Go to listing page

Daily Cybersecurity Roundup, March 05, 2021

Call it locking the front door and keeping the back door open. Or maybe keeping all the doors open while you are not home. This is exactly what was happening with scores of iOS and Android apps that leaked heaps of user data due to misconfigurations. Meanwhile, the IT firm that serves around 90% of the global aviation industry has warned several international airlines about a data breach. Three more malware strains used in the SolarWinds attack have also been spotted. With this, let’s dive in to learn about the key highlights in the cybersecurity space from the past 24 hours.

01

Mobile security firm Zimperium found 11,877 Android and 6,608 iOS apps blurting out users’ personal information, passwords, and medical information owing to cloud misconfigurations.

02

SITA, an IT operator in the aviation sector which serves Singapore Airlines, Lufthansa, United, and others, suffered a breach that impacted the data of hundreds of thousands of airline passengers around the world.

03

Cochise Eye and Laser, an optometrist in the US state of Arizona, disclosed a breach from the last month that affected approximately 100,000 patients.

04

Security experts uncovered a phishing campaign targeting the users of Outlook Web Access and Office 365 services via Zoom invites. It, reportedly, collected over 400,000 credentials since last year.

05

Microsoft and FireEye revealed three more malware strains—SUNSHUTTLE, GoldFinder, and Sibot—associated with the suspected Russian perpetrators who breached the SolarWinds software.

06

About 15 schools running under Nova Education Trust, the U.K, were impacted in a cybersecurity incident that knocked their systems offline, hindering remote learning.

07

Cisco published an advisory for its customers regarding a high-severity flaw in a component of Snort that exposes several of its products to DDoS attacks.

08

According to GAO, the Department of Defense failed to clearly lay out cybersecurity guidelines to contractors involved in building systems for its weapons programs.

09

IDnow agreed to acquire Germany-based identity verification provider Trust Management AG to further expand the portfolio of its verification methods.

10

TIG acquired identity and cybersecurity solutions firm ThirdSpace to deliver a fully comprehensive suite of services based on Microsoft technology.

Get the Daily Cybersecurity Roundup delivered to your email!