Daily NCSC-FI news followup 2022-01-02

Uber ignores vulnerability that lets you send any email from Uber.com

www.bleepingcomputer.com/news/security/uber-ignores-vulnerability-that-lets-you-send-any-email-from-ubercom/ Security researcher and bug bounty hunter Seif Elsallamy discovered a flaw in Uber’s systems that enables anyone to send emails on behalf of Uber. The researcher who discovered this flaw warns this vulnerability can be abused by threat actors to email 57 million Uber users and drivers whose information was leaked in the 2016 data breach. Uber seems to be aware of the flaw but has not fixed it for now. The vulnerability is “an HTML injection in one of Uber’s email endpoints, ” says Elsallamy, drawing comparison to a similar flaw discovered in 2019 on Meta’s (Facebook’s) servers by pen-tester Youssef Sammouda.

Lapsus$ ransomware gang hits SIC, Portugal’s largest TV channel

therecord.media/lapsus-ransomware-gang-hits-sic-portugals-largest-tv-channel/ The Lapsus$ ransomware gang has hacked and is currently extorting Impresa, the largest media conglomerate in Portugal and the owner of SIC and Expresso, the country’s largest TV channel and weekly newspaper, respectively. The attack has taken place over the New Year holiday and has hit the company’s online IT server infrastructure. Websites for the Impressa group, Expresso, and all the SIC TV channels are currently offline. National airwave and cable TV broadcasts are operating normally, but the attack has taken down SIC’s internet streaming capabilities. The Lapsus$ group took credit for the attack by defacing all of Impressa’s sites with a ransom note (pictured at the top of this article). Besides a ransom request, the message claims that the group has gained access to Impresa’s Amazon Web Services account. Impresa staff appeared to have regained control over this account earlier today when all the sites were put into maintenance mode, but the attackers immediately tweeted from Expresso’s verified Twitter account to show that they still had access to company resources.

BleepingComputer’s most popular cybersecurity and tech stories of 2021

www.bleepingcomputer.com/news/technology/bleepingcomputers-most-popular-cybersecurity-and-tech-stories-of-2021/ 2021 is over, and we can look forward to a hopefully healthier, safer, and more normal 2022. Below we list the ten most popular stories at BleepingComputer during 2021, with a summary of each. 10. Fired NY credit union employee nukes 21GB of data in revenge. 9. 533 million Facebook users’ phone numbers leaked on a hacker forum. 8. New phishing attack uses Morse code to hide malicious URLs. 7. New zero-day exploit for Log4j Java library is an enterprise nightmare. 6. Adult content from hundreds of OnlyFans creators leaked online. 5. How to fix the Windows 0x0000011b network printing error. 4. Canon sued for disabling scanner when printers run out of ink. 3. Over nine million Android devices infected by info-stealing trojan. 2. Researcher hacks over 35 tech firms in novel supply chain attack. 1. Windows 10 bug corrupts your hard drive on seeing this file’s icon

You might be interested in …

Daily NCSC-FI news followup 2021-02-13

Who is to blame for the malicious Barcode Scanner that got on the Google Play store? blog.malwarebytes.com/android/2021/02/who-is-to-blame-for-the-malicious-barcode-scanner-that-got-on-the-google-play-store/ In our last blog, Barcode Scanner app on Google Play infects 10 million users with one update, we wrote about a barcode scanner found on the Google Play store that was infected with Android/Trojan.HiddenAds.AdQR.. All initial signs led […]

Read More

Daily NCSC-FI news followup 2019-09-02

Google White Hat Hackers Say Thousands of iPhones Have Been Hacked for Years www.pandasecurity.com/mediacenter/news/google-iphones-hacked/ Last week computer security specialists from Google announced that thousands of iPhones had been hacked using a vulnerability seen in almost every version from iOS 10 through to the latest version of iOS 12. Googles Project Zero team, a division of […]

Read More

[NCSC-FI News] Näin sairaalat varautuvat kyberiskuihin “Asian merkitys on tunnistettu ja tunnustettu”

Kyberuhkiin, kuten palvelunestohyökkäyksiin, kiristysohjelmiin ja tietoverkkoiskuihin varautuminen on hyvällä tasolla, Suomen yliopistollisista sairaaloista vakuutetaan. Source: Read More (NCSC-FI daily news followup)

Read More