---
title: "Cyber Security News Update, Week 27 of 2021 | DuoCircle"
description: "The dynamic cyber world reports incidents of data theft, vulnerabilities in applications, and other attacks almost every day."
image: "https://www.duocircle.com/images/og-default.png"
canonical: "https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-27-of-2021/"
---

Quick Answer

Six items. ESET researchers found eight Android apps on Google Play that subscribe victims to premium SMS services after stealing credentials; the apps had over 700,000 installs combined. Oversecured disclosed a Google Android app vulnerability that allowed malicious apps to read internal storage; it was unpatched for years before a fix shipped in June 2021\. Colorado passed the Colorado Privacy Act, the third U.S. state law granting consumers data-access and deletion rights, effective July 2023\. NVIDIA patched 26 flaws across its GPU drivers and vGPU software, including high-severity privilege-escalation issues. The FIN7 group is sending malicious USB drives by mail with fake Amazon and HHS lures, dropping the BadUSB-loaded REvil and BlackMatter ransomware. And Scripps Health patients filed class-action lawsuits over the May 2021 ransomware attack that exposed records on 147,000 patients.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-27-of-2021%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cyber%20Security%20News%20Update%2C%20Week%2027%20of%202021&url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-27-of-2021%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-27-of-2021%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-27-of-2021%2F&title=Cyber%20Security%20News%20Update%2C%20Week%2027%20of%202021 "Share on Reddit") [ ](mailto:?subject=Cyber%20Security%20News%20Update%2C%20Week%2027%20of%202021&body=Check out this article: undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-27-of-2021%2F "Share via Email") 

![Cyber Security](https://media.mailhop.org/duocircle/images/2021/07/SPF-record-checker-4376.jpg) 

The dynamic cyber world reports incidents of data theft, vulnerabilities in applications, and other attacks almost every day. But with the right **cybersecurity tools**, one can stay ahead of threat actors and _prevent their confidential information from falling into the wrong hands_. To this end, here are the headlines of the latest cyberattacks.

## Eight Malicious Apps Brought Down From Google Play Store

Have you downloaded any of these apps (Fast Magic SMS, Super Message, Auxiliary Message, Go Messages, Super SMS, Free CamScanner, Element Scanner, and Travel Wallpapers) from Google Play Store lately? If yes, _then you have perhaps given the malware Joker access to all your sensitive data_, OTPs, contacts, etc. A recent notification by the cybersecurity firm Quick Heal Technologies Ltd confirmed that these eight spyware-infected apps were listed on Play Store and downloaded over 50k times.

Once downloaded, _the Joker-managed apps seek notification access on the device and work in the background as a document scanner_. It then downloads two **payloads to steal** the user’s confidential data. The [infected apps](https://ciso.economictimes.indiatimes.com/news/quick-heal-detects-8-new-apps-infected-by-joker-spyware-on-play-store/83624746) use malicious ads to subscribe victims to paid premium services without their knowledge, ultimately costing them money.

[![ransomware protection](https://media.mailhop.org/duocircle/images/2021/07/Office-365-to-Office-365-migration-2836.jpg)](https://media.mailhop.org/duocircle/images/2021/07/Office-365-to-Office-365-migration-2836.jpg)

Once notified, Google took the necessary [ransomware protection](/advanced-threat-defense) measures and removed these eight apps from the Play Store. However, users are advised to be a little more careful and verify an app’s authenticity by reading the reviews before downloading it. Further, allow only those permissions to an app required for its functioning. _All extra permissions must be denied at all times_.

## Google’s Android App Was With Major Vulnerability For Years

What if somebody were to come and tell you that _the apps your Android device came pre-installed with had vulnerabilities that could allow adversaries to access your files and control your device?_ Well, the mobile app security startup Oversecured has recently found a similar vulnerability in the Google App.

With over **5 billion installs**, this Android app relies on code libraries pre-installed on Android phones to reduce required storage space and the download size. Consequently, _any flaw in the Google app’s code can be used to grant full access to users’ files_. The adversaries can then access all of a user’s search history, texts, call history, emails, and even microphone and camera regulations. Even if a user removes the infected app, the [malicious components](https://techcrunch.com/2021/06/17/a-security-bug-in-googles-android-app-installed-on-billions-of-devices-put-user-data-at-risk/) will remain on the Google app.

Google claims to have taken the necessary cybersecurity measures to **secure this vulnerability** and says that there is no proof of this flaw being exploited.

## New Data Privacy Act For Coloradans Promises Better Security

The Centennial State on 8th June unanimously approved the **Colorado Privacy Act**, _which promises to provide better cybersecurity for Coloradoans_. Once signed by the state governor Jared Polis, the Act is set to become law from 1st July 2023.

With the new Data Privacy Act in place, Colorado will have the same privacy legislation as Virginia and California, and consumers will have the following five rights:

- Right to opt-out of selling personal data for targeted advertising.
- Right to access personal data in possession of a data controller.
- Right to correct personal data in case of inaccuracies.
- Right to receive personal data in a ready-to-use format.
- Right to get personal data erased.

This Privacy Act will apply to the [data controllers](https://www.infosecurity-magazine.com/news/colorado-passes-new-privacy-act/) in Colorado, businesses controlling or processing the personal data of resident consumers. The law will impose further norms on collecting and processing data, including notifying consumers why their data is being collected or sold/used. _The law would limit the data collection and need data controllers to adopt **robust cybersecurity** measures before collecting data for their stated purpose_. In addition, PII (Personally Identifiable Information) such as religion, ethnicity, citizenship status, physical or mental health, biometric data, etc., cannot be collected without consumers’ consent.

## 26 Vulnerabilities Patched In NVIDIA Products

After Frédéric Perriot (who works for Apple Media Products) _identified 26 vulnerabilities in the U.S. graphics chip specialist NVIDIA, it has released updates to fix the same_. The vulnerabilities tracked from CVE‑2021‑34372 to CVE‑2021‑34397 affected NVIDIA’S Jetson system-on-module (SOM) series and _could lead to denial-of-service and data leaks_. All Jetson Linux versions before 32.5.1 were vulnerable, and therefore users are advised to get the [software update](https://thehackernews.com/2021/06/nvidia-jetson-chipsets-found-vulnerable.html) immediately to ensure **ransomware protection**.

CVE‑2021‑34372 vulnerability was marked with a CVSS score of 8.2 and was found in the Trusty trusted execution environment (TEE). Eight other major vulnerabilities in the TEE were detected, leading to DoS, information disclosure, memory corruption, code execution, and stack overflows.

## FIN7 Gang’s Phishing Emails Prove That Innovation Never Dies

_On 17th June, U.S. prosecutors filed a case against the notorious hacker group FIN7 gang_ to impersonate angry restaurant customers and send out **phishing emails** to targeted individuals. FIN7 has around 70 members deployed in separate teams in its fake cybersecurity testing company Combi Security. FIN7 has been operating like this since 2015 and targeted countless U.S. companies, including the department store Saks Fifth Avenue and the burrito chain Chipotle.

One of the FIN7 gang members Andrii Kolpakov who pleaded guilty in November, shared valuable insights into the working of the hacker group. Kolpakov was sentenced to 7 years in prison.

In the current **phishing innovation**, a FIN7 member pretended to be an unsatisfied customer by the name of Oliver Palmer and emailed the manager of an unnamed restaurant chain. Palmer claimed that the entire group fell ill with diarrhea after eating at the restaurant. Attached to the email was the lawsuit against the restaurant for causing financial loss to the company. _This attached document was a malicious .rtf attachment_. FIN7 used other similar strategies to spread malware, and the use of Microsoft and Google logos made its emails look all the more credible. The information stolen from [such attacks](https://www.cyberscoop.com/fin7-hacking-phishing-sec-restaurant/) was then **sold on the dark web**.

## Scripps Health Patients File Lawsuit Against The Healthcare Provider

We often hear the other side of the story in case of cyberattacks on organizations. _All updates end with ‘free credit monitoring was offered to the victims of the attack_.’ But this time, some current and former patients of Scripps Health, San Diego, _have filed a lawsuit against the health care system stating that the preventive measures taken after an attack are never enough_.

[![email security](https://media.mailhop.org/duocircle/images/2021/07/office-365-migration-service-2835.jpg)](https://media.mailhop.org/duocircle/images/2021/07/office-365-migration-service-2835.jpg)

The plaintiffs argue that Scripps wasn’t implementing necessary [email security](/) measures to protect patients’ PHI. Earlier this month, Scripps had **notified 147,000 people** of a [data breach](https://www.10news.com/news/local-news/lawsuits-filed-on-behalf-of-scripps-health-patients-in-cyber-attack) and mentioned that there was no evidence of the data being used by adversaries for malicious purposes. The lawsuit argues against this claim and states that attacks are imminent (since adversaries hold on to the stolen data long after the preventive measures diminish).

## Topics

NewsSecurityUpdates 

![Brad Slavin](https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg) 

Brad Slavin 

General Manager

General Manager at DuoCircle. Product strategy and commercial lead across the email security portfolio.

## Secure your email infrastructure

Protect, authenticate, and deliver. Contact our team to find the right solution.

[Contact Sales](/contact/) [Explore Products](/products/) 

## Related Articles

[  News 3m  Alert: Fix SPF & DKIM Settings For Your Email Forwarding Set Up Through Microsoft o365 SMTP Server Or Your Emails May End Up In Spam  Jul 20, 2021 ](/blog/announcements/alert-fix-spf-dkim-settings-for-your-email-forwarding-set-up-through-microsoft-o365-smtp-server-or-your-emails-may-end-up-in-spam/)[  News 6m  Cyber Security News Update, Week 1 of 2022  Jan 7, 2022 ](/blog/announcements/cyber-security-news-update-week-1-of-2022/)[  News 7m  Cybersecurity News Update, Week 1 of 2023  Jan 1, 2023 ](/blog/announcements/cyber-security-news-update-week-1-of-2023/)[  News 5m  EasyPark Data Breach, Ohio Lottery Cyberattack, GTA 5 Leak, Cybersecurity News \[December 25, 2023\]  Jan 4, 2024 ](/blog/announcements/cyber-security-news-update-week-1-of-2024/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}],"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://www.g2.com/products/phish-protection-by-duocircle/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://support.duocircle.com"},"knowsAbout":["Email Security","Email Authentication","SPF","DKIM","DMARC","Phishing Protection","Spam Filtering","SMTP Relay","Email Deliverability","Email Forwarding"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"DuoCircle LLC","url":"https://www.duocircle.com","description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}
```

```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cyber Security News Update, Week 27 of 2021","description":"The dynamic cyber world reports incidents of data theft, vulnerabilities in applications, and other attacks almost every day.","url":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-27-of-2021/","datePublished":"2021-07-02T13:02:39.000Z","dateModified":"2025-05-28T11:16:14.000Z","dateCreated":"2021-07-02T13:02:39.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-27-of-2021/"},"articleSection":"announcements","keywords":"News, Security, Updates","wordCount":1102,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2021/07/SPF-record-checker-4376.jpg","caption":"Cyber Security","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}},{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":2,"name":"News"},{"@type":"ListItem","position":3,"name":"Cyber Security News Update, Week 27 of 2021","item":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-27-of-2021/"}]}]
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://www.duocircle.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":3,"name":"News","item":"https://www.duocircle.comundefined"},{"@type":"ListItem","position":4,"name":"Cyber Security News Update, Week 27 of 2021","item":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-27-of-2021/"}]}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cyber Security News Update, Week 27 of 2021","description":"The dynamic cyber world reports incidents of data theft, vulnerabilities in applications, and other attacks almost every day.","url":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-27-of-2021/","datePublished":"2021-07-02T13:02:39.000Z","dateModified":"2025-05-28T11:16:14.000Z","dateCreated":"2021-07-02T13:02:39.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-27-of-2021/"},"articleSection":"announcements","keywords":"News, Security, Updates","wordCount":1102,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2021/07/SPF-record-checker-4376.jpg","caption":"Cyber Security","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```
