OSN FEBRUARY 24, 2021

Title: Exploitation of Accellion File Transfer Appliance Date Published: February 24, 2021 https://us-cert.cisa.gov/ncas/alerts/aa21-055a Excerpt: “One of the exploited vulnerabilities (CVE-2021-27101) is an SQL injection vulnerability that allows an unauthenticated...

OSN FEBRUARY 22, 2021

Title: Mandiant Identifies Criminal Threat Actor and Mode of Attacks Date Published: February 22, 2021 https://www.accellion.com/company/press-releases/accellion-provides-update-to-fta-security-incident-following-mandiants-preliminary-findings/ Excerpt: “Mandiant, a...

OSN February 10, 2021

Title: Supply-Chain Hack Breaches 35 Companies, Including PayPal, Microsoft, Apple Date Published: February 10, 2021 https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610 Also See: Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of...