Newegg Breach Lasts Nearly a Month
Newegg finally addressed a recent breach after unknowingly hosting malicious code within a payment page for the last month. While the company is still unclear about how many customers were affected, the injected code does appear to have targeted both desktop and mobile visitors to the Newegg site. This breach is extremely similar to a previous attack on British Airlines, leading officials to believe the same group may have been responsible for both attacks.
EternalBlue Exploit Still Remains a Major Threat
More than a year after the WannaCry attacks brought NSA exploits to light, the cryptomining variant WannaMine is still consistently being spotted in the wild, harming businesses as it spreads. Microsoft was prompt to release multiple patches for the various exploits, but many companies are still falling victim to these attacks due to poor security practices. By operating through several PowerShell scripts, the attack is nearly fileless, making it much more difficult to track through traditional methods.
Ransomware Targets Bristol Airport
Nearly all of the information screens at Bristol Airport have been shut down for the last several days following a ransomware attack on airport systems. Officials were quick to take the systems offline to mitigate further damage and have since returned the airport to normal operations. Luckily, no actual flights were affected by this attack and most passengers noticed only minor delays in services.
Email Breach Hits State Department Staff
A breach of the State Department’s email systems exposed personal information belonging to hundreds of staff members. The security for this department has long been under scrutiny for failing to meet industry standards, including a lack of two-factor authentication for main email systems. The breach is thought to be the result of a phishing attack on a cloud-hosted email server, but the exact cause is still unknown.
Un-owned MongoDB Server Left Exposed
An independent researcher recently found an unsecured database with personal contact information for nearly 11 million individuals, but was unable to find an owner for the server. Though much of the data appeared to be linked to the coupon website SaverSpy, affiliate company Quotient Technology claims they neither own the data, nor suffered a breach. Fortunately, due to the nature of the coupon sites, no payment information was included with the records.
The post Cyber News Rundown: Newegg Breached appeared first on Webroot Blog.