Major web browsers have removed support for FTP (File Transfer Protocol) for security reasons. This includes:
FileZilla is an open-source option available for FTP servers.
PrintNightmare (CVE-2021-34527) is a security vulnerability connected with the Print Spooler service in Windows 10 and Windows Server. This should be corrected by installing the currently available July 2021 Windows Update.
Kaseya has reported that their VSA product has been the victim of a cyberattack. Some VSA customers have reported ransomware related to this issue. The Cybersecurity and Infrastructure Security Agency (CISA) also released instructions regarding this incident for customers of Kaseya VSA.
Dell has issued a security update to fix a vulnerability in its driver file dbutil_2_3.sys which runs on Microsoft Windows-based systems. This can be resolved by running Dell Security Advisory Update – DSA-2021-088. More information is available at the update FAQ page.
Dell SupportAssist will display driver, BIOS, and firmware updates that are available for Dell personal PCs and tablets that run Windows. Dell also has other self service update support options.
Several security updates were issued for iPhone and other Apple devices on May 3rd and 4th of 2021 to fix WebKit flaws:
ParkMobile, a vehicle parking app which is used in several major cities in the U.S. under various names, has released details for a security incident with its vehicle parking app in March of 2021. License plate numbers and some email addresses and/or phone numbers were included in this incident, but not credit cards or drivers license numbers.
Facebook has released a response to recent reports of 530 million user accounts made publicly available in an unsecured database. Facebook states that their systems were not hacked, but user data was scraped from its platform prior to September 2019. Facebook also states that the issue was corrected at that time and should not happen again.
Microsoft released several urgent security updates for Exchange Server based on cyber attacks believed to be from HAFNIUM and other groups starting March 2, 2021. This includes Microsoft Exchange Server 2019, 2016, 2013 and 2010, but not Exchange Online. Microsoft recommends installation of security updates and running tests to see if Exchange servers have already been compromised.
The U.S. Justice Department has also executed a court-authorized operation to copy and remove malicious web shells from hundreds of vulnerable computers in the United States in relation to this security issue. The FBI will attempting to provide notice of the court-authorized operation to all owners or operators of these computers.
SolarWinds issued a security advisory in December 2020 regarding recent cyberattacks on its Orion Platform of products and an FAQ page. Microsoft has also created a list of resources regarding this security incident.
The No More Ransom project website has free decryption tools for many known ransomware types.
If a decryption tool is not found, one option is to replace the hard drive and operating system and save the locked drive offline. A decryption tool may become available months later to free the data at that point.