In a blog post-Tuesday, Cisco Talos reports a new campaign has changed how the malware is served on victim systems. Experts offer perspective.
ISBuzz Team
Late yesterday Microsoft announced via a blog that they “detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks.” It appears the attacks are being attributed to a Chinese group known as HAFNIUM.
Malaysia Airlines reported suffering a data breach compromising information belonging to members of its frequent flyer program. It is believed that the breach occurred roughly nine years ago. The airline has notified its members by email that the breach took place at its third-party IT supplier. Cybersecurity experts reacted below on the danger of third-party partners and why it took so long for the airline to detect the breach.
Last week, IoT security was in the spotlight again as researchers warned that Amazon’s Alexa is vulnerable to malicious third-party apps, or “skills”, that could leave owners at risk of a wide range of cyberattacks. Researchers analyzed 90,194 unique skills from Amazon’s skill stores across seven countries and found widespread security issues that could lead to phishing attacks or the ability to trick Alexa users into revealing sensitive information. For instance, developers can register skills that fraudulently use well-known company names, and leverage these fake brand names to send out phishing emails that link to the skill’s Amazon store webpage. Attackers…
Oxfam Australia has confirmed that supporter information was unlawfully accessed in a suspected cyber-attack earlier this year. The charity has been investigating the “data incident” since February after a database belonging to it was leaked online. The database was alleged to have contained contact and donor information for about 1.7 million Oxfam Australia supporters, though at the time this was unverified.
Following the news around SolarWinds blaming an intern for creating the “Solarwinds123” password, cybersecurity expert commented below.
It has been reported the number of malware strains coded in the Go programming language has seen a sharp increase of around 2,000% over the last few years since 2017, cybersecurity firm Intezer said in a report published this week. The company’s findings highlight and confirm a general trend in the malware ecosystem, where malware authors have slowly moved away from C and C++ to Go, a programming language developed and launched by Google in 2007.
The recent Google Voice outage determined to be caused by an expired TLS certificate. According to the Google Cloud Issue Summary, “Due to an issue with updating certificate configurations, the active certificate in Google Voice frontend systems inadvertently expired at 2021-02-15 23:51:00, triggering the issue.”
UK spy agency GCHQ has announced that AI technology will be at the heart of its cybersecurity operations moving forward. The technology will help them to combat the growing threat of cyber-attacks and increasingly sophisticated state and non-state actors.
Oxford University confirmed on Thursday it had detected and isolated an incident at the Division of Structural Biology (known as “Strubi”) after Forbes disclosed that hackers were showing off access to a number of systems. These included machines used to prepare biochemical samples, though the university said it couldn’t comment further on the scale of the breach. It has contacted the National Cyber Security Center (NCSC), a branch of the British intelligence agency GCHQ, which will now investigate the attack.