Daily Cybersecurity Roundup, March 16, 2022
Top 10 hacking news
Multiple warnings by authorities to patch critical flaws appear to go in vain as Russian hackers recently abused a popular flaw—while also enrolling their own device for MFA—to target a U.S-based NGO. Meanwhile, a new botnet and a ransomware strain have been reported as emerging threats. On the brighter side, join us in welcoming a new law that mandates companies in the U.S. to report cybersecurity breaches within 72 hours. Continue reading for the top cyber highlights from the past 24 hours.
The FBI and CISA released a joint advisory against Russian state-sponsored hackers who penetrated through the cloud networks of an NGO after exploiting misconfigured MFA protocols and the PrintNightmare flaw.
360 NetLab stumbled across a new botnet malware, dubbed B1txor20, actively exploiting Log4j flaws in Linux systems to create a bot army that helps hackers install rootkits and steal sensitive records.
According to Armorblox, a phishing campaign disguised as Instagram technical support is attempting to harvest employee credentials from a well-known New York-based life insurance company.
Dr.Web disclosed numerous trojanized apps on Google Play Store prompting potential victims to take action, such as depositing money for trading or signing up for expensive subscriptions, benefitting the scammers eventually.
Blackberry warned about a new ransomware threat, dubbed LokiLocker, targeting English-speaking victims and their Windows systems.
Under the new cyber incident reporting law signed by President Joe Biden, critical infrastructure organizations will be required to report cyber incidents to the DHS within 72 hours of the discovery of the event, and within 24 hours if they make a ransomware payment.
A widespread phishing attack was reported in South Korea leveraging 542 unique domains to steal credentials of the users of Naver, a Google-like online platform.
Intel471 found that, in Q4 2021, the ransomware landscape witnessed 34 different variants in approximately 722 distinct attacks, with LockBit 2.0, Conti, PYSA, and Hive ransomware bagging top rankings.
JFrog Security discovered a set of vulnerabilities in ClickHouse DBMS that can let a hacker crash its server, expose data, or even trigger remote code execution attacks.
The Sioux Falls City Council of South Dakota set aside $10 million in funds to develop a Dakota State University cybersecurity lab, which could attract nearly 500 jobs.