LinkedIn (social media) – exfiltration of user details University Medical Center (Lax Vegas) – ransomware Above is a list of Companies I have information for that have confirmed some sort of Breach (its obviously not complete since most never report anything, just what I hear about) Note: This is going to be a new type […]
Month: June 2021
LinkedIn – If you are present…92 % of users leaked
Very rarely do a simply post for a single breach. But I wanted to make sure all people know that LinkedIn had ANOTHER massive breach. Looks like close to 92% of all users had their info leaked/stolen.
Urgent – Windows Print Spooler vulnerability becomes a RCE with a PoC
LINK LINK MS Patched CVE-2021-1675 in the beginning of June however, the patch doesn’t fix the vulnerability on Windows Server 2019 it looks. This looks to be a nightmare coming and more will come out on this.
Nvidia releases update GeForce experience
LINK Nvdiai releases a new update for its GeForce Experience software that is installed on those who have Nvidia cards. Gamers should make sure to update.
WD Drive Wiping was result of zero-day, not old vuln
LINK Just a bit of an update – It was being reported previously that the WD My Book Hard Drives that were connected online were being wiped and reset by an older vulnerability. That looks to NOT be the case, it looks like a new zero-day
Phoenix Contact Releases Many new updates for many products
LINK Its hard to be to the point when a vendor releases a bunch of updates over a bunch of products. If you use Phoenix Contact hardware at all, I suggest examining the link for some deeper details on updates they made.
Breach Announcements – June 28, 2021
NewsBlur (personal news reader service) – MongoDB download and deletion Mercedes-Benz – information disclosure Above is a list of Companies I have information for that have confirmed some sort of Breach (its obviously not complete since most never report anything, just what I hear about) Note: This is going to be a new type of […]
Cisco ASA Flaw Actively being attacked after PoC posted online
LINK CVE-2020-3580 was posted in October, but a new PoC was posted and now there are active widespread attacks occurring against these devices. Time to re-validate its done.
Citrix Hypervisor gets Security updates
LINK If you have a Citrix Hypervisor, time to update again.
Fortinet WAF devices affected by RCE
LINK Web Application Firewalls are affected by a recently discovered RCE. If you have a Fortinet WAF, time for another round of updating.