WhitehatGuru

Date: 31st May 2021 Severity: High JBS Foods, the world’s largest meat processing company is the latest entrant to the victims of cyberattacks, which has compelled the company to shut down its production across the globe, including Australia. With its 47 facilities across Australia, JBS operates the largest network of …

Date: 3rd June 2021 Severity: High Anne Neuberger, the National Security Council’s top cyber official released an open letter that warned businesses about an impending risk in the near future. In a recent report, the Japanese conglomerate Fujifilm announced that it is suffering from a ransomware attack, hence being at …

Headlines: Series of gaps allowed massive data breach at Desjardins. Canadian financial firm Desjardins suffered a major data breach compromising nearly 10 million customers’ personal information. Desjardins confirmed involvement of there employee behind the leak and indicated such insider threat a common problem among company of all sizes. Desjardins, a …

Date: 13th December 2020 Severity: High Headlines: SolarWinds Hack concluded as one of the biggest targeted attack against US Govt. & it’s agencies which has also impacted the private companies.  FireEye, a cyber security firm, initially discovered this global supply chain attack which weaponized the software update associated with SolarWinds …

Date: 8th Dec 2020 Attack/Breach Status: Successful  Severity Impact/Potential: High Headlines: Shirbit – One of the leading vehicle insurance companies for Govt. employees in Israel got hacked A Hacking group known as Black Shadow has demanded  a huge ransom of $3.8 million from one of the well known Insurance company …

Date: 8th Dec 2020 Attack/Breach Status: Successful  Severity Impact/Potential: High Headlines: FireEye, one of the largest cyber security firm, got hacked On Tuesday, FireEye, which is one of the largest cyber security company in United States, confirmed that they have been hacked.  This incident was first disclosed by CEO Kevin …

Date: 24th Nov 2020 Attack/Breach Status: Successful  Severity Impact/Potential: High Headlines: More than 3,00,000 Spotify accounts hacked Spotify, a digital audio streaming provider, has been targeted by hacker for Credential stuffing attack which resulted in exposing credentials of more than 3 lac customers.  Credential stuffing is a new form of …

Date: 16th Nov 2020 Attack/Breach Status: Successful  Severity Impact/Potential: High Headlines: Ticketmaster fined $1.7 Million for failing to protect customer data UK based company Ticketmaster has been fined $1.7 million by the Regulator for non-compliance of EU’s General Data Protection Regulation. Regulators confirmed that the company failed to properly secure …

Date: 12th Oct 2020 Attack/Breach Status: Successful  Severity Impact/Potential: High Headlines: 50000 Home Security Cameras hacked and posted online A group of hackers claimed to have hacked into 50,000 home security cameras where some of the private footages have been also posted online. Videos captured appears to be from IP …

Data containing HTML or Java Script can really be one of the BIGgest problem, specially when its is being specified by a ‘user’. For example simple application like Blog, where user can submit the comments after reading the post, which’s being displayed. If the user is ‘not-that-bad’ and enters only plain …