Cyber Round-up

Cyber Round-up for 28th May

Welcome to the latest edition of the Ironshare Cyber Round-up where we look back at the events of that last week and cover some of the news, posts, views, and highlights from the world of Security.

In this week’s round-up:

Security News

NCSC Create Educational Cybersecurity Game

The NCSC have created a collection of interactive, educational activities for children who are interested in cybersecurity. The resources are designed for children aged 7-11 years old and includes a game known as CyberSprinters, that teaches them about core aspects of security, such as password management, protecting devices and phishing. The NCSC aims to make cybersecurity education fun and engaging for primary school students; making them aware of the importance of cyber at such an early age gives them the opportunity to continue it as they get older. Education and awareness of threats is vital, which is why this release is so important.


Bose Suffer Ransomware Attack

Audio Equipment Manufacturer, Bose, recently suffered a ransomware attack that crippled their IT systems. We currently do not know who was behind the attack, and Bose have not confirmed if they plan to pay the ransom. What we do know is that they are working hard to restore their systems and bring them “back online in a safe manner”. They have spoke openly about the action they have taken to boost their security following the attack, which is a positive thing to point out. More info will undoubtedly follow.


Default WiFi Password Leads to Child Abuse Accusations

A UK couple, who’s names have not been disclosed, were recently confronted at their home by police officers who were investigating a serious case of child abuse. The police were investigating the couple for potentially posting images of child abuse on online forums last year; during the investigation, all of their devices were confiscated, and they were suspended from their jobs. Earlier this year, the couple’s devices were returned, and the police now believe that the crime was committed by an unauthorised user accessing their WiFi, which was possible due to them still using the default password on their router. This emphasises the importance of changing your passwords when getting a new device and is one of the reasons that the government plan to ban default passwords being set for new devices.



Air India Data Breach Exposes 4.5 Million Passenger Records

Air India have recently suffered a data breach, in which the personal information of 4.5 million passengers was exposed. The stolen data includes names, dates of birth, passport information and credit card data, from customers as early as August 2011. Anyone who has been a passenger of an Air India flight in the last ten years is potentially affected by this incident.


Vulnerabilities & Updates

Critical Flaws in Nagios IT Monitoring Software

13 vulnerabilities were found in the Nagios network monitoring software that could allow an attacker to take over the infrastructure without any user interaction. Among these vulnerabilities, there are multiple remote code execution flaws, as well as privilege escalation flaws. These exploits were discovered and remediated back in November, but more details were recently disclosed, including a summary of each CVE.

More details can be found here.


macOS Zero-Day Allows Attacker to Take Screenshots

We urgently advise all Apple Mac users to update their operating systems as soon as possible, due to a newly discovered zero-day flaw that could allow a remote attacker to gain permissions and take screenshots on your device. This can be done without user interaction or consent and could even allow the attacker to steal sensitive information, including passwords. All versions prior to 11.4 are affected by this flaw, making it vital that all users apply the latest patch immediately.


VMware Critical Flaw Needs to Be ‘Considered at Once’

VMware has announced the existence of a critical flaw that could allow a remote attacker to execute arbitrary code on the target system. VMware urges all users to patch their systems immediately to reduce the chances of an attack. It was confirmed that this flaw affects vCenter Server 6.5, 6.7, and 7.0, as well as Cloud Foundation version 3.x and 4.x.

More details on this vulnerability can be found here.


And that is it for this week’s round-up, please do not forget to tune in for new instalments every week.

Stay Safe, Secure and Healthy!

Edition #143 – 28th May 2021

Why not follow us on social media:

Ironshare – Security Simplified