s laptop is bad, but a breach of an entire company’s IT infrastructure, and potentially everyone connected to it, is much worse.”

Recent Posts

July 17, 2023

Title: Thousands of Images on Docker Hub Leak Auth Secrets, Private Keys Date Published: July 16, 2023 https://www.bleepingcomputer.com/news/security/thousands-of-images-on-docker-hub-leak-auth-secrets-private-keys/ Excerpt: “Researchers at the RWTH Aachen University...

July 14, 2023

Title: Indexing Over 15 Million WordPress Websites with PWNPress Date Published: July 14, 2023 https://securityaffairs.com/148465/hacking/pwnpress-platform.html Excerpt: “Sicuranex’s PWNPress platform indexed over 15 million WordPress websites, it collects data...

December 9, 2022

Title: US Health Dept Warns of Royal Ransomware Targeting Healthcare Date Published: December 8, 2022 https://www.bleepingcomputer.com/news/security/us-health-dept-warns-of-royal-ransomware-targeting-healthcare/ Excerpt: “The U.S. Department of Health and Human...

December 8, 2022

Title: New ‘Zombinder’ Platform Binds Android Malware With Legitimate Apps Date Published: December 8, 2022 https://www.bleepingcomputer.com/news/security/new-zombinder-platform-binds-android-malware-with-legitimate-apps/ Excerpt: “A darknet platform dubbed...

December 7, 2022

Title: Fantasy – A New Agrius Wiper Deployed Through a Supply-Chain Attack Date Published: December 7, 2022 https://www.welivesecurity.com/2022/12/07/fantasy-new-agrius-wiper-supply-chain-attack/ Excerpt: “ESET researchers discovered a new wiper and its execution...

December 6, 2022

Title: This Badly Made Ransomware Can’t Decrypt Your Files, Even if You Pay the Ransom Date Published: December 6, 2022 https://www.zdnet.com/article/this-badly-made-ransomware-cant-decrypt-your-files-even-if-you-pay-the-ransom/ Excerpt: “Victims of a recently...

December 5, 2022

Title: SIM Swapper Gets 18-Months for Involvement in $22 Million Crypto Heist Date Published: December 3, 2022 https://www.bleepingcomputer.com/news/security/sim-swapper-gets-18-months-for-involvement-in-22-million-crypto-heist/ Excerpt: “Florida man Nicholas Truglia...