Hackers Demand $40M in Ransom From Florida School District

Subscribe to Newsletters

Cybersecurity Risk Management FREE Event 4/22
Earn (ISC)2 CPEs at Interop Digital, April 29

More Informa Tech Live Events

White Papers

Threat Reconnaissance Lessons from the Private Sector for Federal & State Agencies

The Ultimate Cyber Skills Strategy Cheat Sheet

Improving Security by Moving Beyond VPN

How to Achieve Risk-Based Vulnerability Management

Smart Service Management: Working Better Together with a Connected Enterprise

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win an Amazon Gift Card! Click Here

Latest Comment: Job offer: Hatches random seeds at server farm.

Cartoon Archive

Current Issue

2021 Top Enterprise IT TrendsWe’ve identified the key trends that are poised to impact the IT landscape in 2021. Find out why they’re important and how they will affect you today!

Back Issues | Must Reads

Flash Poll

All Polls

How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.

Download Now!

Assessing Cybersecurity Risk in Today’s Enterprises

0 comments

The Malware Threat Landscape

0 comments

How Data Breaches Affect the Enterprise (2020)

0 comments

More Reports

Twitter Feed

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database
CVE-2021-21529
PUBLISHED: 2021-04-02

Dell System Update (DSU) 1.9 and earlier versions contain a denial of service vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to cause the system to run out of memory by running multiple instances of the vulnerable application.

CVE-2021-21532
PUBLISHED: 2021-04-02

Dell Wyse ThinOS 8.6 MR9 contains remediation for an improper management server validation vulnerability that could be potentially exploited to redirect a client to an attacker-controlled management server, thus allowing the attacker to change the device configuration or certificate file.

CVE-2021-21533
PUBLISHED: 2021-04-02

Wyse Management Suite versions up to 3.2 contains a vulnerability wherein a malicious authenticated user can cause a denial of service in the job status retrieval page, also affecting other users that would have normally access to the same subset of job details

CVE-2020-27600
PUBLISHED: 2021-04-02

HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link Router DIR-846 DIR-846 A1_100.26 allows remote attackers to execute arbitrary commands via shell metacharacters in the ssid0 or ssid1 parameter.

CVE-2021-30074
PUBLISHED: 2021-04-02

docsify 4.12.1 is affected by Cross Site Scripting (XSS) because the search component does not appropriately encode Code Blocks and mishandles the " character.

The post Hackers Demand $40M in Ransom From Florida School District appeared first on Malware Devil.

https://malwaredevil.com/2021/04/02/hackers-demand-40m-in-ransom-from-florida-school-district-2/?utm_source=rss&utm_medium=rss&utm_campaign=hackers-demand-40m-in-ransom-from-florida-school-district-2