Security blogger, Brian Krebs, posted yesterday that identity theft protection firm LifeLock — a company that’s built a name for itself based on the promise of helping consumers protect their identities online — may have actually exposed customers to additional attacks from ID thieves and phishers. Security firm Symantec, which acquired LifeLock in November 2016, tookLifeLock.com offline shortly after being contacted by KrebsOnSecurity. According to LifeLock’s marketing literature as of January 2017, the company has more than 4.5 million customer accounts. Neill Brookman, Head of EMEA Pre-sales at Janrain: “It is ironic that a company promoting their services to consumers to protect against data breaches implements such a basic form…
ISBuzz Team
Facebook’s departing head of security, Alex Stamos, wrote a memo amidst the Cambridge Analytica scandal, calling for Facebook to collect less user data, and re-evaluate the site’s approach to privacy. This memo was published yesterday by BuzzFeed News. Christopher Littlejohns, EMEA Manager at Synopsys: “We are living in a world where social platforms such as Facebook, Twitter, Reddit, and many others provide the means to connect to large and sometimes eager audiences at low to zero cost. The thirst for ever greater interaction to friends, celebrities and other like-minded people’s activities and thoughts seems to know no bounds. Individuals throughout the world are…
It has been reported that IBM has patched a critical vulnerability in Apache OpenWhisk, the open source serverless platform that IBM uses to run its cloud functions. This vulnerability allowed an attacker to replace a company’s serverless code with their own malicious code instead. Tim Mackey, Senior Technical Evangelist at BlackDuckbySynopsys: “OpenWhisk is an Apache Software Foundation project which provides a framework for users to create “serverless” functions known as “Actions”. Commercially, Apache OpenWhisk is available as IBM Cloud Functions which is part of the IBM Cloud. The vulnerabilities CVE-2018-11756 and CVE-2018-11757 disclose a situation where the function hosted within a an OpenWhisk runtime container could be…
Sharing that today, F5 Networks released its 2018 Application Protection Report, which delves into the major application-based threats modern enterprises face while revealing how little these enterprises and their executives understand about how cyberattacks access their applications and data. In addition to offering data points on cyber-threat issues like the recent uptick in injections attacks and ongoing lack of SSL/TLS encryption, the report underscores the importance for enterprises to have a stronger comprehension of evolving attacks in order to implement solutions and strategies to combat them. F5 is also debuting new iterations of two key products in its security portfolio –…
In response to recent Kaspersky findings on a new online bait & switch gift card scam where fraudsters promise a gift card code when the user goes through several steps and enters their PII, and then (of course!) gives them nothing in return, NuData offers perspective on the larger implications for organizations and individuals of purloined PII. Robert Capps, Vice President of Business Development at NuData Security: “This sort of bait-and-switch fraud existed long before the internet. But today it is more far-reaching by digitally piggybacking on the brand reputation of other companies to lure victims. This is why so many organizations who…
News is breaking that popular wireless security camera designed to safeguard businesses and homes was vulnerable to a spying hack.The flaw meant it was possible to hijack video and audio streamed from other people’s properties by making a minor tweak to Swann Security’s app. Researchers found the problem after the BBC reported a case where one customer had received another’s recordings. Adam Brown, Manager of Security Solutions at Synopsys: “I personally have experience with Swann cameras – I used to have one, albeit different from the one in the report. I found that the camera feed itself could be accessed directly from the…
A ransomware infection has crippled the US network of one of the world’s largest shipping giants —COSCO (China Ocean Shipping Company). IT security experts commented below. Javvad Malik, Security Advocate at AlienVault: “Ransomware continues to wreak havoc within companies. It’s unclear whether this was a targeted or casual attack, but employees should be trained to be able to recognise suspicious emails and not click on links; or have an easy-to-escalate route where they are unsure as to whether an email is malicious or not. Similarly, it’s important to have good threat detection and response controls in place so that any attack can…
It’s being reported that a malware author by the name of EliteLands is currently building a botnet named “Death” by targeting unpatched AVTech devices. The hacker is using an exploit for these devices that was published back in late 2016. The exploit targets 14 well-known vulnerabilities in the firmware shared by several AVTech device types, such as DVRs, NVRs, IP cameras, and more. These older firmware versions expose AVTech device passwords in cleartext and allow an unauthenticated attacker to add users to existing devices. Nadav Avital, Threat Research Manager at Imperva: “This is not the first (or last) botnet abusing the poor security standards in a…
It has been reported that the system that allowed spy agency GCHQ access to vast amounts of personal data from telecoms companies was unlawful for more than a decade, a surveillance watchdog has ruled. Lee Munson, Security Researcher at Comparitech.com: “While it is unfortunate, unlawful and, perhaps unsurprising, that GCHQ had been allowed to collect vast amounts of telecommunications data without any real level of oversight in the past, the damage done to the privacy of UK citizens was minimal. Or so we have been led to believe. We can only hope that the way in which requests were handed over,…
Chrome browsers have been flagging insecure non-HTTPS sites today, while Troy Hunt and Scott Hulme is red flagged sites that can load without cryptographic protection. Ilia Kolochenko, CEO at High-Tech Bridge: “Proper HTTPS encryption is indeed very important nowadays. However, an improperly implemented or simply missing TLS encryption is more a weakness, not an exploitable vulnerability. Many of the most popular websites are still prone to SQL injections and XXE attacks, let alone omnipresent XSS and CSRF vulnerabilities. These security vulnerabilities bear a much higher degree of risk and may allow breaching the entire website and all the records, PII or financial…