From Security Weekly Wiki
Jump to navigationJump to search


  1. HMRC Smishing Tax Scam Targets UK Banking Customers Information collected by the bogus pages reportedly includes victims' full names, dates of birth, home addresses, phone numbers, email addresses, passwords, credit card information, bank account information, National Insurance Numbers, passport numbers, driver's license numbers, memorable words and/or answers to security questions, and two-factor codes generated by online banking hardware devices.
  2. Israeli Companies Targeted with New Pay2Key Ransomware Attacks are typically conducted after midnight and the believed initial entry point for the intrusions is exploitation of weakly secured RDP services.
  3. Norwich, England-based housing association Flagship Group says it suffered a "Sodinokibi" ransomware attack last week that forced it to take the majority of its IT systems offline and resulted in the exposure of an unknown amount of employee and customer PII. Sodinokibi ransomware is advertised as REvil ransomware-as-a-service (RaaS) in underground forums with multiple actors claiming to use the ransomware. The RaaS is operated by the actor "UNKN" (aka "Unknown")
  4. Brazil's Court System Under Massive RansomExx Ransomware Attack
  5. Prestige Reservation Platform Exposes Millions of Hotel Guests An unsecured, misconfigured Amazon S3 bucket xposed online containing 24.4GB (10 million files) of personally identifiable information (PII) and credit card information belonging to millions of customers worldwide.
  6. Flaws in PcVue SCADA Product Can Facilitate Attacks on Industrial Organizations Three serious vulnerabilities affecting ARC Informatique's PcVue SCADA/HMI solution that could be exploited by attackers to take complete control over and/or disrupt industrial processes.