Welcome to CyberIntelMag’s weekly roundup! A place where you can find the most important stories in the cybersecurity world from the past week.
The Good News
This week’s good news includes CISA ordering government entities to upgrade their Macs and iPhones by May 1st, Adobe addressing security vulnerabilities in Reader and Acrobat, Fortinet fixing a severe flaw in a data analytics solution, WhatsApp coming up with a new device feature to prevent account takeover attacks, and much more.
- Federal organizations were asked by the Cybersecurity and Infrastructure Security Agency (CISA) to fix two security flaws currently being actively used to attack iPhones, Macs, and iPads.
- Adobe released updates for at least 56 security flaws in many of its products, some of which were severe enough to place users of macOS and Windows at risk of code execution threats.
- Fortinet, a cybersecurity solutions provider, announced the release of security upgrades for a number of its products, including patches for a severe flaw in FortiPresence.
- Google described a number of initiatives intended to enhance the ecosystem for managing vulnerabilities and develop more transparency standards for exploitation.
- The well-known instant messaging service WhatsApp revealed a new account verification feature to stop malware from accessing users’ accounts while it is running on their mobile devices.
The Bad News
This week’s bad news includes Iranian hackers being exposed using ransomware to execute destructive attacks, Twitter Circle tweets being found to be no longer all that private, the owner of Pizza Hut and KFC admitting a data breach, the possibility of Azure access keys to be used as backdoors by miscreants, hacked websites being found spreading malware via fake Chrome updates, Hyundai suffering a data breach, DDoS attacks being carried out through VPS infrastructure, Kodi confirming a data breach, and much more.
- The Iranian nation-state entity MuddyWater was observed carrying out destructive activities against hybrid environments under the guise of a ransomware attack.
- A breach that revealed the names and Social Security numbers of present and past workers persisted even after the Elmbrook School District became aware of the issue.
- A glitch that many Twitter users experienced caused Circle tweets, meant to be seen by a few people (like an Instagram Close Friends story), to appear on the algorithmically created For You timeline.
- Consumers whose personal information was stolen in a ransomware attack on January 13 were found to be receiving data breach warning letters from Yum! Brands, the corporation that owns KFC, Pizza Hut, and Taco Bell fast food restaurants.
- Cybersecurity experts revealed that 13 malicious NuGet packages were used to disseminate the cryptocurrency-stealing malware in a supply chain assault on .NET developers.
- Researchers from Orca Security believe that a design weakness in Microsoft Azure, where shared key authorization is set by default when creating storage accounts, might provide attackers complete access to your environment.
- Hackers attack websites in order to include scripts that show fake Google Chrome automatic update issues and disseminate malware to unaware users.
- The pro-Islamic hacktivist organization “Anonymous Sudan,” which has previously targeted Indian airports and seaports, has also targeted many prestigious medical facilities in Hyderabad and other parts of India.
- Customers who scheduled a test drive and car owners in Italy and France were affected by a data breach at Hyundai. Threat actors accessed the impacted people’s email addresses, postal addresses, phone numbers, and car chassis numbers.
- Hyper-volumetric DDoS (distributed denial of service) attacks were found to be transitioned from employing attacked IoT devices to using hacked Virtual Private Servers (VPS).
- A popular manufacturer of high-end yachts for the super-rich was the victim of a ransomware assault over the Easter weekend. However, it is unclear if private customer information was stolen.
- Following the theft of the company’s MyBB forum database, which contained private messages and user information by threat actors, Kodi, a developer of open-source media player software, acknowledged a data breach.