WEEKLY CYBERSECURITY NEWSLETTER NO: 156
#Weekly Cybersecurity Tip: Only download software and apps from trusted sources.
1- Malicious Mozilla Firefox Extension Allows Gmail Takeover
A newly uncovered cyberattack is taking control of victims’ Gmail accounts, by using a customized, malicious Mozilla Firefox browser extension called FriarFox.
2- Health Website Leaks 8 Million COVID-19 Test Results
A teenaged ethical hacker discovered a flawed endpoint associated with a health-department website in the state of Bengal, which exposed personally identifiable information related to test results.
3- Microsoft Fixes Actively Exploited Exchange Zero-Day Bugs, Patch Now
Microsoft has released emergency out-of-band security updates for all supported Microsoft Exchange versions that fix four zero-day vulnerabilities actively exploited in targeted attacks. These four zero-day vulnerabilities are chained together to gain access to Microsoft Exchange servers, steal email, and plant further malware for increased access to the network.
4- Data is Most at Risk on Email, with 83% of Organizations Experiencing Email Data Breaches
95% of IT leaders say that client and company data is at risk on email, an Egress report reveals. Additionally, an overwhelming 83% of organizations have suffered data breaches via this channel in the last 12 months.