Daily NCSC-FI news followup 2019-07-05

Google Chrome to Unload Heavy Ads With Intensive Resource Usage

www.bleepingcomputer.com/news/google/google-chrome-to-unload-heavy-ads-with-intensive-resource-usage/ Google is currently working on adding a new feature to the Chrome web browser designed to automatically unload ads which use an outrageous amount of system resources in an effort to shrink the browser’s CPU and network footprint.

Samsung Update App with 10M+ Installs Charges for Free Firmware

www.bleepingcomputer.com/news/security/samsung-update-app-with-10m-installs-charges-for-free-firmware/ An Android app with over 10 million installations on Google Play attempts to trick Samsung phone users into paying for their firmware updates, which are available free of charge from the vendor.

Automated Magecart Campaign Hits Over 960 Breached Stores

www.bleepingcomputer.com/news/security/automated-magecart-campaign-hits-over-960-breached-stores/ A large-scale payment card skimming campaign that successfully breached 962 e-commerce stores was discovered today by Magento security research company Sanguine Security.

Over $800,000 Stolen by Scammers in Atlanta Area City BEC Fraud

www.bleepingcomputer.com/news/security/over-800-000-stolen-by-scammers-in-atlanta-area-city-bec-fraud/ Over $800,000 were stolen from the City of Griffin, Georgia, by scammers in a BEC (Business Email Compromise) attack by redirecting two transactions to their own bank accounts according to local media sources.

The Week in Ransomware – July 5th 2019 – Shadiness in the Sunshine State

www.bleepingcomputer.com/news/security/the-week-in-ransomware-july-5th-2019-shadiness-in-the-sunshine-state/ This week is a double edition covering the ransomware news between June 22nd and July 5th.

Maryland Govt Agency Breach Exposes Names, SSNs of 78K People

www.bleepingcomputer.com/news/security/maryland-govt-agency-breach-exposes-names-ssns-of-78k-people/ The Maryland Department of Labor (Maryland DoL) published a press release today explaining that sensitive information of roughly 78,000 customers including names and social security numbers was accessed by an unauthorized party.

7-Eleven Japanese customers lose $500,000 due to mobile app flaw

www.zdnet.com/google-amp/article/7-eleven-japanese-customers-lose-500000-due-to-mobile-app-flaw/ Hackers exploit 7-Eleven’s poorly designed password reset function to make unwanted charges on 900 customers’ accounts.. However, in a mind-boggling turn of events, the app contained a password reset function that was incredibly poorly designed. It allowed anyone to request a password reset for other people’s accounts, but have the password reset link sent to their email address, instead of the legitimate account owner.

Croatian government targeted by mysterious hackers

www.zdnet.com/article/croatian-government-targeted-by-mysterious-hackers/ Government agencies targeted with never before seen malware payload named SilentTrinity.

UK’s largest police forensics lab paid ransom demand to recover locked data

www.zdnet.com/article/uks-largest-police-forensics-lab-paid-ransom-demand-to-recover-locked-data/ Eurofins Scientific has already recovered from the incident. Didn’t say how much it paid hackers.

You might be interested in …

Daily NCSC-FI news followup 2019-08-23

Fortinet SSL VPN vulnerability from May 2019 being exploited in wild opensecurity.global/forums/topic/181-fortinet-ssl-vpn-vulnerability-from-may-2019-being-exploited-in-wild/ CVE-2018-13379 is being exploited in the wild on Fortigate SSL VPN firewalls. These exist as a perimeter security control, so it’s a bad vulnerability.. Also: https://twitter.com/GossiTheDog/status/1164536461665996800. Original security advisory (2019-05-24) fortiguard.com/psirt/FG-IR-18-384 Cisco Warns of Public Exploit Code for Critical Switch Flaws www.bleepingcomputer.com/news/security/cisco-warns-of-public-exploit-code-for-critical-switch-flaws/ Cisco […]

Read More

Daily NCSC-FI news followup 2020-10-11

Settings That Impact The Windows OS windowsir.blogspot.com/2020/10/settings-that-impact-windows-os.html There are a number of settings within Windows systems that can and do significantly impact the functionality of Windows, and as a result, can also impact what is available to a DFIR analyst. These settings very often manifest as modifications to Registry keys or values. These settings also […]

Read More

Daily NCSC-FI news followup 2019-08-03

Joosua sai palkkion hakkeroinnista: Menneinä vuosina ei katsottu hyvällä www.is.fi/digitoday/tietoturva/art-2000006192538.html Joosua Santasalo sai tuntuvan palkkion löytämästään tietoturva-aukosta. Bug bounty -kampanjoiden yleistyminen kertoo ohjelmistoalan asennemuutoksesta. Internet connected cars can be hacked to gridlock major cities www.hackread.com/internet-connected-cars-hacked-gridlock-cities/ Hacking Internet Connected Cars a near possibility for cybercriminals to cause major havoc. Say hello to Lord Exploit Kit blog.malwarebytes.com/threat-analysis/2019/08/say-hello-to-lord-exploit-kit/ […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.