Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

COVID-19 themed attacks October 1 – December 5, 2020

This post includes the details of the COVID-19 themed attacks launched from October 1 to December 5, 2020. Threat actors exploit the interest in the COVID-19 outbreak while infections increase worldwide, experts are observing new campaigns on a daily basis. Below a list of attacks detected between October 1 to December 5, 2020. October 26 […]

Oxford University Lab

This post includes the details of the COVID-19 themed attacks launched from October 1 to December 5, 2020.

Threat actors exploit the interest in the COVID-19 outbreak while infections increase worldwide, experts are observing new campaigns on a daily basis.

COVID-19

Below a list of attacks detected between October 1 to December 5, 2020.

October 26 – COVID19 vaccine manufacturer suffers a data breach

Dr. Reddy’s, the Indian contractor for Russia’s “Sputinik V” Coronavirus vaccine was hit with a cyber-attack that forced the company to close its plants.

November 13 – Three APT groups have targeted at least seven COVID-19 vaccine makers

At least the three nation-state actors have targeted seven Coronavirus vaccine makers, they are Strontium, Lazarus Group, and Cerium, Microsoft warns.

November 27 – Details of 16 million Brazilian COVID19 patients exposed online

The personal and health details of more than 16 million Brazilian Coronavirus patients, including Government representatives, have been exposed online.

November 30 – Exploring malware to bypass DNA screening and lead to ‘biohacking’ attacks

Boffins from the Ben-Gurion University of the Negev described a new cyberattack on DNA scientists that could open to biological warfare.

December 3 – Hackers are targeting COVID19 vaccine cold chain

IBM X-Force experts warned of threat actors actively targeting organizations associated with the COVID vaccine cold chain.

December 5 – COVID19 – Johnson & Johnson saw a 30% uptick in cyber-attacks

Healthcare organizations like Johnson & Johnson are observing a surge of cyber attacks carried by state-sponsored hackers during COVID pandemic.

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, COVID)

[adrotate banner=”5″]

[adrotate banner=”13″]