Episode 315 - Zillow, Lyft, and Slack are being targeted by a Dependency Confusion Vulnerability
Good Morning and Welcome to the ProactiveIT Cyber Security Daily number 315.\xa0 It is Wednesday March 3rd 2021.\xa0 I am your host Scott Gombar and Amazon, Zillow, Lyft, and Slack are being targeted by a \u2018Dependency Confusion\u2019 Vulnerability\n\nMicrosoft Releases Out-of-Band Security Updates for Exchange Server\n\nCompromised Website Images Camouflage ObliqueRAT Malware\n\nGoogle fixes second actively exploited Chrome zero-day bug this year\n\nPayroll giant PrismHR outage likely caused by ransomware attack\n\nMalaysia Airlines discloses a nine-year-long data breach\n\nSolarWinds reports $3.5 million in expenses from supply-chain attack\n\nMicrosoft announces Windows Server 2022 with new security features\n\nMalicious NPM packages target Amazon, Slack with new dependency attacks\n\nRoundup of Recent Healthcare Phishing and Malware Incidents