In response to reports that a New Hakai IoT botnet is taking aim at D-Link, Huawei, and Realtek routers (link to ZDNet interview with researcher Ankit Anubhav) and that the malware includes efficient Telnet scanner, an expert with Corero Network Security offers perspective. Sean Newman, Director Product Management at Corero Network Security: “It’s possibly no coincidence that, within a matter of weeks of the alleged creator of last year’s infamous Satori botnet being indicted, its likely successor, Hakai, appears to be ramping up. With Hakai now gaining exploits for some of the same IoT devices previously the domain of Satori, it gives the sense…
ISBuzz Team
It’s being reported that a record 2.9 million people in Japan have been directed through phishing emails to fake websites created to steal sensitive information in the first half of this year. The report by Trend Micro Inc. released Monday said such fraudulent attempts are increasingly aimed at stealing accounts used for shopping, communication and other services with major firms such as Apple Inc., Amazon.com Inc., Rakuten Inc. and Line Corp. Corin Imai, Senior Product Manager at DomainTools: “The fact that close to 3 million people were compromised should be an indicator of how easy it is to mimic credible emails. Bad actors are…
Last week, a statement was issued last week by the “Five Eyes” nations – United States, Britain, Australia, New Zealand and Canada – demanding tech companies provide ‘lawful access’ to encrypted digital content and promising compelled compliance if companies refuse to provide it. An expert with Juniper Networks offers perspective on the demand and the ongoing issue of encryption backdoors. Nick Bilogorskiy, Cybersecurity Strategist at Juniper Networks: “You can’t have a backdoor that’s only for the good guys. Once the encryption protocol has been handicapped and a door has been opened, other bad actors – from hackers to foreign governments – will walk through that…
Thousands of UK consumers were charged twice for debit card payments as a glitch occured in the card terminal run by Cardnet, a joint venture between Lloyds Bank and First Data. This is only latest IT glitch in a very long list: TSB, M&S, Gatwick, recurring NHS glitches to name but a few of the Software glitches affecting customers, travellers and patients in the past three months. CAST, the software intelligence company, is helping financial services organisations such as Fannie Mae, Telefonica, Credit Suisse and ING have reliable and resilient software. Experts at CAST are dedicated to improving Software quality, resilience and security. Lev Lesokhin, EVP of…
Complicating the challenges of complying with GDPR and the new CA data privacy law, two additional state cybersecurity laws in NY and CO went into effect over Labor Day weekend. In particular, the NY State 23 NYCRR 500 Law now requires companies to encrypt non-public info at both rest and in transit. What does this mean for companies doing business in these states? According to Pravin Kothari, CEO of cloud security vendor CipherCloud: Pravin Kothari, CEO at CipherCloud: “The trend in data privacy and cyber related compliance is not your friend right now or anytime soon. The web of cyber data privacy laws…
It has been reported that the company that sells the parental control spyware app Family Orbit has been hacked, and the pictures of hundreds of monitored children were left online only protected by a password. According to Motherboard that first reported the news, the Family Orbit spyware left exposed nearly 281 GB of data online. The hacker discovered the huge trove of data that was stored on an unsecured server and reported the discovery to Motherboard. The hacker found the key on the cloud servers of the spyware app. Robert Capps, Vice President at NuData Security: “This is yet another example of the difficulty we…
Brian Krebs reported today that mSpy, the maker of a software-as-a-service product that helps customers spy on the mobile devices of their kids and partners, left an open database on the web that provided access to millions of sensitive records without any authentication required. Pravin Kothari, CEO at CipherCloud: BACKGROUND “mSpy, the provider of a leading parental control application for smartphones, suffered from data exposure when a database was wide open and accessible. This exposure included the transactions and identity of users that purchased mSpy licenses over the last six months or logged into the mSpy website. This database includes millions…
It has been reported that a new banking malware has been discovered that is targeting bank customers in Brazil. Dubbed CamuBot, it is said to be a unique malware because it is disguised as a necessary security module of the bank. The malware can also bypass the biometric authentication feature, which is a disturbing sign. According to IBM X-Force researchers who discovered the malware, previously discovered banking malware and Trojans worked differently. These were designed to steal online credentials by getting deployed on targeted machines and used complex stealth methods to evade detection. However, CamuBot takes a 360-degree turn in the way banking malware work by camouflaging itself…
F5 Labs just detected a new Monero crypto mining campaign that exploits the latest Apache Struts 2 critical RCE vulnerability. Responsibly disclosed just two weeks ago by Semmle, known threat actors weaponized a PoC exploit published on GitHub and are currently exploiting the vulnerability to deploy “xmrigCC” crypto-miner. Of note, just a year and a half ago, Equifax was hit via a similar vulnerability on its Apache Struts 2 servers (CVE-2017-5638). Key features of the campaign include: CVE-2018-11776 Apache Struts 2 namespace vulnerability allows unauthenticated remote code execution. In this Monero crypto-mining campaign, the injection point is within the URL.…
It has been revealed that data breaches are up 75% in two years, finds a report from the Information Commissioner (ICO). The report, which used data gathered under the Freedom of Information Act, found most data breach cases to be applicable to human error in some way. Offering insight are the following security experts: Bob Egner, VP at Outpost24: “This level of increase comes as no surprise, and correlates well with the security practices we encounter when working with our clients. The most secure companies we work with today have put a clear focus on creating a “culture of security awareness” that…