Dell published a security update to patch a SupportAssist Client software flaw which enables potential local attackers to execute arbitrary code with Administrator privileges on vulnerable computers. According to Dell’s website, the SupportAssist software is “preinstalled on most of all new Dell devices running Windows operating system.” SupportAssist also “proactively checks the health of your system’s hardware and software. When an issue is detected, the necessary system state information is sent to Dell for troubleshooting to begin,” BleepingComputer reported.
ISBuzz Team
A recently uncovered phishing campaign, targeting PayPal users, pulls out all the stops and asks victims for the complete spectrum of personal data – even going so far as to ask for social security numbers and uploaded photos of their passports. The campaign starts with a fairly run-of-the-mill phishing email, purporting to be from the online payment company’s notifications center, which warns victims that their account has been limited because it was logged into from a new browser or device. The email recipient must verify his or her identity by clicking on a button, which is a bit.ly address that then redirects the browser to…
What makes for a successful cyberattack? Technology is one part of the picture, clearly. Malicious cybercriminals make use of a wide range of tools and techniques to gain access to their targets’ networks, probing for vulnerabilities and infecting systems with malware. Businesses processes are another key part, whereby attack perpetrators look for exploitable elements in organisations’ procedures – loopholes, duplications and neglected areas. But a third part of the cyberattack picture – and one that is often underestimated by organisations – is psychology. Successful cybercriminals typically have a sophisticated understanding of the psychology and behaviour of the people in the…
Today the Ponemon Institute, in partnership with DomainTools, announced the results of its annual “Staffing the IT Security Function in the Age of Automation” report. The survey of more than 1,000 IT and IT security practitioners analysed the impact of automation on current IT security practices and staffing in the U.S. and UK. Overall, the majority of companies (77 percent) continue to use or plan to use automation in the next three years. The biggest takeaway in this year’s study is that the majority of respondents (51 percent) now believe that automation will decrease headcount in the IT security function,…
The FBI has sent a security alert to the US private sector highlighting a hacking campaign targeting supply chain software providers. Hackers are attempting to infect companies with the Kwampirs malware which has also been deployed in attacks against companies in the healthcare, energy, and financial sectors, and has now evolved to target companies in the ICS sector, and especially the energy sector. https://twitter.com/christinayiotis/status/1227165414192537600
GPRS Tunneling Protocol (GTP) is a 2.5G technology that provides interconnect between various network interfaces, enabling mobile users to roam seamlessly between networks of different generations. The protocol was developed in tandem with General Packet Radio Service (GPRS), the packet-oriented mobile data standard integrated into GSM (G2) that allows mobile networks to transmit IP to external networks (i.e., the internet). GPRS is the mobile communications service that enables SMS, MMS, IM, WAP, peer-to-peer, smartphone internet apps, and more. Developed at the “dawn” of the mobile age, GTP was not designed with security in mind and is very lightly protected, because…
The Telegraph is reporting Facebook knew about a huge security flaw that let hackers to steal personal data from millions of its users almost one year before the crime, yet failed to fix it in time. Legal documents show that the company was repeatedly warned by its own employees as well as outsiders about a dangerous loophole that eventually led to the massive data breach in September 2018. Despite this, the loophole remained open for nine months after it was first raised, leading employees to later speak of their “guilt” and “hurt” at knowing that the attack “could have been prevented”. The breach, which…
Following the news regarding the US charging four Chinese military officers over the huge Equifax breach, Ambuj Kumar, CEO and co-founder of Fortanix commented below.
In response to DR reports that a glitch in the TastSelv Borger tax service has sent over one million Danish CPR numbers to the US companies Google and Adobe, cybersecurity experts commented below.
The personal information of over six million citizens was leaked after Benjamin Netanyahu’s Likud party uploaded the full register of Israeli voters to an app, Haaretz reported Sunday. The information includes full names, identity card numbers, addresses, genders, phone numbers, and other personal details. The registry was uploaded by Likud to the Elector app, which the party uses on election day. The vulnerability in the application reportedly allowed for anyone to easily download the entire voter registry on a computer. A similar leak happened in 2006 when an Interior Ministry employee stole the population registry and published it illegally. Likud has previously been…