Blog

Latest Cyberthreats and Advisories - January 20, 2023

Jan 20, 2023

1.20.23 Threat TikTok is fined for a privacy violation, major corporations suffer breaches and Vice Society attacks another school. Here are the latest threats and advisories for the week of January 20, 2023.

Threat Advisories and Alerts

U.K. School Survey Reveals Surprising Findings

A new survey by London Grid for Learning (LGfL) and the National Cyber Security Centre (NCSC) revealed that the uptick in cyberattacks on the U.K. school system may not be as bad as first thought. The survey, of more than 800 schools, revealed that 78% of them had suffered at least one cybersecurity incident. Other interesting findings showed that 99% of schools use an antivirus solution, 100% use firewall protection and 74% enable two-step verification for their most critical accounts.

Source: https://www.ncsc.gov.uk/blog-post/uk-schools-build-cyber-resilience

Critical Vulnerability Found in Zoho ManageEngine Products

Cybersecurity company Horizon3.ai is urging users of Zoho ManageEngine to patch their software against critical vulnerability CVE-2022-47966 before the release of a proof-of-concept (PoC) exploit code. Zoho ManageEngine products that have ever enabled SAML single sign-on (SSO) can be exploited by the flaw, allowing attackers to execute arbitrary code and take control of the system.

Source: https://thehackernews.com/2023/01/zoho-manageengine-poc-exploit-to-be.html

Emerging Threats and Research

Vice Society Behind Ransomware Attack on German University

Vice Society has struck the education sector again, hot on the heels of its suspected involvement in last week’s U.K. data leak . This time Germany’s University of Duisburg-Essen is the victim. As is common for Vice Society, the ransomware group has published some of the stolen data on the web due to its demands being unmet. The University said, “If the breach affects people or institutions, they will be informed as soon as possible.”

Source: https://www.infosecurity-magazine.com/news/vice-society-attack-university-of/

Nearly 18,000 Customers Affected in Nissan Data Breach

Car maker Nissan North America reported a security incident earlier this week to the Office of the Maine Attorney General. The event originally occurred on June 21, 2022, when one of Nissan’s third party vendors was breached, exposing the information of 17,998 customers. The exposed data included NMAC account numbers, full names and birth dates.

Source: https://www.bleepingcomputer.com/news/security/nissan-north-america-data-breach-caused-by-vendor-exposed-database/

Customer Data Stolen in Norton LifeLock Credential Stuffing Attack

Cybersecurity company Norton LifeLock has been hit with a credential stuffing attack that began on Dec 1, 2022. While the amount of accounts impacted by the incident is unknown, cybercriminals may have accessed customer names, mailing addresses, phone numbers and passwords stored in Norton’s Password Manager application.

Source: https://www.darkreading.com/remote-workforce/norton-lifelock-warns-on-password-manager-account-compromises

TikTok Fined €5 Million for Cookie Law Violation

France’s Commission nationale de l’informatique et des libertés (CNIL), the country’s data protection watchdog, has fined TikTok €5 million for breaking cookie consent rules. According to the regulator, the social media giant gave users no easy way to refuse all cookies, yet accepting them could be done in a single click. “Making the opt-out mechanism more complex is in fact discouraging users from refusing cookies and encouraging them to prefer the ease of the ‘Accept All’ button,” said a CNIL representative. TikTok has since corrected the issue.

Source: https://thehackernews.com/2023/01/tiktok-fined-54-million-by-french.html

Credit Cards Stolen in Cyberattack on Canada’s Largest Alcohol Retailer

The website of the Liquor Control Board of Ontario (LCBO), Canada’s largest alcoholic beverage retailer, was breached earlier this month. The attack occurred between January 5 and January 10 when malicious code designed to steal credit card and other customer info was injected into the site. Customers making purchases on the site during this period may have had their personal information stolen, including their email and mailing addresses, credit card details and account passwords.

Source: https://www.bleepingcomputer.com/news/security/canadas-largest-alcohol-retailers-site-hacked-to-steal-credit-cards/

To stay updated on the latest cybersecurity threats and advisories, look for weekly updates on the (ISC)² blog. Please share other alerts and threat discoveries you’ve encountered and join the conversation on the (ISC)² Community Industry News board.