Tag Archives: S3

10Fold-Security Never Sleeps- 185

Dow Jones is the latest company to expose customer records on a cloud server

“2.2 million records left unsecured”

DowJones & Co. are the latest in a sequence of large firms to leave massive amounts of private customer data on unsecured cloud servers. Similar to the Verizon error recently, Dow Jones consumer data was found publicly in an Amazon Web Service S3 bucket discovered by Chris Guard of UpGuard Inc.

GhostCtrl malware silently haunts Android users, hijacking functionality

“Versatile remote access Trojan growing in infection”

Researchers have found GhostCtrl, a highly adaptable trojan malware that steals sensitive information and is capable of performing ransomware attacks. The backdoor is part of a massive campaign that involves RETADUP.A, according to Trend Micro.

A Single Extreme Cyberattack Could Cost the U.S. More than Hurricane Katrina

“U.S. Economy incredibly vulnerable”

An increase in global ransomware attacks has prompted Lloyds of London to publish a report on the state of danger that the U.S. faces in regards to cybersecurity. Published with Cyence, the report speculates that the U.S. stands to lose as much as $121.4 billion.

The best of Black Hat: The consequential, the controversial, the canceled

“Review of the acclaimed conference”

Black Hat has gained a reputation over two decades as a conference that demonstrates much of the cutting-edge research in information security and industry trends that began in Las Vegas and has extended to annual events globally. This year, the event also had its share of controversy stemming from last minute cancellations.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 175

GhostHook Attack Can Bypass Windows 10’s PatchGuard

“Newly discovered malware can hook kernel code”

CyberArk Security Labs has shown that an attack on Windows 10 PatchGuard systems can be compromised. The protective program was designed to prevent rootkits and other malicious software at kernel level on 64-bit versions of Windows. The attacking software, now dubbed GhostHook, can completely bypass PatchGuard as long as the cybercriminal already has a foothold in the system.

Nuclear Plants, Hospitals at Risk of Hacked Radiation Monitoring Devices

“Major flaws that are currently unfixable”

Design flaws that are used to track radiation levels in major public systems have been found to be able to be exploited. A shrewd cybercriminal could be capable of injecting fake radation level readings, causing concerns for many security researchers.

Cloud Security and the RNC Leak

“Researchers take lessons from breach”

A mal-configured Amazon S3 packet has led to a huge leak for the RNC networks. This could easily happen to other organizations that do not adopt adequate security measures.

Check Point says Fireball malware hit 250 million; Microsoft says no

“Microsoft conflicts Check Point statement”

Squabbles over the infection rate of Fireball have put Check Point and Microsoft in contrary positions. Check Point claimed that the China-based malware had affected over 250 million systems, which Microsoft denies. The firm countered the Check Point report with another statement, claiming it has been tracking Fireball since 2015 and that the total count of infected systems was only about 40 million.