• Singapore Responds to Recent Cybersecurity Attacks

    Singapore Responds to Recent Cybersecurity AttacksDuring a visit to San Francisco, Singapore foreign affairs minister Vivian Balakrishnan commented that the country cannot "go back to pen and paper. ... If people lose confidence in the integrity and security of the system, then all these aspirations cannot be fulfilled."The comments follow information coming into the open regarding data breaches, one of which affected 14,200 individuals diagnosed with HIV up to January 2013. In a statement by th
  • WannaCry "Hero" Pleads Guilty to Writing Malware in US Court

    WannaCry "Hero" Pleads Guilty to Writing Malware in US CourtMarcus Hutchins, also known as MalwareTech, has pleaded guilty in a US court to two counts of creating and spreading malware. The reverse-engineer is well known for his contribution to ending the WannaCry ransomware attacks in May 2017. According to Wisconsin court documents, Hutchins was charged in "10 counts of a superseding indictment." He pleaded guilty to counts one and two, saying that the US government would be able to prove
  • Password "123456" Used by 23.2 Million Users Worldwide

    Password "123456" Used by 23.2 Million Users WorldwideThe National Cyber Security Centre (NCSC) expects 42% of Britain online users to lose money due to fraud, according to its first UK Cyber Survey. Released over the Easter weekend (April 21, 2019), the report also found that the most-used password from global cyber breaches was "123456," with "ashley" the most-used name as a password. The global password-risk list was published to disclose passwords already known to hackers.Surv
  • Sri Lanka terrorist attacks among world's worst since 9/11

    Death toll from Easter Sunday’s eight bomb blasts nears 300, with 500 others injuredSri Lanka bombings: latest updatesSunday’s wave of bombings targeting churches and luxury hotels in Sri Lanka is among the worst terrorist attacks carried out worldwide since 9/11, in which 2,296 people died.On Monday, police said the death toll had surged overnight to 290, with the number expected to rise further. About 500 people were injured, according to reports. Continue reading...
  • Advertisement

  • Mueller Report: Individuals Deleted Data During Investigation

    Mueller Report: Individuals Deleted Data During InvestigationAfter two years of investigating, yesterday Robert S. Mueller III finally released his investigation, Report on the Investigation into Russian Interference in the 2016 Presidential Election. The 448-page report looks into Russian interference specifically but also into any individuals in the US that may have been involved. Appointed in May 2017 as Special Counsel to the investigation, Mueller found that Russia's interference
  • Cyber-Attack Knocks the Weather Channel Off the Air

    Cyber-Attack Knocks the Weather Channel Off the AirThe Weather Channel, based in Atlanta, Georgia, has been hit with a cyber-attack that knocked it off the air for 90 minutes. On April 18, 2019, the organization took to its Twitter channel to confirm that it had been hit by a "malicious software attack" on its network but as of press time hasn't released any specifics on the attack itself. When the AMHQ show should have started, viewers saw taped programming, Heavy Rescu
  • Facebook Uploaded 1.5 Million Email Contacts Without Consent

    Facebook Uploaded 1.5 Million Email Contacts Without ConsentSince 2016, Facebook has reportedly harvested email contacts of 1.5 million users without their consent. According to Business Insider, the media outlet that broke the story, the company had been collecting the contact lists of new users since May 2016. In a statement, Facebook confirmed that it had been unintentionally uploading this data when people were verifying their accounts. "Last month we stopped offering email pa
  • New IRA and Saoradh face backlash over Lyra McKee murder

    Killing of journalist in Derry unites Sinn Féin and unionists against dissident republicans The New IRA have a modern-sounding name, but the shooting of Lyra McKee harks back to a strand of atavistic Irish republicanism.According to this worldview, it was not a reckless gunman from a tiny, fringe terror group who killed the journalist during riots in Derry on Thursday night, but a freedom fighter who was resisting British imperialism. Related: Lyra McKee's death shows the distance Norther
  • Advertisement

  • LinkedIn Data Found in Unsecured Databases

    LinkedIn Data Found in Unsecured DatabasesA security researcher identified eight unsecured databases that held "approximately 60 million records of LinkedIn user information."GDI Foundation, where the security researcher is from, is a nonprofit organization with a mission to "defend the free and open Internet by trying to make it safer." The researcher, Sanyam Jain, contacted Bleeding Computer when he noticed "something strange." He was seeing unsecured databases containing the LinkedIn dat
  • TA505 Targets Financial and Retail Using 'Undetectable' Methods

    TA505 Targets Financial and Retail Using 'Undetectable' MethodsA financially motivated gang is targeting retailers and financial institutions around the world using remote access software. CyberInt's Research Lab has found that TA505 is using tactics and an off-the-shelf commercial remote administration tool, developed by Russian-based company TektonIT. The group was behind attacks on the global financial industry between December 2018 and February 2019 and is using the
  • Fraudsters Exploit Sympathies Surrounding Notre Dame Tragedy

    Fraudsters Exploit Sympathies Surrounding Notre Dame TragedyFraudsters are preying on the goodwill of people everywhere by using the tragic fire of Notre Dame to their advantage.According to research by security company ZeroFOX, cyber-criminals are "spreading misinformation about the disaster," which includes fake donation pages and launching new phishing campaigns. The company says in a blog post that "preying on the sympathy of those wanting to help victims is nothing new, but the technic
  • Cloud Security Spending Set to Top $12bn by 2023

    Cloud Security Spending Set to Top $12bn by 2023Global spending on cloud security is set to grow nearly 18% to reach $12.7bn by 2023, with protection for public cloud deployments prioritized over the coming years, according to a new report from Forrester.Organizations spent $178bn on public cloud services last year, a figure that will grow to $236bn by 2020 — making security increasingly important to protect mission critical systems and sensitive data.Infrastructure decision makers are par
  • Advertisement

  • Dark Web Fraudsters Defraud Each Other with Fraud Guides

    Dark Web Fraudsters Defraud Each Other with Fraud GuidesCyber-criminals are doing a roaring trade in “how-to” fraud guides for their fellow scammers, although many are out-of-date and incomplete, according to new dark web research from Terbium Labs.The cyber-intelligence firm analyzed nearly 30,000 of these guides to compile its latest report, Fraud Guides 101: Dark Web Lessons on How to Defraud Companies and Exploit Data.These online documents typically include instructions on speci
  • DNS Hijackers Target Middle East Governments

    DNS Hijackers Target Middle East GovernmentsSecurity experts are warning of a new state-sponsored DNS hijacking campaign affecting at least 40 organizations across 13 countries.Cisco Talos revealed in a blog post yesterday that the “Sea Turtle” campaign began back in January 2017 and has been active until the first quarter of this year, targeting mainly public and private sector organizations in the Middle East and North Africa.Attackers sought first to gain DNS credentials from targ
  • DCMS Shares UK Journalists Emails, Potential GDPR Breach

    DCMS Shares UK Journalists Emails, Potential GDPR BreachThe government department that is responsible for implementing the General Data Protection Regulation (GDPR) has committed an email faux pas with UK journalists which could also mean it has broken its own rules. Flagged by Guardian journalist Alex Hern on Twitter, the email was regarding its announcement on age verification rules on online pornography. Hern tweeted: "DCMS has just announced that the porn filters are coming online
  • UK To Become First Country To Bring in Age-Verification for Online Pornography

    UK To Become First Country To Bring in Age-Verification for Online PornographyThe UK will become "the first country in the world" to bring in age verification for online pornography, according to the Department for Digital, Culture, Media and Sport (DCMS). The measures, which come into force on July 15, 2019, mean that commercial providers of online pornography will be required by law to carry out robust age-verification checks on users to ensure they are 18 or over.In its announcement this
  • Scranos Goes Global After Targeting China

    Scranos Goes Global After Targeting ChinaA new password and data stealing operation that has been targeting China has started to infect users worldwide, according to Bitdefender Cyber Threat Intelligence Lab. Using a rootkit driver, which is believed to have been a possibly stolen certificate, the attack is still a work in progress with many components in the early stage of development, say the researchers behind the company's latest report, Inside Scranos – A Cros
  • Fifth of Web Traffic Comes from Malicious Bots

    Fifth of Web Traffic Comes from Malicious BotsAround a fifth of all web traffic last year was linked to malicious bot activity, with financial services hit more than any other sector, according to Distil Networks.The security vendor compiled its 2019 Bad Bot Report from analysis of a global network covering thousands of anonymized domains.It claimed to have discovered hundreds of billions of “bad bot” requests across this network, enabling large-scale, automated malicious activity in
  • EU: We Have No Evidence Kaspersky Lab is Security Risk

    EU: We Have No Evidence Kaspersky Lab is Security RiskThe European Commission has admitted it has no evidence that Kaspersky Lab products are a national security risk to member states, despite the European Parliament voting last summer for a ban on the Russian AV company.The revelations come in response to a question from right-wing European Parliament member (MEP), Gerolf Annemans.It refers to the non-binding resolution, passed on June 13 2018, which branded Kaspersky Lab as ‘ma
  • Wipro Confirms Major Breach Investigation

    Wipro Confirms Major Breach InvestigationIT services giant Wipro has revealed it is investigating a potential intrusion after a report named the firm as suffering an attack targeting a dozen customers,India’s third largest IT outsourcer claimed to have spotted “potentially abnormal activity in a few employee accounts” after an “advanced phishing campaign” targeted the company.“Upon learning of the incident, we promptly began an investigation, identified the af
  • Almost a Quarter of Orgs Don’t Run Security Checks on Products

    Almost a Quarter of Orgs Don’t Run Security Checks on ProductsA new study from Outpost24 has discovered that almost one in four (23%) organizations do not carry out any form of security testing on their products before they are launched into the market.The cyber-assessment firm surveyed 121 security professionals at RSA Conference 2019, unearthing a worrying trend whereby application security appears to be taking a back seat in a number of product-producing companies.In fact, Outpost24 fou
  • Spear-Phishing Campaign Targeted Ukrainian Government as Early as 2014

    Spear-Phishing Campaign Targeted Ukrainian Government as Early as 2014A spear-phishing email campaign targeting government entities in Ukraine could have been active as early as 2014, according to FireEye.In a blog post published on April 16, 2019, FireEye Threat Intelligence found the latest spear-phishing email in early 2019, which included a "malicious LNK file" with PowerShell script to download the second-stage payload from the command-and-control (C&C) server. The email was received by
  • Support Services Websites Cut Off from UK Public by Gov-Backed ISPs

    Support Services Websites Cut Off from UK Public by Gov-Backed ISPsCharity, school and social support websites are being blocked by "overzealous" web filters, which have been designed to protect children from harmful online content. According to a study from VPN comparison service Top10VPN.com and Open Rights Group, "In the last two years around 700,000 websites have been blocked by UK ISPs in a Government-backed attempt to protect vulnerable users online."The report analysed the results of
  • Fortinet to Pay $545,000 for Violating False Claims Act

    Fortinet to Pay $545,000 for Violating False Claims ActNetwork security company Fortinet has agreed to pay $545,000 to resolve allegations that it violated the US's False Claims Act.According to the settlement agreement made public on April 12, 2019, "Fortinet acknowledged that during the more than seven years between January of 2009 and the fall of 2016, a Fortinet employee responsible for supply chain management arranged to have labels on certain products altered to make the products
  • NCSC Launches 2019 Cybersecurity Accelerator

    NCSC Launches 2019 Cybersecurity AcceleratorThe UK’s National Cyber Security Centre (NCSC) has launched its latest annual search for the hottest cybersecurity start-ups in the country.The NCSC Cyber Accelerator is a government-funded initiative that claims to have doled out £20m in investment since its launch in 2017, offering up the expertise of NCSC and its parent organization GCHQ to help nurture talent.It’s ultimately hoped that these star companies will go on to build prod
  • TSB Offers to Cover APP Fraud Losses

    TSB Offers to Cover APP Fraud LossesUK bank TSB has promised to refund any customers that may be hit by so-called “authorized push payment” (APP) fraud, which is on the rise around the globe.The high street lender is hoping to differentiate from its rivals, many of whom take a more uncompromising stance on this type of scam.Unlike transaction fraud, account takeovers or account creation fraud, where the malicious activity happens without the victim’s knowledge, APP fraud occurs
  • FBI Non-Profit Probes Agent Data Breach

    FBI Non-Profit Probes Agent Data BreachA training non-profit linked to the FBI is investigating reports that it was successfully hacked, exposing the personal details of thousands of agents to attackers.The FBI National Academy Associates (FBINAA) claims to be “dedicated to providing the highest degree of law enforcement expertise, leadership training, and information to law enforcement executives around the world.” Its members are graduates of the FBI National Academy Program for la
  • Huawei Poses 'No Threat' According to Belgium, Trump Not Convinced

    Huawei Poses 'No Threat' According to Belgium, Trump Not ConvincedThe Belgian Centre for Cybersecurity (CCB) has reportedly decided not to issue "a negative opinion" on Huawei following several months of investigation with no concrete evidence found. According to The Brussels Times, the CCB has been looking for evidence of spying by Huawei. This comes as the Chinese technology company has faced several accusations globally of spying. In Belgium, Huawei works with Proximus, Orange and T
  • Kaspersky Labs Discovers 'Previously Unknown Vulnerability' in Microsoft Windows

    Kaspersky Labs Discovers 'Previously Unknown Vulnerability' in Microsoft WindowsToday, Kaspersky Labs announced that it had detected a "previously unknown vulnerability" in Microsoft Windows, which was exploited by an unidentified criminal group. The company theorizes that it was an attempt to gain full control over a targeted device. The attack was aimed at the core of the system – its kernel – through a backdoor constructed from an essential element of Windows OS.The vulnerabi
  • Sophos Investigates Microsoft Reboot Failures Following Software Update

    Sophos Investigates Microsoft Reboot Failures Following Software UpdateSophos is investigating user-reported issues of boot-up failures following a software update from April 9, 2019. Affecting Sophos Central users and systems running Windows 7, 8.1, 2008, 2008 R2, 2012 and 2012 R2, the security company has advised its Sophos Endpoint customers that Microsoft has “temporarily blocked devices from receiving this update” until a solution is available. The update was a securit
  • Pregnancy Club Fined £400K After Illegally Sharing Data on Millions

    Pregnancy Club Fined £400K After Illegally Sharing Data on MillionsThe UK’s privacy watchdog has fined pregnancy club Bounty £400,000 after finding it guilty of sharing tens of millions of personal records with third parties including marketing agencies.The parenting support company collects a range of sensitive information from its customers via its website, apps and offline forms: including names, dates of birth, email and home addresses, and gender and birth date of children
  • ‘Nasty List’ Phishing Scam Targets Instagram Users

    ‘Nasty List’ Phishing Scam Targets Instagram UsersInstagram users are being warned not to fall for a new phishing scam doing the rounds which aims to harvest log-ins and spread worm-like across the social network.According to Twitter users who have posted screenshots of the scam, users typically first receive a direct message from an account they are following. This could include one of several variations on the same theme, which is that the recipient has been featured on a ‘na
  • Dangerous Drone Encounters Soared in 2018

    Dangerous Drone Encounters Soared in 2018The number of near-misses involving unmanned aerial vehicles (UAVs) in the UK jumped by over a third from 2017 to 2018, according to new official figures.The UK Airprox Board (UKAB) published its annual figures for 2018 recently, revealing 125 dangerous encounters between aircraft and drones in UK airspace. That’s up from 93 the year before and 71 in 2016.Just under a third of these (39) were recorded near Heathrow Airport in London, whilst 10 took
  • India hopes to avoid US sanctions over Russian missile deal

    India is hopeful it will avoid US sanctions over its purchase of Russia’s S-400 missile system, Defence Minister Nirmala Sitharaman told AFP. New Delhi has been “heard and...
  • Attackers Spoofing Known Tech, Security Brands

    Attackers Spoofing Known Tech, Security BrandsResearchers at GreatHorn have identified what they are calling a widespread attack in which attackers spoofed both the Microsoft brand in the display name and the Barracuda Networks brand in the return path and received headers, with the goal of stealing credentials.The team identified an attack notable in that the return path spoofs a noreply.barracudanetworks.com return path. “The attackers crafted the received headers so that it appears to h
  • Mailgun Web Issues from WordPress Plugin Hack

    Mailgun Web Issues from WordPress Plugin Hack Email automation and delivery service Mailgun, announced that it has resolved a security incident that resulted from a massive coordinated attack against WordPress sites.“The mailgun.com webpage began issuing redirects to sites outside of our domain. We immediately launched an incident to determine the source of the redirects and determined that a plugin for WordPress was responsible for issuing the redirects. We've disabled the plugin responsi
  • Matrix Compromised Through Known Jenkins Flaws

    Matrix Compromised Through Known Jenkins FlawsMatrix users are encouraged to change their passwords after an unauthorized actor gained access to the servers hosting Matrix.org. Those using IRC bridging are also encouraged to change their NickServ passwords.An open network for secure, interoperable, decentralized, real-time communication over IP, Matrix is used across instant messaging, VoIP/WebRTC signaling and internet of things (IoT) communication, according to the company’s website.On A
  • Russia Plans to Cut Users Off From Global Internet

    Russia Plans to Cut Users Off From Global InternetRussian lawmakers have approved a bill which could allow the government to cut access to foreign servers, in a move critics believe could see the nation attempt to ape China’s fearsome censorship apparatus.Passed in its second reading by an overwhelming 320 votes to 15, the legislation could become law by November 1, according to reports.The government has claimed it could help enhance national security by helping Russia preempt any online
  • Halloween Brexit is a fitting outcome for the zombie prime minister | John Crace

    The EU summit became absurdist performance art as all agreed on something they did not wantI was rather nonplussed to learn that Prince William had been doing work experience with the intelligence services and, according to the GCHQ head of counter-terrorism, identified only as David, “comfortably held his own with highly skilled analysts and operators”. Related: May tells MPs 'swift decisions' on Brexit will be needed after recessContinue reading...
  • England and Wales Police Get Dedicated Cybercrime Units

    England and Wales Police Get Dedicated Cybercrime UnitsEvery England and Wales police force now has a dedicated cybercrime unit, thanks to a multimillion-pound government investment, it was revealed yesterday.The announcement was made by the National Police Chief’s Council (NPCC) National Cybercrime Programme, and claimed that forces were able to access £7m in funds to fill the units with specialist officers and equipment.Further investment by the Home Office and the National Cyber S
  • EU Citizens’ Hit by UK Government Data Leak

    EU Citizens’ Hit by UK Government Data LeakThe Home Office is in the dock again after a second privacy blunder in as many days led to the accidental disclosure of hundreds of emails.The ‘administrative error’ apparently occurred when an official used the “cc” instead of “bcc” field when sending out an email to 240 EU citizens requesting settled status after Brexit.The email was sent on Sunday to applicants who had encountered difficulties, asking them to
  • Britons going to terror hotspots face 10 years in jail under new laws

    Legislation creates an offence of entering or remaining in a ‘designated area’ overseasBritish citizens travelling to live in foreign terrorism hotspots could face up to 10 years in prison under controversial new laws.The Counter-Terrorism and Border Security Act 2019 comes into force on Friday and creates a criminal offence of entering or remaining in a “designated area” overseas. Related: Someone Else's War: when your child joins the war against Isis - videoContinue rea
  • #ISCWest2019: The Future of Stadium Security

    #ISCWest2019: The Future of Stadium SecurityKicking off the second day of the ISC West 2019 conference in Las Vegas, keynote speaker Russ Butler, VP of security for the San Francisco 49ers and Levi’s Stadium, talked about the evolution of the ever-changing stadium security landscape in his talk, “Stadium Security: As It Was, Where It Is and Where It Is Going.”Butler has been planning and executing notable events with the NFL for six years, including Super Bowl 50, but 
  • #ISCWest2019: Challenges of AI in Physical Security

    #ISCWest2019: Challenges of AI in Physical SecurityAs more enterprise technologies and security solutions tout the use of artificial intelligence (AI) and machine learning, panelists at the 2019 ISC West conference in Las Vegas asked where the physical security industry is in its overall acceptance, trust in and implementation of AI solutions.Industry experts discussed what the near-term future of AI looks like in the security industry while recognizing almost unanimously that the promises
  • #ISCWest2019: Biometrics Are Going Mainstream

    #ISCWest2019: Biometrics Are Going MainstreamAs the physical security industry confronts the challenges of convergence, the use of biometrics will help to secure workstations, virtual desktops, turnstiles, front doors, mobile devices and more, according to a panel of industry experts at the 2019 ISC West conference in Las Vegas.“They all need to be secured while keeping convenience and efficiency front and center,” said Peter O’Neill, president of FindBiometrics and Mobile
  • WikiLeaks Editor Julian Assange Arrested & Removed from Ecuadorian Embassy

    WikiLeaks Editor Julian Assange Arrested & Removed from Ecuadorian EmbassyJulian Assange, editor of whistleblowing website WikiLeaks, has been arrested by the Metropolitan Police for failing to surrender to a court.According to a statement by the Metropolitan Police, Assange was arrested at the Embassy of Ecuador in Knightsbridge where he has been resident since June 19 2012. The warrant was issued on June 29 2012.He will remain in custody at a central London police station before being
  • Triton Group Found Inside Second CNI Facility

    Triton Group Found Inside Second CNI FacilityA sophisticated Russian hacking group linked to an attempt to blow up a Saudi oil plant has been discovered inside a second critical infrastructure (CNI) facility, security researchers have warned.The Triton group has been active since 2014, and uses dozens of custom and commodity tools to gain access to and maintain persistence inside IT and OT networks of CNI firms, according to FireEye.The security vendor didn’t elaborate on the location or e
  • US Government Warns of New North Korean Malware

    US Government Warns of New North Korean MalwareOfficials at the US Department of Homeland Security (DHS) have issued another warning about North Korean malware, this time a new variant dubbed “Hoplight.”The backdoor trojan malware is linked to the notorious Hidden Cobra group, also known as the Lazarus Group.“This artifact is a malicious PE32 executable. When executed the malware will collect system information about the victim machine including OS version, volume information,
  • Two-Thirds of Hotel Sites Leak User Data

    Two-Thirds of Hotel Sites Leak User DataTwo-thirds of hotel booking sites are leaking customers’ booking reference codes to third parties, potentially exposing their personal data to malicious insiders, according to Norton.The Symantec company’s principal threat researcher, Candid Wueest, claimed 67% of the more than 1500 hotels in 54 countries he tried were affected by this issue, putting data such as name, email and postal address, mobile phone number and passport number at risk.In

Follow @Security_UKnws on Twitter!