In the past few weeks, hackers took a liking to file-sharing services. Now, a Canadian undergraduate research university Lakehead extended its study break owing to a cyberattack at its file-sharing servers. Meanwhile, a Chinese APT used code first developed by the NSA to support their hacking operations, experts reveal. In other news, a new malware strain was found exploiting Apple’s M1 chip. On that note, let’s review the top ten cybersecurity highlights from the weekend.
01
Lakehead University was targeted by a cyberattack and has shut down on-campus computer systems in response to the attack. The attack was allegedly aimed at its file-sharing servers.
02
Security researchers revealed that a Chinese APT abused a Windows zero-day exploit it stole from the NSA’s Equation Group long before The Shadow Brokers group made a similar claim.
03
An unknown user allegedly siphoned off audio feeds and metadata from the invitation-only audio chat app, Clubhouse, to a third-party website.
04
Yuba County, California, experienced a ransomware attack that impacted some of its computers and halted operations at the county.
05
Security researchers reported another mysterious piece of Mac M1 malware, dubbed Silver Sparrow, affecting at least 30,000 devices in 153 countries.
06
French boat manufacturer Beneteau SA fell victim to a cyberattack that might lead to slowing or even hindering the production completely.
07
The UK-based NurseryCam, which provides a webcam system for parents to monitor their children at nursery school, alerted users of a security breach impacting their personal data.
08
New York State Department of Financial Services warned against an attack campaign targeting vulnerabilities in websites offering instant quotes.
09
Check Point detected a new Office365 threat called APOMacroSploit that targeted more than 80 customers worldwide. It weaponizes Excel documents for phishing attacks.
10
Melbourne-based RMIT University was forced to suspend online and in-person classes after suffering an IT systems outage due to a significant cyberattack.
