Trend Micro and Alert Logic are speaking about a critical Atlassian Confluence Server vulnerability that is being remotely exploited by attackers to compromise both Linux and Windows servers, allowing them to drop GandCrab ransomware and the Dofloo (aka AES.DDoS, Mr. Black) Trojan. https://twitter.com/Veracode/status/1122927329037160448 https://twitter.com/TrendMicroRSRCH/status/1122817810152001536 Experts Comments: Mounir Hahad, Head of the Juniper Threat Labs at Juniper Networks: “Atlassian uses two different deployment models: some customers use their cloud SaaS business model and some deploy an in-house instance of the popular collaboration tool. The danger lies on the in-house deployments. Even then, most collaboration tools are internal to their organizations and present no public interface on the internet. Those…
ISBuzz Team
It has been reported that the addresses and demographic details of more than 80 million US households are listed on an unsecured database stored in the cloud. The details listed include names, ages and genders as well as income levels and marital status. The researchers have been unable to identify the owner of the database, which is still online and requires no password to access. Some of the information is coded, like gender, marital status and income level. Names, ages and addresses are not coded. https://twitter.com/gastronomy/status/1123129462621659137 https://twitter.com/Kobotic/status/1123170673306656769 Experts Comments: Ryan Wilk, Vice President at NuData Security: “It does not matter where in…
China and Japan amongst those with least knowledge about their partners’ security practices, with the US and Germany amongst those at the top New research from Accenture’s Technology Vision 2019 report has found that 7 in 10 businesses may be particularly vulnerable to malicious attacks through their ecosystem. Just 29% of business and IT executives globally know how diligently their partners are working regarding security, with 56% relying on trust alone. This comes despite the fact that this tactic, known as ‘Island Hopping’, is steadily increasing. Indirect attacks of this nature could account for nearly a quarter of the total…
Artificial intelligence (AI) has huge potential for wireless networks and for the people that must protect — as well as those who try to attack — them. It’s a rapidly changing landscape, and in this article, I explain how our industry is most likely to be affected by AI this year and what’s shaping up for the future. Defining AI In our context, AI is the development of computer systems and software that can replicate processes usually requiring human intelligence. In other words, AI imitates fundamental human behaviours using predictive intelligence based on big data such as, movement (robotics), hearing…
Hackers have stolen $1.75 million from the Saint Ambrose Catholic Parish following a successful BEC (Business Email Compromise) attack which was discovered on April 17 after payments related to the church’s Vision 2020 project were not received by a contractor. Corin Imai, Senior Security Advisor at DomainTools: “This incident shows that no organisation which represents a significant financial opportunity is safe from cybercriminals. BEC scams are more readily associated with the corporate world, with hackers impersonating members of finance departments or the C-Suite in order to trick subordinates into making fraudulent transfers to a contractor or associated business, but this comes as a welcome reminder that…
Microsoft has admitted that having passwords expire is not a useful security measure. The company announced that it will be dropping its Windows policy that requires users to periodically change their login password as a result. You can see the full story here. https://twitter.com/ericserno/status/1121772052384403457 Expert Comments: Rachael Stockton, Senior Director Product Marketing, LastPass by LogMeIn: “We’ve long advised against too frequent password changes, so we are pleased to see Microsoft’s new proposal to eliminate its password expiration policy. Security doesn’t have to create more hurdles for employees. For years, security professionals have recommended changing passwords every 30, 60 or 90 days and in offices worldwide, IT policies…
Malware is everywhere, infecting nearly one third of all computers in the world today. It’s ready to do damage to you, your computer or your data in ways that seem to be limited only by the dark ingenuity of hackers. Ransomware, a form of malware, can lock your files or allow hackers to threaten and steal your data if you don’t pay them. Cryptojacking attacks can install software on your device that co-opts its computing power to mine cryptocurrency for hackers without your knowledge. Viruses and worms can damage and corrupt your files; and Trojans can wreak havoc by sneaking…
In the world of data governance, the only certainty is uncertainty. Headline regulations such as GDPR have been keeping CEOs up at night since 25th May 2018. However, while all are bound by GDPR’s legislation – none are more scared of ICOs wielding their newfound power than biggest organisations. Arguably these have more to lose, 55% of large companies said GDPR unequivocally dominated their data governance programmes. This contrasts heavily with 31% of respondents with smaller companies. With fines of up to 4% of global turnover – non-compliance could be business-ending. UK data leaders dominated by GDPR Preparing for GDPR…
Researchers have discovered a spike in Beapy, a variant of malware that is using leaked National Security Agency (NSA) exploits to spread across corporate networks and force computers to run its cryptocurrency mining capabilities. The malware was first discovered in January and it has currently infected 12,000 devices across 732 organisations. Beapy relies on an employee opening a malicious email that will therefore allow the malware to create a persistent backdoor on the computer, it then uses the NSA’s EternalBlue exploit to spread laterally throughout the network; very similar to how WannaCry spread in 2017. Beapy also boasts open-source credential stealing capabilities in order to collect…
Malwarebytes has published a Q1 report finding that cybercriminals have switched tactics to focus on business targets, moving away from directly targeting consumers. Overall threats to businesses rose by 200% year-on-year, with detections of Emotet targeting organisations rising 200% since Q4. https://twitter.com/cobwebsolutions/status/1096337052117942272 Fraser Kyne, EMEA CTO at Bromium: “Hackers have become much more resourceful, investing time and money to develop new tactics to bypass enterprise defences. A classic example of this is Emotet, which has remained a thorn in the side of security teams because of hackers ability to rapidly change tactics, whether that’s by applying polymorphic wrapping or checking if its IP address is already on the spam list. This type of continuous…