Cyber security news bulletin for 06 December 2023

Published on 06/12/2023 · Read in 1 min.

06 December 2023

■ "Sierra:21" Vulnerabilities Impact Critical Infrastructure Routers

Sierra OT/IoT routers are affected by 21 vulnerabilities posing risks of remote code execution, unauthorized access, cross-site scripting, authentication bypass, and denial of service attacks on critical infrastructure.


■ Atlassian Releases Critical Software Fixes to Prevent Remote Code Execution

Atlassian addresses four critical vulnerabilities, including deserialization and remote code execution flaws, emphasizing the importance of immediate updates across multiple products.


■ Federal Agency Breached Through Adobe ColdFusion Vulnerability

Outdated Adobe ColdFusion software leads to a federal agency breach, underscoring the urgency for timely software updates and robust cybersecurity measures.


■ Florida Water Agency Latest to Confirm Cyber Incident as Feds Warn of Nation-State Attacks

The St. Johns River Water Management District confirms responding to a cyberattack, coinciding with federal warnings about foreign attacks on water utilities.


■ SpyLoan Android Malware on Google Play Downloaded 12 Million Times

Over 12 million downloads of the SpyLoan Android malware from Google Play pose a significant threat, urging vigilance and caution among users regarding app downloads.


■ International Dog Breeding Organization WALA Exposes 25GB of Pet Owners' Data

WALA's breach exposes pet owner data, prompting the need for affected individuals to monitor financial accounts and implement heightened security measures.


■ Iran-Linked Hackers Claim to Leak Troves of Documents From Israeli Hospital

The Malek Team claims responsibility for a cyberattack on an Israeli hospital, leading to the exposure of thousands of medical records, including those of Israeli soldiers.


■ HTC Global Services Confirms Cyberattack After Data Leaked Online

HTC Global Services confirms a cyberattack after screenshots of stolen data are leaked by the ALPHV ransomware gang.


■ Multiple NFT Collections at Risk by Flaw in Open-Source Library

A vulnerability in an open-source library threatens the security of pre-built smart contracts, impacting multiple NFT collections, including Coinbase.


■ Kali Linux 2023.4 Released with GNOME 45 and 15 New Tools

Kali Linux 2023.4 is available for download, introducing GNOME 45 and fifteen new tools for users.

sierravulnerabilitiescriticalinfrastructureatlassiangnomekalicyberattackcybersecurityinformationsecurityspyloanadobecoldfusionwalahtcnft

Newsletter

Subscribe to our newsletter to stay informed about CyberSecurity news. You can unsubscribe at any time.

More than Cyber Security

We offer a variety of services to help companies be prepared for real cyber-attacks.

Contact Us