Microsoft confirms new Exchange zero-days are used in attacks

Sergiu Gatlan reports: Microsoft has confirmed that two recently reported zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019 are being exploited in the wild. “The first vulnerability, identified as CVE-2022-41040, is a Server-Side Request Forgery (SSRF) vulnerability, while the second, identified as CVE-2022-41082, allows remote code execution (RCE) when PowerShell is accessible...

Swachh City Platform Suffers Data Breach Leaking 16 Million User Records

Ravie Lakshmanan reports: A threat actor by the name of LeakBase has shared a database containing personal information allegedly affecting 16 million users of Swachh City, an Indian complaint redressal platform. Leaked details include usernames, email addresses, password hashes, mobile numbers, one-time passwords, last logged-in times, and IP addresses, among others, according to a...

Leaked LockBit 3.0 builder used by ‘Bl00dy’ ransomware gang in attacks

Lawrence Abrams reports: The relatively new Bl00Dy Ransomware Gang has started to use a recently leaked LockBit ransomware builder in attacks against companies. Last week, the LockBit 3.0 ransomware builder was leaked on Twitter after the LockBit operator had a falling out with his developer. This builder allows anyone to build a fully functional encryptor and...

Inside a cyberattack method that targets your cellphone

Tim Starks reports: A recent spree of “smishing” attacks points to what some experts anticipate will be a wider threat in the future. The technique, which claims victims at Twilio and targeted others at Cloudflare, combines text messages intent on luring victims into clicking on a link, leans on the ubiquity of smartphones, seeks...

Internet outage in Tucson area was due to cyber attack, Cox says

KVOA reports: An internet outage that affected Tucsonans over the weekend was due to a cyber attack, according to Cox Communications. Cox says the attack has been stopped and that no customer information was compromised. They said their efforts to stop the attack was the reason for the internet outage. Read more at KVOA.