Go to listing page

Daily Cybersecurity Roundup, January 11, 2022

It’s been weeks, but when it comes to Log4Shell, the threat still seems fresh and frightening. Lately, a French cosmetic firm suffered data exposure owing to the flaw. In different news, an independent clinical peer review institution disclosed a breach event impacting hundreds of thousands of people. What more? The weekly number of attacks per organization has touched a new high in Q4 2021, with corporate networks being prime targets. Join in to know more about the top headlines in cybersecurity from the last 24 hours.

01

Medical Review Institute of America notified over 134,000 individuals about the leak of their protected health information in a cyberattack.

02

Clarins revealed a security incident and surmised that attackers may have accessed the personal information of its Singaporean customers. The cybercriminals abused the widely exploited Log4Shell flaws.

03

The newly launched Night Sky ransomware group has started exploiting one of the critical flaws in the Log4j logging library to circumvent VMware Horizon servers.

04

Cloudflare observed a staggering rise in DDoS attempts in December with double the number of attacks in comparison to the previous month. One-third of its customers received a ransom demand last month.

05

The AvosLocker group has added new capabilities for encrypting Linux systems, specifically VMware ESXi servers, to its ransomware. Additionally, the SFile ransomware launched a new variant to infect Linux-based systems.

06

Intezer warned against new SysJoker malware that has support for Windows, Linux, and macOS environments and was observed going undetected on VirusTotal. It is likely wrapped under malicious NPM packages.

07

U.K’s Action fraud is alerting online users of romance scams that usually occur between Christmas and Valentine’s Day. The losses from November 2020 to October 2021 were more than $100 million.

08

Check Point Research reported that weekly cyberattacks attempts per organization hit an all-time high in Q4 2021 with numbers touching as high as 925 attacks per organization.

09

A researcher uncovered a critical IP spoofing bug in Django REST that could let cybercriminals breach its framework to invite DDoS and brute-force attacks.

10

Israeli security startup Pentera raised $150 million in funding led by K1 Investment Management, with the participation of existing investors.

Get the Daily Cybersecurity Roundup delivered to your email!