Acer Reportedly Hit With $50M Ransomware Attack

Subscribe to Newsletters

More Informa Tech Live Events

White Papers

Threat Reconnaissance Lessons from the Private Sector for Federal & State Agencies

2021 Application Security Statistics Report Vol.2

10 Must-Have Capabilities for Stopping Malicious Automation Checklist

Improve MITRE ATT&CK Test Results for Endpoint Security Using Deception

Managed Threat Detection & Response: See How the Numbers Add Up

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win an Amazon Gift Card! Click Here

Latest Comment: Those chickens have really come home to roost after management ignored our security concern.

Cartoon Archive

Current Issue

2021 Top Enterprise IT TrendsWe’ve identified the key trends that are poised to impact the IT landscape in 2021. Find out why they’re important and how they will affect you today!

Back Issues | Must Reads

Flash Poll

All Polls

How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.

Download Now!

Assessing Cybersecurity Risk in Today’s Enterprises

0 comments

The Malware Threat Landscape

0 comments

How Data Breaches Affect the Enterprise (2020)

0 comments

More Reports

Twitter Feed

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database
CVE-2021-25922
PUBLISHED: 2021-03-22

In OpenEMR, versions 4.2.0 to 6.0.0 are vulnerable to Reflected Cross-Site-Scripting (XSS) due to user input not being validated properly. An attacker could trick a user to click on a malicious url and execute malicious code.

CVE-2021-22314
PUBLISHED: 2021-03-22

There is a local privilege escalation vulnerability in some versions of ManageOne. A local authenticated attacker could perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service.

CVE-2021-22321
PUBLISHED: 2021-03-22

There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include so…

CVE-2021-25917
PUBLISHED: 2021-03-22

In OpenEMR, versions 5.0.2 to 6.0.0 are vulnerable to Stored Cross-Site-Scripting (XSS) due to user input not being validated properly. A highly privileged attacker could inject arbitrary code into input fields when creating a new user.

CVE-2021-25918
PUBLISHED: 2021-03-22

In OpenEMR, versions 5.0.2 to 6.0.0 are vulnerable to Stored Cross-Site-Scripting (XSS) due to user input not being validated properly. A highly privileged attacker could inject arbitrary code into input fields when creating a new user.

The post Acer Reportedly Hit With $50M Ransomware Attack appeared first on Malware Devil.

https://malwaredevil.com/2021/03/22/acer-reportedly-hit-with-50m-ransomware-attack-2/?utm_source=rss&utm_medium=rss&utm_campaign=acer-reportedly-hit-with-50m-ransomware-attack-2