A botnet is currently scanning the internet in search of poorly protected Windows machines with Remote Desktop Protocol connection enabled. Called GoldBrute, the malware compiled a list of over 1.5 million unique systems and tested access with brute-force credential stuffing attacks, ZDNet reported. https://twitter.com/sans_isc/status/1136718018724151296 David Kennefick, Product Architect at Edgescan: “If you provide a door, attackers will try to get in, even if it’s just for curiosity purposes. An attacker may not know what is available behind an exposed service – it could be an empty server or it could be a database with millions of valuable user records. Having protocols such as…
ISBuzz Team
Microsoft has deleted a massive database of 10 million images which was being used to train facial recognition systems, the Financial Times reports. The database was released in 2016 and was built of online images of 100,000 well-known people. The database is believed to have been used to train a system operated by police forces and the military. Expert Comments: Jake Moore, Cybersecurity Specialist at ESET: “The deletion of the database is a great move by Microsoft but sadly it might be too late. To have this amount of personal data in one place is, of course, going…
The US National Security Agency (NSA) has warned Microsoft Windows users to make sure they are using updated systems to guard against the flaw known as “BlueKeep”, as it exists in past editions of Microsoft Windows. Microsoft has warned that this flaw is potentially “wormable,” meaning it could spread without user interaction across the internet. Gavin Millard, VP of Intelligence at Tenable: “The news of a BlueKeep proof of concept that doesn’t crash targets isn’t a surprise. Whilst there’s a few sources that have to be confirmed and unfounded rumour to be ignored, organisations should still be proactively patching this issue. Remote code execution on a ubiquitous service like remote desktop services…
Please find below a comment from David Orme, SVP at IDEX Biometrics ASA, in response to today’s news that one in 10 brits now live a largely cashless life, according to new UK Finance findings. In this comment David argues that in order for a completely cashless future to be possible, Governments must work alongside banks to ensure the benefits of a cashless society can be available to all. https://twitter.com/IDEXBiometrics/status/1136997521505554432 David Orme, Senior Vice President at IDEX Biometrics ASA: “One in 10 brits now live a largely cashless life, according to new UK Finance findings, amid a rise of contactless and mobile banking. Highlighting the…
Australia’s financial services industry regulator has a new information security standard that is set to kick in from July, opening up a potential pathway to a much-needed national intelligence-led attack simulation scheme for the industry. The Australian Prudential Regulation Authority’s (APRA) incoming CPS 234 standard on information security, which late last year was fast-tracked “due to the urgency of the threat”, essentially compels relevant providers to have adequate measures in place to protect customer information and be resilient against potential cyber-attacks. Combined with APRA’s recently announced new Enforcement Approach, which will see the regulator take a stronger role in enforcing…
Paysafe launches new global research into consumer payment trends Over half of consumers (56 percent) are worried that the shift to biometrics to authenticate online payments will dramatically increase the amount of identity fraud, according to new research conducted by Paysafe, a leading global payments provider. The research found that four fifths (81 percent) of consumers still favour passwords for making payments online due to concerns about the security of new biometric options. According to the data, two thirds (66 percent) of consumers worry about being able to pay for goods or services without being asked for a password, and only 37 percent believe that…
A surprising report from college researchers show that personalized ads are barely more successful than regulars ads. However, it is what those ads drop on the websites that could get publishers in trouble. Expert Comments: Chris Olson, CEO at The Media Trust: “An ad exchange’s third-party cookies are not the only technologies that hoover up information on website visitors. Other such technologies include first and third-party webpage javascripts, which can harvest visitors’ OS version, device type, geolocation, device IP, and more. In other words, the data ecosystem that has spun off of the digital ecosystem is more pervasive, more complex, and more…
LabCorp has disclosed that 7.7 million customers may have been impacted by a data breach of a third party billing provider which exposed PII, payment data and PHI. https://twitter.com/TechCrunch/status/1136248856319016961 Experts Comments: George Wrenn, Founder and CEO at CyberSaint Security: “Due to the interconnectedness of modern business, I will be surprised if we do not soon learn about other companies affected by this breach. Especially with our third parties, managing, tracking, and protecting the data that flows to and from our third parties is critical to cybersecurity resilience and a foundation of privacy best practices. Organizations have a duty to ensure that third parties are guarding their…
According to this link (https://blog.appriver.com/threat-alert-microsoft-azure-malware), attacks have escalated to malware being hosted on the Azure service. Not only is Azure hosting malware, it is also functioning as the command and control infrastructure for the malicious files. Roy Rashti, Cybersecurity Expert at BitDam: “Cloud providers own their servers, meaning they have full access to the data. However, they’re in a tough spot because nobody wants them to scan the traffic or files they pay to host, but doing so is probably the most effective way to protect against malware. Many attackers can be very quickly blocked by companies blacklisting their servers.…
Bleeping computer reported a new phishing campaign is underway that pretends to be a list undelivered email being held for you on your Outlook Web Mail service. Users are then prompted to decide what they wish to do with each mail, with the respective links leading to a fake login form. Corin Imai, Senior Security Advisor at DomainTools: “The phishing message prompting victims to click on a link to release undelivered emails is a variant on a classic: phishing scams tend to leverage on urgency so as to elicit an instinctive response in the receiver. Security aware users would have noticed however…