A critical vulnerability in Microsoft's Azure Cosmos DB affecting thousands of its cloud computing customers allowed attackers to read, modify or even delete databases admin privileges.

https://thehackernews.com/2021/08/critical-cosmos-database-flaw-affected.html

Microsoft notified over 30% of customers about potential breach.

US-based technology company Kaseya has released security patches to address two zero-day vulnerabilities affecting its Unitrends enterprise backup and continuity solution that could lead to privilege escalation and RCE attacks.

Read: https://thehackernews.com/2021/08/kaseya-issues-patches-for-two-new-0-day.html

Google and Microsoft said they are pledging to invest a total of $30 billion in cybersecurity advancements over the next 5 years.

https://thehackernews.com/2021/08/microsoft-google-to-invest-30-billion.html

Microsoft is warning users about a widespread credential phishing campaign that uses open redirect links in emails as a vector to trick them into visiting malicious websites by effectively bypassing security software.

Details: https://thehackernews.com/2021/08/microsoft-warns-of-widespread-phishing.html

New LockFile ransomware family that emerged last month uses a novel technique known as "intermittent encryption" to bypass behavioral and statistical-based ransomware protection.

Details: https://thehackernews.com/2021/08/lockfile-ransomware-bypasses-protection.html

Unauthenticated attackers could exploit a new vulnerability — dubbed ProxyToken, CVE-2021-33766 — in Microsoft Exchange servers to change mailbox settings and spy on email.

Read details: https://thehackernews.com/2021/08/new-microsoft-exchange-proxytoken-flaw.html

Securing accounts and personal information through single-factor authentication is now on the United States Cybersecurity and Infrastructure Security Agency' (CISA) list of bad practices.

Read: https://thehackernews.com/2021/08/cisa-adds-single-factor-authentication.html

Newly discovered vulnerabilities in Fortress S03 Wi-Fi home security alarm system could allow malicious parties to remotely gain unauthorized access and alter system behavior, including disarming devices without the victim's knowledge.

Details: https://thehackernews.com/2021/08/attackers-can-remotely-disable-fortress.html

Researchers have developed a machine learning technique that relies on authentic interactions between Bluetooth devices to build a reliable technique for securing device-to-device authentication.

Read: https://thehackernews.com/2021/08/researchers-propose-machine-learning.html

QNAP is currently investigating two newly discovered security vulnerabilities in OpenSSL to determine their impact on its network-attached storage (NAS) appliances and says it will release security updates as needed.

Details: https://thehackernews.com/2021/09/qnap-working-on-patches-for-openssl.html

Linphone's Session Initiation Protocol (SIP) stack has a vulnerability that can be remotely exploited without the victim's knowledge to crash the SIP client's device.

Read: https://thehackernews.com/2021/09/linphone-sip-stack-bug-could-let.html

As the popularity of internet-sharing or "proxyware" platforms such as Honeygain and Nanowire grows, cybercriminals are using these platforms as a channel to monetize their malware activities.

Read details: https://thehackernews.com/2021/09/cybercriminals-abusing-internet-sharing.html

FTC has banned stalkerware app SpyFone from the surveillance business over concerns that it stole and shared sensitive data on people's physical movements and online activities that stalkers used to monitor potential targets.

Read: https://thehackernews.com/2021/09/ftc-bans-stalkerware-app-spyfone-orders.html

Chinese law enforcement authorities have arrested cybercriminals behind the Mozi IoT botnet, nearly two years after the malware first appeared on the threat landscape.

Read details: https://thehackernews.com/2021/09/chinese-authorities-arrest-hackers.html

A high-severity security vulnerability in WhatsApp's image filtering feature could have been exploited to remotely read sensitive information from victims' devices by simply sending them a malicious image through the messaging app.

Details: https://thehackernews.com/2021/09/whatsapp-photo-filter-bug-could-have.html

Newly discovered flaws in commercial Bluetooth stacks affect millions of smartphones, laptops and industrial and consumer IoT devices.

Read: https://thehackernews.com/2021/09/new-braktooth-flaws-leave-millions-of.html

Dubbed "BrakTooth," it could allow attackers to run arbitrary code on the device or, worse, crash it.

Cisco has released a patch for a critical vulnerability in its Enterprise NFVIS software, which could be exploited by an attacker to take control of affected systems.

Read: https://thehackernews.com/2021/09/cisco-issues-patch-for-critical.html

A proof-of-concept (PoC) exploit is available publicly.

FIN7 hackers are using Windows 11-themed Word documents to drop malicious payloads, including a JavaScript backdoor.

https://thehackernews.com/2021/09/fin7-hackers-using-windows-11-themed.html

The attack targeted a US-based point-of-sale (PoS) service provider as part of spear-phishing campaigns.

New malware family — PRIVATELOG, and its installer, STASHLOG — relies on the Common Log File System (CLFS) to hide a second stage payload in registry transaction files and avoid detection.

Read more: https://thehackernews.com/2021/09/this-new-malware-family-using-clfs-log.html

U.S. Cyber Command warns of ongoing attacks exploiting a recently disclosed vulnerability (CVE-2021-26084) in #Atlassian Confluence that could be exploited by unauthenticated attackers to take control of vulnerable systems.

Details: https://thehackernews.com/2021/09/us-cyber-command-warns-of-ongoing.html