Attacks, Threats, and Vulnerabilities
DreamHost Mistake Leaks 815 Million-Record Database Of Website Owner Data (Forbes) Huge leak of 815 million records included usernames, email addresses and other information from one of the world’s largest web hosts could’ve been useful to cybercriminals, a researcher warns.
DreamHost database leaked 814 million records online, including customer data (Security Magazine) The Website Planet research team, in cooperation with security researcher Jeremiah Fowler, discovered a non-password protected database that contained just under one billion records. The exposed records revealed usernames, display names, and emails for WordPress accounts.
Cloud Database Exposes 800M+ WordPress Users’ Records (Infosecurity Magazine) Misconfiguration at hosting provider DreamHost led to the privacy breach
Monero-Mining Malware ‘Crackonosh’ Has Infected 222K Computers, Researchers Find (CoinDesk) Security firm Avast says “Crackonosh” has been found in 222,000 computers that downloaded illegal versions of video games like “GTA V.”
Malware author made $2 million after infecting 222,000 Windows systems (The Record by Recorded Future) The operator of a malware strain known as Crackonosh has made more than 9,000 Monero coins (estimated today at around $2 million) after infecting more than 222,000 Windows computers since 2018.
Spam Downpour Drips New IcedID Banking Trojan Variant (Threatpost) The primarily IcedID-flavored banking trojan spam campaigns were coming in at a fever pitch: Spikes hit more than 100 detections a day.
Hacker wipes database of NewsBlur RSS reader (The Record by Recorded Future) A hacker has wiped the database of NewsBlur, a popular web-based RSS reader, and demanded a ransom payment from the company in exchange for access to its original data.
Threat Thursday: Agent Tesla Infostealer (BlackBerry) Agent Tesla is an extremely popular information-stealing Trojan that is being sold and distributed across a number of underground hacking forums and platforms. It is highly customizable, which allows threat actors to tailor it to their particular needs.
Dell SupportAssist bugs put over 30 million PCs at risk (BleepingComputer) Security researchers have found four major security vulnerabilities in the BIOSConnect feature of Dell SupportAssist, allowing attackers to remotely execute code within the BIOS of impacted devices.
A Well-Meaning Feature Leaves Millions of Dell PCs Vulnerable (Wired) Flaws in a firmware security tool affect as many as 30 million desktops, laptops, and tablets.
Positive Technologies Discovers Vulnerability in Fortinet Firewall (Positive Technologies) Attackers could gain full control over the firewall server; Fortinet has fixed the flaw.
WSJ News Exclusive | App Taps Unwitting Users Abroad to Gather Open-Source Intelligence (Wall Street Journal) The Premise app pays users, many in the developing world, to do tasks like taking photos and completing surveys for clients including the U.S. military.
Phishing attack’s unusual file attachment is a double-edged sword (BleepingComputer) A threat actor uses an unusual attachment to bypass security software that is a double-edged sword that may work against them.
Brazil’s Sírio-Libanês Hospital adopts contingency system after Fleury cyber attack (The Rio Times) The hospital announced that its teams are “working to quickly remedy potential delays in examinations,” while Fleury gradually reestablishes its services.
After cyber attack: Grupo Fleury works towards gradual and safe resumption of services (The Rio Times) News in English for Rio de Janeiro and Brazil
Anglesey cyber-attack affects island’s five secondaries (BBC News) Anglesey council’s chief executive said the schools are likely to see disruption
Ouachita Parish Library recovering from Cyber Attack (KTVE) In April of this 2021 the Ouachita Parish public library system suffered from a malware attack. The library’s communications coordinator says that they’re stil…
SEPA cyber attack recovery could take ‘two years’, says organisation’s boss (FutureScot) The recovery of IT systems for Scotland’s environment watchdog could take ‘two years’, according to the organisation’s chief executive.
Security Patches, Mitigations, and Software Updates
Philips Interoperability Solution XDS (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 3.7
ATTENTION: Exploitable remotely
Vendor: Philips
Equipment: Interoperability Solution XDS
Vulnerability: Clear Text Transmission of Sensitive Information
2. RISK EVALUATION
Successful exploitation of this vulnerability could allow an attacker to read the LDAP system credentials by gaining access to the network channel used for communication.
FATEK WinProladder (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 7.8
ATTENTION: Low attack complexity
Vendor: FATEK Automation
Equipment: WinProladder
Vulnerabilities: Out-of-bounds Read, Out-of-bounds Write, Improper Restriction of Operations within the Bounds of a Memory Buffer
2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow for the execution of arbitrary code.
Microsoft’s security tool can now spot rogue devices on your network (ZDNet) Microsoft’s new security tool will let managed devices discover unmanaged devices on the corporate network.
Kaspersky VPN Secure Connection reveals new updates (TahawulTech.com) Swifter, wider, stronger: Kaspersky VPN Secure Connection reveals new updates.
Microsoft Windows 11 officially (almost) here (Computing) The new OS will be available for download – for free – by the end of the year
Trends
Gaming industry under siege from cyberattacks during pandemic (WeLiveSecurity) Cyberattacks targeting the gaming industry have been skyrocketing, with web attacks more than tripling year-on-year in 2020.
McAfee Labs Threat Report, June 2021 (McAfee Labs) In this report we introduce additional context into the biggest stories dominating the year thus far and we can look no further than recent ransomware attacks. While the topic itself is not new, there is no question that the threat is now truly mainstream.
‘Stalkerware’ spy apps on smartphones spike during the pandemic (inews.co.uk) Check privacy settings on everyday apps to ensure they’re not giving away more information than necessary, public urged
Marketplace
US Cyber Games Announces Winners of the 2021 US Cyber Open Competition and Top 50 Leaderboard (PR Newswire) The first phase of the inaugural US Cyber Games™ is over. Nearly 700 athletes registered for the US Cyber Open Capture-the-Flag event. The top…
Ghana’s wolf_hunters Take Top Honours in the Africa Cyber Defense Forum’s Cyberlympics 2021 (CompTIA) 56 teams competed in the continent-wide cybersecurity event supported by technology industry group CompTIA
Most businesses to accelerate data security investments in 2021 (Help Net Security) Findings from more than 600 executives reveal key insights on the impact of data security investments on AI and advanced analytics.
Fast Growth Company Authlo Announces Seed Raise (MarketWatch) Jun 24, 2021 (AB Digital via COMTEX) —
San Francisco, CA – June 24, 2021 – Authlo, the platform that helps consumers and businesses authenticate in the…
Andreessen Horowitz launches $2.2 billion crypto fund and is ‘radically optimistic’ despite price fluctuations (CNBC) Andreessen Horowitz is launching a multibillion-dollar fund to invest in a volatile ecosystem it’s betting will be as influential as the internet.
Amazon launching global competition to find and fix 1 million software bugs (ZDNet) Participants in AWS BugBust can win a free trip to AWS re:Invent 2021 in Las Vegas.
Andreessen Horowitz Goes Ham on Crypto with a New $2.2B Fund (Wired) After its wildly successful Coinbase exit, the VC firm signals its commitment to cryptocurrencies with a third fund.
Cybersecurity Stocks To Buy As Sector Underperforms In 2021 Despite Hacking News – News Nation USA (News Nation USA) You may think the time is right to move into cybersecurity stocks, if you’re reading this IBD investing primer. Cybersecurity is in the news amid
Report: Region’s growing cybersecurity cluster continues to face talent shortage (San Diego Union-Tribune) San Diego Regional EDC study highlights economic impact of cybersecurity sector, which equates to 23 Comic-Con conventions
Ocean Bay Wins $167M DEA Support Contract (GovCon Wire) Looking for the latest GovCon News? Check out our story: Ocean Bay Wins $167M DEA Support Contract. Click to read more!
GSA Announces Award of $2.1B NOAA Mission IT Services BPA; Laura Stanton Quoted (GovCon Wire) Looking for the latest GovCon News? Check out our story: GSA Announces Award of $2.1B NOAA Mission IT Services BPA. Click to read more!
TrapX Security Appoints Guy Waizel as COO (PR Newswire) TrapX Security, the global leader in deception-based threat detection and response, today announced that Guy Waizel has been appointed Chief…
KnowBe4 General Counsel Alicia Dietzen Recognized Among Association of Corporate Counsel Top 10 30-Somethings (GlobeNewswire News Room) Dietzen awarded for an early, successful career and for her work in the local Tampa Bay community…
Products, Services, and Solutions
AU10TIX Streamlines Endless Layers of Defense for Fighting Fraud and Verifying Identities on a Global Scale (AU10TIX) Newest Technology Update Provides Businesses with One-Stop Solution for Automated and Electronic Identity Verification AU10TIX, the global leader in digital identity verification, announced today that it now provides consolidated ID document verification and electronic identity verification results in less than eight seconds through a singular platform for its customers. The update streamlines data access and […]
Williams welcomes Pax8 cloud distributor as Acronis #CyberFit Partner (Acronis) Williams Racing is pleased to welcome Pax8, the best place for IT professionals to buy cloud products, as the Acronis #CyberFit Partner, in line with the Cyber Protection Partnership between Williams and Acronis that was renewed earlier this year.
Google extends open source vulnerabilities database to Python, Rust, Go, and DWF (VentureBeat) Google has extended its Open Source Vulnerabilities database to incorporate vulnerability data from Go, Rust, Python, and DWF.
Sophos enters into first UK distribution agreement (CRN) Arrow will distribute Sophos’ complete portfolio of business security solutions
Unisys Japan to launch blockchain security token platform (Ledger Insights – enterprise blockchain) Today Nihon Unisys said it plans to launch a security token platform in the spring of 2022. The blockchain platform will support the issuance, transfer and redemption of the security tokens. Typically tokenization platforms aren’t only for digitizing stocks but can also tokenize real estate or wine bottles, as examples. At the start, Unisys will support ERC-20 […]
LambdaTest unveils a Microsoft Teams App to power website testing in-conversation (GISuser.com) As remote working continues around the world, browser-testing platform LambdaTest has launched a Microsoft Teams app for a brand new experience to users. Anyone using Teams can now, in-conversation, run live tests to see what their company website looks like across 2,000+ desktop browsers and mobile configurations. This will enable people to […]
CrowdStrike Ranked #1 for Modern Endpoint Security 2020 Market Shares (BusinessWire) CrowdStrike Inc., a leader in cloud-delivered endpoint protection and workload protection, today announced that it has been ranked #1 for Modern Endpo
Technologies, Techniques, and Standards
NSA Releases D3FEND To Improve Cyber Defenses, Info Sharing (Breaking Defense) While ATT&CK focuses on standardizing the way cyber warriors understand and talk about offensive cyber, D3FEND focuses on common defensive measures.
Preparing for cyber disaster (Blue Notes) The financial services industry is among the best equipped for disaster after a focus on future investment through the pandemic.
Google pushes bug databases to get on the same page for open-source security (Register) Chocolate Factory proposes common interchange format for vulnerability data
Why charities should prioritise patch management (Charity Digital) We look at Avast’s new White Paper, which explores the importance of patch management and tells charities everything they need to know
ESET joins ranks as a CVE Numbering Authority (CNAs) (ESET) Working in concert with Common Vulnerabilities and Exposures (CVE®) Program, ESET, the leading Europe-based endpoint protection platform vendor, is authorized by the CVE Program as a CVE Numbering Authority (CNA).
How to prevent ransomware attacks (AwareGO) Ransomware attacks are on the rise. It’s important to know what they are, how they spread and how to prevent ransomware attacks.
How to convince your boss that cybersecurity includes Active Directory (Help Net Security) A proper cybersecurity stance needs to address severe attacks that can leave Active Directory and operations in shambles.
Design and Innovation
LinkedIn’s job-matching AI was biased. The company’s solution? More AI. (MIT Technology Review) ZipRecruiter, CareerBuilder, LinkedIn—most of the world’s biggest job search sites use AI to match people with job openings. But the algorithms don’t always play fair.
Legislation, Policy, and Regulation
Cyber Cold War? The US and Russia talk tough, but only diplomacy will ease the threat (The Conversation) At this month’s summit, US President Joe Biden warned his counterpart Vladimir Putin of reprisals against ‘persistent malicious cyber-attacks’. But it will take more than posturing to end the stand-off.
UK’s departing spy tech chief: We’re at serious risk if we lose edge (BBC News) Science is transforming espionage and many countries are taking advantage, says Prof Finkelstein.
EU Cybersecurity: Commission proposes a Joint Cyber Unit to step up response to large-scale security incidents (EU Reporter) The Commission is laying out a vision to build a new Joint Cyber Unit to tackle the rising number of serious cyber incidents impacting public services, as well as the life of businesses and citizens across the European Union. Advanced and coordinated responses in the field of cybersecurity have become increasingly necessary, as cyberattacks grow […]
Readout of Secretary Mayorkas’s Trip to Portugal (Department of Homeland Security) On June 21-22, 2021, Secretary of Homeland Security Alejandro N. Mayorkas traveled to Portugal to represent the United States alongside the Department of Justice at the biannual U.S.-EU Justice and Home Affairs (JHA) Ministerial.
The Cybersecurity 202: U.S. cybersecurity agency has global ambitions (Washington Post) The premier U.S. civilian cybersecurity agency wants to expand internationally and be a counterbalance to China’s global influence.
U.S. Secretary of Commerce Gina M. Raimondo Statement on Bipartisan Infrastructure Framework (U.S. Department of Commerce) Following President Joe Biden’s announcement of the $1.2 trillion Bipartisan Infrastructure Framework, U.S. Secretary of Commerce Gina M. Raimondo released the following statement:
Big Tech edges closer to break up after deeply unhinged markup (The Verge) Now they head to the House floor.
House lawmakers introduce bill to increase American awareness of cyber threats (TheHill) A group of bipartisan House lawmakers on Thursday introduced legislation to step up cybersecurity literacy and increase awareness among the American public amid a spike in cyber threats against critical infrastructu
Department of Energy asks Congress for $201 million to bolster cybersecurity in wake of attacks (CNBC) The increased investment in cybersecurity follows a steady drumbeat of ransomware attacks that have directly impacted Americans and hampered services.
House lawmakers introduce bill to increase American awareness of cyber threats (TheHill) A group of bipartisan House lawmakers on Thursday introduced legislation to step up cybersecurity literacy and increase awareness among the American public amid a spike in cyber threats against critical infrastructu
Countering Cyberattacks And Ransomware Will Require “Whole Of Nation” Response (Forbes) FCC Announces Groundbreaking Effort to Secure Communications Equipment and Services Supply Chain From Vulnerable Chinese Vendors
Senate fails to confirm new CISA director before two-week break, drawing criticism (CyberScoop) The Senate’s failure to confirm a new director for DHS’s top cybersecurity agency before the chamber goes on a two-week recess has raised ire from cybersecurity leaders who say the role is too important to leave unfilled.
Former NSA Cyber Adviser Teddy Nemeroff Named to National Security Council (Executive Gov) Teddy Nemeroff, formerly a senior adviser for cyber policy at the National Security Agency (NSA), ha
Litigation, Investigation, and Law Enforcement
Binance Says It Helped Cops Arrest Ransomware Money Launderers (Motherboard) The popular digital coin’s exchange Binance said it detected and identified a group of money launderers who worked for the infamous ransomware gang Cl0p.
Two men fined $352 mln over hack and trade scheme (Reuters) A man accused of hacking non-public press releases and passing them to traders must pay a $319 million fine to the U.S. Securities and Exchange Commission, a New Jersey federal judge ruled on Wednesday.
FIN7 manager sentenced to 7 years for role in global hacking scheme (The Record by Recorded Future) A key member of the international cybercrime group FIN7 was sentenced to 84 months in prison and ordered to pay $2.5 million in restitution on Thursday for his role in breaching a wide range of American businesses.
Federal appeals court rebukes Baltimore spy plane program, likely blocks access to cache of remaining footage (Baltimore Sun) Federal judges had sharp words Thursday for Baltimore’s defunct aerial surveillance program, warning that the spy planes when used unchecked afforded police almost limitless surveillance powers and threatened everyone’s personal privacy.
TikTok issued with €1.5 billion damage claim for violating childrens’ privacy (Computing) Non-profit groups say TikTok has been collecting childrens’ data without permission or consent
DHS is concerned about Trump reinstatement conspiracy theory, top official says (POLITICO) DHS’s top counterterrorism official told members of Congress about the department’s concerns in a private briefing.
Trump allies ask judge to dismiss lawsuits over false claims that Dominion voting machines were rigged (Washington Post) President Donald Trump’s former lawyers and allies urged a federal judge in Washington on Thursday to throw out a trio of billion-dollar defamation lawsuits filed by Dominion Voting Systems over false claims that the company’s technology was used to rig the 2020 presidential election.