Tag Archives: Ukraine

Security Never Sleeps- Chicago Voters, Maersk Attack

Personal data of 1.8 million Chicago voters accidentally exposed by vendor

“Roughly 1.8 million affected”

Almost 2 million Chicago voters had their phone numbers, addresses, and partial social security numbers have been left exposed on a cloud-storage website. The site was maintained by the Omaha election-services company, and the sensitive information was left vulnerable until a cybersecurity researcher discovered it earlier this week.

Ukraine central bank warns of new cyber-attack risk

“Bank warns lenders of new malware”

Today the Ukrainian central bank has issued warnings to both private and state-owned lenders of the apparent spark of a new malware program making its way through the internet. Ukrainian security forces say this program resembles the NotPetya attacks, which ended up knocking out many global systems on June 27th as it spread rapidly through corporate networks of multinational firms and suppliers in Eastern Europe.

New Android malware that spreads via text can steal victims’ credit card details from other apps

“Even apps you trust might be unsafe”

Most of us have the good sense to not enter credit card details or other financial information into sketchy looking apps or websites out of fear of theft, but hardly anyone would do a doubletake on apps like Amazon. Alas, even our favorite applications may not be a sanctuary for our sensitive information, detailed by security firm Kaspersky Labs recent blog post. The blog claims that a new malware is able to quietly steal victims data when they are put into applications, as well as spy remotely on texts and phone calls

Cyberattack cost Maersk as much as $300 million and disrupted operations for 2 weeks

“Huge costs in goods transport”

A June attack that left shipping operations crippled worldwide, even briefly shutting down the Port of Los Angeles largest cargo terminal, has cost Danish shipping firm A.P. Moller Maersk between $200-$300 million as reported by the firm earlier this week. The unprecedented severity of the attack prompted workers to coordinate improvised communications via social media networks like Twitter, WhatsApp, and even post-it notes to get goods moving from ships to the shore again.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 187

Undetected For Years, Stantinko Malware Infected Half a Million Systems

“Massive botnet remained under the radar for five years”

Half a millions devices have been infected by a rogue botnet, dubbed Stantinko. ESET researchers warn that affected systems can “execute anything on the infected host.” The malware has powered a huge adware campaign since at least 2012, largely targeting Russia and Ukraine, but remained hidden via code encryption until now.

Network Spreading Capabilities Added to Emotet Trojan

“Emotet Trojan spreads malware on internal networks”

Fidelis Cybersecurity researchers have identified a new variant of the Emotet Trojan that can distribute malicious programs on internal systems. Recent WannaCry and NotPetya incidents have shown us just how efficient and costly these attacks can be if they spread, increasing concerns among security researchers on greater prevalence in the future.

US Banks Targeted with Trickbot Trojan

“Necurs spreads to financial institutions”

New Emotet banking Trojan signals increasingly complex attacks on the finance industry. An official blog post had subsequently confirmed that a ‘security alert is ongoing related to the discovery, the effects of which are continuing.

Healthcare Industry Lacks Awareness of IoT Threat, Survey Says

“Three quarters of IT decision makers report that they are ‘confident’ they’re secure”

Healthcare networks are filled with IoT devices, but a study has found that the majority of IT experts claim that security systems for many of these are not adequately protected despite many believing that they are.

Kansas data breach compromised millions of Social Security numbers In 10 States

“Over 5.5 million potentially compromised”

A breach of the Kansas Department of Commerce may have given hackers access to millions of social security numbers, putting the department on the hook for credit monitoring services for all victims. The SSN’s had not been previously reported. The Kansas News Services obtained the information through an open records request.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 178

Windows 10 Is Getting A Clever New Way To Fight Off Ransomware

“New ability added to Windows Defender”

The built-in Windows anti-malware application has been outfitted with a new protective mechanism. ‘Controlled Folder Access’ allows only recognized trustworthy devices and users to access the files that you activate the feature for.

Medicare data breach: Alan Tudge admits department unaware darknet vendor selling card details

“HS Minister concedes after investigation”

Alan Tudge, Australian Human Services Minister, now confirms that his department was blind to the fact that a secretive Darknet vendor had obtained and began to sell Australian medicare information on the web. The Guardian published an investigation Tuesday that revealed the operation, which had sold about 75 individuals records on an illegal product auctioning site. Mr. Tudge has addressed the breach in a recent statement:

Decrypting the Motivations Behind NotPetya/ExPetr/GoldenEye

“Who and Why still largely unknown”

The most recent malware attack to rock the Ukraine and others has seemed to leave more questions than answers. Reaching at least 60 countries, the malware is now even taking on different names. Some researchers have dubbed it Petya, due to its similarities with the Petya malware seen previously. However, others refute the relationship, leaving it categorized as NotPetya, GoldenEye, and more. Kaspersky Labs has found similarities with a modified version of Petya, and have settled on ExPetr.

Zero-Day Found in Humax WiFi Router

“Vulnerable routers easily compromised”

Security systems in the new HG-100R Humax WiFi router are apparently fragile enough to allow hackers remote access to sensitive information and administrative command control. TrustWave SpiderLabs researchers discovered the flaw in May, but repeated warnings to the manufacturer were allegedly met with silence.

Personal Details of 117,000 AA Shoppers Exposed

“15 million member organization criticized for security faults”

The Automobile Association is the target of massive critique this week after news of a major data malfunction may have compromised the sensitive information of much of its membership base. A server misconfiguration brought the vulnerability of at least 100,000 customers data, however the organization had downplayed the severity of the incident. The company posted the following message to customers on Monday;

Enjoy your read? Check out our other blogs and content here.

10Fold- Security Never Sleeps- 177

More than half of major malware attack’s victims are industrial targets

“Petya intended effects examined”

Kaspersky Labs has released a new report with some grand insights in the Petya malware attack. First appearing as a widespread ransomware attack, it became clear later into the ordeal that the spread was more intended for destruction rather than financial gain. Kaspersky reported specifically that financial sectors were the most affected, as well as manufacturing or oil mechanisms.

Hacking Factory Robot Arms for Sabotage, Fun & Profit

“Could open a new world of ‘Subtle Blackmail'”

Black Hat talk will discuss how cybercriminals could manipulate robotic arms and create defects in vital products. Security researchers have been accumulating cache’s of big discoveries about IIoT vulnerabilities, and Black Hat is planning on continuing their release to raise awareness of critical flaws in infrastructure, power grids, and gas pipeline controls.

General Data Protection Regulation (GDPR) requirements, deadlines and facts

“EU legislation lowdown” 

GDPR is a regulation that requires businesses to protect the personal data and privacy of EU citizens for transactions that occur within EU member states, and non-compliance could cost companies dearly. This article details what every company that does business in Europe needs to know about GDPR.

Online fraud costs public billions but is still not a police priority, says watchdog

“Policing institutions not enforcing rules effectively”

The National Audit Office has claimed that various policing and regulatory agencies were insufficiently addressing the issue of online fraud. The NAO says that for most police forces the incidents are: “not yet a priority” and the problem had been overlooked by government, law enforcement and industry.

10Fold- Security Never Sleeps- 176

Criminal Petya ‘ransomware’ starts to look like wiper malware

“Seemingly intended to wipe systems”

Suspected at first to be a ransomware attack, it seems that Petya, the latest cyberscare in the Ukraine, seems as though it was more of a targeted attack. Large firms such as FedEx, Cadbury, Maersk, and more were affected by the malware, however more indicators point to the fact that the attack was not financially motivated but intended to solely destroy device memory.

Cyber security in industrial control systems poor, says Crest

“Lack of efficient standards to deter attacks”

Industrial control environments are at risk of serious infrastructure risk based on a lack of technical security testing. Crest has publicly pressed for for an upgrade to the cyber security systems ICS environments in response.

Bill Would Bar Pentagon From Business With Russian Cyber Firm Kaspersky

“Russian Cyber Security Firm would be blocked”

A segment of a new bill making its way through the United States Senate would halt any contracting Kaspersky Labs has with the U.S. Department of Defense. The Russian-based security firm had FBI agents visit the homes of many employees in the last week by FBI agents, indicating that congressional pressure may force the company out of one of its markets.

10Fold- Security Never Sleeps- 170

‘Crash Override’ malware heightens fears for US electric grid

Ukrainian cyberattack concerns U.S. security experts”

Tech security firms ESET and Dragos revelaed the malware behind last years Ukrainian attack, “Crash Override,” earlier this week. They claim that this particular software is only the second to be tailored to industrial control facilities and intended for massive disruption. The only precedent for an attack of this magnitude is the Stuxnet virus, which had thrown Iran’s nuclear program into disarray several years ago.

Malware Incidents at US SMBs Spiked 165% in Q1

“Various SMB’s suffer massive attack volume”

The first quarter of this year saw a huge increase in malware attack attempts according to  a new malwarebytes report. In the U.S. alone attacks on SMB’s have surged by 165% over the pervious years count.

Hospital Email Security in Critical Condition as DMARC Adoption Lags

“Patient data at risk”

A new report from Global Cyber Alliance has provided some chilling details about security issues with healthcare providers. Many of these institutions have been sluggish in adopting the DMARC protocol, leaving email accounts dangerously vulnerable.

Fileless malware: An undetectable threat

“New threats emerging”

While much of the security field tends to focus on ransomware and potential solutions, IT pro’s are missing some of the newer, stealthier threats. Fileless malware is one of these, with an increasing prevalence and frequency.

10Fold- Security Never Sleeps- 166

Qatar Begins Probe After State News Agency Hacked

“Unprecedented security breach”

 On wednesday the government of Qatar began an investigation into a recent breach in which hackers posted fake news stories on controversial political issues in the country. The government sponsored news agency and official Twitter account in which the posts were published caused backlash throughout the Middle East.

Another Ransomware Nightmare Could Be Brewing in Ukraine

“New strains could hurt more than WannaCry”

XData, a new ransomware developing in the Ukraine, has renewed concerns of cyberattacks as the WannaCry outbreak has died down. The fact that the malware has attacked the Ukraine singularly has fostered questions oover motive, but the fears that spillover globally could develop frightens security researchers everywhere.

Hackers can use malicious subtitles to remotely take control of your device

“Take care in using subtitles on specific programs”

Use Kodi, Popcorn Time, VLC or Stremio? If you activate subtitles on these programs make sure to update the softare. Check Point researchers have shown that hackers can remotely activate certain sysytems on vulnerable devices, using this vector to gain access to about 200 million video players.

Microsoft to buy cyber security firm Hexadite for $100 million: report

“Firms provides automated responses to attacks”

Microsoft is set to acquire security firm Hexadite for a cool $100 million Calcalist reported on Wednesday. Headquartered in Boston, Massachusettes, Hexadite conducts its research and development operations in Israel.