Sergiu Gatlan reports: Attackers could use critical firmware vulnerabilities discovered by Microsoft in some NETGEAR router models as a stepping stone to move laterally within enterprise networks. The security flaws impact DGN2200v1 series routers running firmware versions before v1.0.0.60 and compatible with all major DSL Internet service providers. They allow unauthenticated attackers to access unpatched routers’ management…
Category: Business Sector
Western Digital to provide recovery services for hacked NAS drives
Western Digital has announced a new trade-in programme to help customers mitigate the effects of a mass malware attack that saw terabytes of data wiped from users’ NAS drives overnight. Those who lost data as a result of the hack will be able to benefit from Western Digital’s data recovery services, as well as a…
JP: Japan Airport Refueling Co. discloses ransomware incident; refueling work not impacted
Security NEXT reports that Japan Airport Refueling, which provides aircraft refueling services, experienced a ransomware attack. A machine translation of the report says, in part, that the company’s internal network failed in the early morning of June 21. Investigation confirmed that it was a ransomware attack, and the company received a ransom demand to decrypt…
Facebook sues four Vietnamese nationals for hijacking accounts
Catalin Cimpanu reports: Social networking giant Facebook has filed two lawsuits today against two suspected criminal groups that abused its advertising platform for their own gains. The first lawsuit was filed against four Vietnamese nationals for hijacking user accounts and the second against a US company for running an e-commerce bait-and-switch scam. Read more on…
Indian tech startup exposed Byju’s student data
Zach Whittaker reports: India-based technology startup Salesken.ai has secured an exposed server that was spilling private and sensitive data on one of its customers, Byju’s, an education technology giant and India’s most valuable startup. The server was left unprotected since at least June 14, according to historical data provided by Shodan, a search engine for exposed…
Hackers use zero-day to mass-wipe My Book Live devices
Lawrence Abrams reports that preliminary reports attributing a mass-wipe to a CVE from 2018 were not quite the whole story. Western Digital had originally told BleepingComputer that the attacks were being conducted through a 2018 vulnerability tracked as CVE-2018-18472, which was not fixed as the device has been out of support since 2015. It turns out that…