Security News > 2021

Microsoft is adding a dedicated OEMDRIVERS folder to Windows 10 that will be used to store third-party drivers. Since Windows Vista, the operating system has included a folder called %SystemRoot%System32DriverStore that is used to hold validated drivers for the operating system.

People are still using "Password" and "123456" to secure their accounts, NordPass says. Ensure strong security for your business.

The Hades ransomware gang has several unique characteristics that set it apart from the rest of the pack, according to researchers - including potentially having more than extortion on the to-do list. In one Hades ransomware attack, the Awake team identified a Hafnium domain as an indicator of compromise within the timeline of the Hades attack.

Researchers found that more than two-dozen containers on Docker Hub have been downloaded more than 20 million times for cryptojacking operations spanning at least two years. Docker Hub is the largest library of container applications, allowing companies to share images internally or with their customers, or the developer community to distribute open-source projects.

A vulnerability in the netmask npm package could expose private networks and lead to a variety of attacks, including malware delivery. Because of this bug, netmask would consider private IP addresses as external IP addresses and the other way around, thus opening the door to a wide range of attacks, depending on the manner in which the package is used.

The widely used npm library netmask has a networking vulnerability arising from how it parses IP addresses with a leading zero, leaving an estimated 278,000 projects at risk. Researchers Victor Viale, Sick Codes, Kelly Kaoudis, John Jackson, and Nick Sahler have disclosed a digital nasty, tracked as CVE-2021-28918, in the hugely widespread netmask npm package.

Cybercrime isn't about just one sort of attack, one type of crook, or one method of protection!

The financial impact from a March 1 cyber-attack on CompuCom, a wholly-owned subsidiary of ODP Corporation, is expected to reach the $28 million range, the company said. Following the incident, which resulted in some of the managed services provider's systems being infected with malware, customer services and internal operations were suspended, but ODP now says that significant progress was made in restoring services.

The IT systems and email servers of London-based nonprofit multi-academy trust Harris Federation were taken down by a ransomware attack on Saturday. Harris Federation is an education charity running 50 Harris primary and secondary academies with 37,000 students from London and surrounding areas.

Doxing an individual can be a time-consuming and ultimately fruitless process, but the potential payout for doxing corporate employees can be huge, making them a much more tempting target. Traditionally thought to be a risk for individuals, Kaspersky reports that it's increasingly being used to target corporate employees: 1,646 unique instances of one particular type of attack were detected by Kaspersky in February 2021, alone.