Weekly Cybersecurity Recap April 1

  • By Patrick Ryan
  • Apr 01, 2022

The pace of digital attacks has picked up as Russia's war against Ukraine continues. Though Russia has not come close to crippling the digital infrastructure of the free world, cybersecurity industry veterans are on edge as the war enters its second month. However, plenty of the cyber-attacks that occurred in the previous week were unrelated to the war in Eastern Europe. Let's take a look at some of the most newsworthy hacks and digital breaches that went down in the final week of March.

Sophos Bug

Sophos contains a bug that permits remote code executions (RCEs) to move into firewalls. This digital security flaw stems from Sophos' failure to add the proper bypass for authentication. Sophos rushed to plug the firewall vulnerability, yet cyber security specialists are not completely confident that the repair effort will prove effective. The Sophos firewall bug relates to the user portal and web admin in version 18.5.3 and older versions.  

Hackers who took advantage of the bug disabled the Sophos firewall to tap into highly sensitive data and compromise the company's network. A manual update can be implemented to combat the threat. The company has also provided a workaround solution with the verification of the firewall user portal and web admin to ensure they are not exposed to WAN. In plain terms, this means Sophos clients are advised to disable WAN access to the user portal and web admin.

Exchange Server Hijacking  

Digital criminals are exploiting exchange server emails that lack sufficient patching. The breach transmits malware by violating exchange server email chains. The email phishing scan relies on conversation tactics to hijack and send malware referred to as "IcedID" to steal valuable data. The hackers deliver the malware to vulnerable computers through Microsoft Exchange servers that lack sufficient patching.

Google's Warning

Google has issued a warning to those who use its popular Chrome web browser. Google Chrome users are encouraged to upgrade their browsers to overcome the threat of a zero-day hack. This is the second such hack launched against the tech giant in the previous three months. According to Google's digital security team, Chrome web browsers used in macOS, Linux, and Windows operating systems are susceptible to the hack.  

Aside from upgrading the Chrome browser, Google's brass doesn't have any other advice for Chrome users. Those who use the Microsoft Edge browser are also vulnerable. Edge browser users can enhance the safety of their surfing on the web by adding the digital protection available through the ellipses on the right side of the browser window.

Partnership Health Plan of California hit by Hive Ransomware

The IT systems of the Partnership Health Plan of California have been temporarily disabled because of a Hive ransomware attack. It appears the health group has not ponied up the requested ransom as representatives of the nonprofit managed care specialist have warned clients that its systems might be down for several weeks or longer.  

Though the group's official statement pertaining to the ransomware attack references technical difficulties, it appears as though its internal systems have been paralyzed by Hive ransomware employed through multiple mechanisms. The attack centers on the transmission of harmful attachments to phishing messages. It merely takes one download of the malicious attachment to trigger remote desktop protocols and the subsequent network breach, file encryption, and ransom request. Hive ransomware has quickly expanded to the point that the FBI issued a warning about its ubiquity and potency.

About the Author
IDStrong Logo

Related Articles

Instagram Vulnerability Allowed Hackers Access to Control Your Phone

Security experts Check Point Research discovered a critical vulnerability while examining Instagra ... Read More

Alien Malware Infects More than 226 Mobile Apps and Steals Bank Data

As reported on September 24, 2020, by ZDNet and ThreatPost, a new strain of malware named “Alien ... Read More

Universal Health Systems Hit by Ransomware Attack

Universal Health Systems (UHS), a Fortune 500 company owning more than 400 hospitals across the co ... Read More

Exchange Server Bug Exposes a Big Risk to Hackers

Months after Microsoft released a patch to fix a serious flaw in MS Exchange Server, more than 61% ... Read More

Clients’ Bank Data Exposed in Blackbaud Ransomware Attack

Blackbaud software was victim to a ransomware attack last May, and new information suggests that c ... Read More

Latest Articles

Flagstar Bank Breach Impacts More Than a Million Customers

Flagstar Bank Breach Impacts More Than a Million Customers

Flagstar Bank is in the news for the wrong reason. The bank recently publicized the fact that it discovered a digital breach.

Weekly Recap June 24 2022

Weekly Recap June 24 2022

We are nearly halfway through 2022. News stories detailing hacks and other digital breaches continue to roll in on a daily basis.

Cybercrime Related to Travel Soars at the Year’s Halfway Point

Cybercrime Related to Travel Soars at the Year’s Halfway Point

There has been a significant spike in tourism following the gradual decline of the coronavirus pandemic.  The increase in travel has caught the attention of digital miscreants looking to scam tourists as well as travel services providers.

Featured Articles

How to Buy a House with Bad Credit

How to Buy a House with Bad Credit

Buying your own home is the American Dream, but it might seem out of reach to those with bad credit. However, the good news is, if your credit is less than perfect, you do still have options and in most cases, can still buy a home.

How Secure Is Your Password? Tips to Improve Your Password Security

How Secure Is Your Password? Tips to Improve Your Password Security

Any good IT article on computers and network security will address the importance of strong, secure passwords. However, the challenge of good passwords is that most people have a hard time remembering them, so they use simple or obvious ones that pose a security risk.

Top 10 Senior Scams and How to Prevent Them

Top 10 Senior Scams and How to Prevent Them

Senior scams are becoming a major epidemic for two reasons. First, seniors often have a lot of money in the bank from a life of working hard and saving.