Skip to content

The Weekly Roundup – October 31, 2020

October 26, 2020

DeFi Offering $100k Reward

A decentralized finance (DeFi) protocol is offering a $100k reward for help in contacting its alleged cyber-attacker. Tweet posted a week ago that Harvest Finance had allegedly been targeted by an unknown cyber-criminal who drained $24 million in value from its pools in seven minutes. The malicious hacker allegedly cashed out the cryptocurrency into a virtual wallet via renBTC and Tornado. 

October 27, 2020

Amazon Fired Employees

Amazon recently has fired some their employees that was discovered violating amazon policies related to leaking customer data to an unaffiliated third-party.

October 28, 2020

Targeted spear-phishing incident

Iranian threat group, Charming Kitten, has been detected sending spear-phishing emails to VIPs of probable attendees of the upcoming Munich Security Conference & Think 20 Summit in Saudi Arabia.

October 29, 2020

Vulnerable WebLogic server

Threat actors have recently been spotted hunting Oracle WebLogic servers vulnerable to CVE-2020-14882. This flaw, can be exploited via a simple HTTP GET request, can allow attackers to take control of systems.

October 30, 2020

Over 1GB of data released

The DoppelPaymer ransomware threat group has released over 1GB of unencrypted data stolen from Hall County, Georgia. The attack had occurred on October 7, impacting their networks and phone systems.