Cybersecurity Bi-weekly Roundup: Week of 23rd August 2021

A bi-weekly roundup of the latest cybersecurity news and research.

Halfway down the week and once again we’ve got you covered till the weekend on the what’s and nots in the world of cybersecurity.

1. Phishing attack exposes medical information for 12,000 patients at Revere Health

According to an official statement released by medical organisation Revere Health, even after the pandemic, medical care workers still can’t stand out enough to be noticed, regardless of where it comes from, and this time was exposed to a phishing email attack that uncovered some clinical records for roughly 12,000 patients.


2. Phishing campaign uses UPS.com XSS vuln to distribute malware

Being an exception may sound nice but can’t be trusted when being phished. The phishing scam was first discovered by security researcher Daniel Gallagher in which a scammer had pretended to be an email from UPS stating that a package had an “exception” and needed to be picked up by the customer.


3. Vaccination phishing scams increasing

With the surge of increase in scams, it’s now Korea’s turn to buckle up. As there have been warnings about an increase in financial scams in which swindlers send text messages containing web links to fake COVID-19 vaccination certificates, with the intention to acquire passwords and other personal information of victims.


4. Microsoft Spills 38 Million Sensitive Data Records Via Careless Power App Configs

Microsoft appears to have taken the term “spilling the beans” literally, with a lot of data leaked happened recently, including COVID-19 inoculation records, email addresses linked to American Airlines, Ford, the Indiana Department of Health, government-backed retirement numbers, and state-funded schools in New York City.


5. Web Censorship Systems Can Facilitate Massive DDoS Attacks

A new type of distributed denial of service (DDoS) attack that is all prepared to harm the censorship framework. The possibility of abuse is a source of concern. The assaults would use a type of reflection and augmentation that, once accomplished, would be “very unfavourable to any organisation.”


6. Nigerian Threat Actors Solicit Employees to Deploy Ransomware for Cut of Profits

The campaign sends emails to company insiders offering $1 million in Bitcoin if they install Demon Ware on a company’s network.


More related content for you

Scroll to top