News


  • Apache Struts Warns Users of Two-Year-Old Vulnerability

    November 6, 2018

    Users must update their vulnerable libraries manually. The Apache Software Foundation warned in an advisory that the latest version of the Commons FileUpload library is susceptible to a two-year-old remote code execution flaw. Users of the vulnerable library must update their projects manually. The critical bug in Commons FileUpload library is a known vulnerability (CVE-2016-1000031) that enables ...

  • Hack the Air Force 3.0 Bug Bounty Announced by USAF

    November 6, 2018

    The Hack the Air Force 3.0 bug bounty program organized in collaboration with HackerOne has been announced by the U.S. Air Force to take place from October 19 to November 5. “Up to 600 eligible applicants will be invited to participate in the challenge. Invitations will be issued to eligible participants during the challenge at regular ...

  • States activate National Guard cyber units for US midterm elections

    November 5, 2018

    At least three US states have activated and put National Guard cyber-security units on standby for midterm elections. The three states are Washington, Illinois, and, more recently, Wisconsin. According to officials, these cyber-security teams will be prepared to assist state election officials in the event of a cyber-security incident during the elections. Illinois officials have activated National ...

  • Flaws in Popular Self-Encrypting SSDs Let Attackers Decrypt Data

    November 5, 2018

    We all have something to hide, something to protect. But if you are also relying on self-encrypting drives for that, then you should read this news carefully. Security researchers have discovered multiple critical vulnerabilities in some of the popular self-encrypting solid state drives (SSD) that could allow an attacker to decrypt disk encryption and recover protected ...

  • Inception Group Uses POWERSHOWER Backdoor in Two-Stage Spear Phishing Attacks

    November 5, 2018

    The Inception threat group has been observed exploiting the CVE-2017-11882 Microsoft Office memory corruption vulnerability and a PowerShell-based backdoor dubbed POWERSHOWER in their most recent multi-stage attack campaign during October 2018. Inception was seen in action since at least 2014, using multiple highly automated malware toolkits targeting a vast array of industries and platforms from all ...

  • New Intel CPU Flaw Exploits Hyper-Threading to Steal Encrypted Data

    November 3, 2018

    A team of security researchers has discovered another serious side-channel vulnerability in Intel CPUs that could allow an attacker to sniff out sensitive protected data, like passwords and cryptographic keys, from other processes running in the same CPU core with simultaneous multi-threading feature enabled. The vulnerability, codenamed PortSmash (CVE-2018-5407), has joined the list of other dangerous side-channel vulnerabilities ...

  • Two botnets are fighting over control of thousands of unsecured Android devices

    November 2, 2018

    Two botnet gangs are fighting to take control over as many unsecured Android devices as they can to use their resources and mine cryptocurrency behind owners’ backs. The turf war between these two botnets –one named Fbot and the other named Trinity– has been going on for at least a month if we’re to combine the ...

  • Eurostar Resets All Customer Passwords After ‘Attempted’ Hack

    November 2, 2018

    The incident, which took place in mid-October, follows major breaches at several airlines — but this time around no payment details were affected Eurostar has reset all customers’ online passwords after detecting an “attempted” hack, the rail company confirmed. The incident follows major breaches at several airlines. Eurostar customers reported receiving emails from Eurostar earlier this week notifying ...

  • Hackers obtain nuclear power plant plans in France

    November 2, 2018

    Thousands of sensitive documents pertaining to nuclear power plants, prisons and tram networks have been stolen from the servers of a French company in a cyberattack, German and French media have reported Friday. The data illegally accessed from the French company Ingerop back in June amounted to more than 65 gigabytes, according to reports by German ...

  • Microsoft regularly shared data of India bank customers with US intelligence agencies, claims report

    November 2, 2018

    Technology company Microsoft has routinely shared the financial details of Indian bank customers with intelligence agencies in the United States, DNA reported on Tuesday. According to the newspaper, the Reserve Bank of India flagged its concerns on the matter in a risk assessment report it has placed before banks’ audit committees. The central bank found that the data ...

  • Radisson Hotel Group suffers data breach, customer info leaked

    November 1, 2018

    The chain accounts for over 1,400 hotels in over 70 countries and includes the Park Plaza brand, Country Inn & Suites, Park Inn, and Radisson Collection. Radisson Rewards members were directly informed on October 30 and 31 that a security incident was discovered on the first of the month which may have involved the leak of ...

  • Researchers find Stuxnet, Mirai, WannaCry lurking in industrial USB drives

    November 1, 2018

    Removal storage and USB thumb drives are a serious security incident waiting to happen, new research suggests. When we consider threats to our industrial systems, specifically crafted malware, such as the Industroyer strain which cut off the power to the city of Kiev in Ukraine for an hour, often comes to mind. Industrial players have a problem. Many ...

  • Australian defence contractor Austal hit by data breach

    November 1, 2018

    Australian prime defence contractor and shipbuilder Austal informed  the Australian Securities Exchange (ASX) of a data breach after the market closed on Thursday evening. The company said it alerted “stakeholders” who were potentially hit by the breach, but said no information affecting national security or the company’s operations was stolen, although a number of staff emails and ...

  • Two Zero-Day Bugs Open Millions of Wireless Access Points to Attack

    November 1, 2018

    Two zero-day vulnerabilities in Bluetooth Low-Energy chips made by Texas Instruments (and used in millions of wireless access points) open corporate networks to crippling stealth attacks. Adversaries can exploit the bugs by simply being approximately 100 to 300 feet from the vulnerable devices. A compromised access point can then lead to an attacker taking control of ...

  • Cisco zero-day exploited in the wild to crash and reload devices

    November 1, 2018

    The Cisco security team has revealed earlier the existence of a zero-day vulnerability affecting products that run Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software. The vulnerability has been exploited in the wild, according to a security advisory the company published a few hours ago. No patches are available at the time of writing. Cisco says it ...

  • Mattis establishes DOD task force to protect critical tech, information

    November 1, 2018

    Secretary of Defense James Mattis has established a task force whose sole purpose is to better secure the Department of Defense’s important technology and information. Mattis issued a memo dated Oct. 24 creating the Protecting Critical Technology Task Force (PCTTF) to report to the deputy secretary of Defense and the vice chairman of the Joint Chiefs of Staff. “Working with our partners ...

  • Utilities, Energy Sector Attacked Mainly Via IT, Not ICS

    November 1, 2018

    Stealing administrative credentials to carry out months-long spy campaigns is a top threat. While industrial control systems (ICS) are the most talked-about when it comes to cyberattacks against energy and utilities firms, most attacks actually take aim at the enterprise IT networks used by these organizations, rather than critical infrastructure itself. The Vectra 2018 Spotlight Report on Energy and ...

  • New Stuxnet Variant Allegedly Struck Iran

    October 31, 2018

    A malware similar in nature to Stuxnet but more aggressive and sophisticated allegedly hit the infrastructure and strategic networks in Iran. Details about the supposed new attack are superficial at the moment, as there are no details about the supposed attack, the damage it caused or its targets. A report on Wednesday from Israeli evening news bulletin ...

  • Coming soon: Better collaboration, sharing with U.S. allies, IC CIO Sherman says

    October 31, 2018

    The U.S. intelligence community is working to improve collaboration and communication with its Five Eyes allies and beyond. Intelligence community CIO John Sherman plans “in just a couple weeks” to convene CIOs from Five Eyes allied nations — Australia, Canada, New Zealand and the United Kingdom — “to work through some of these issues” concerning intelligence collaboration ...

  • Emotet malware gang is mass-harvesting millions of emails in mysterious campaign

    October 31, 2018

    A notorious malware family that has been on a resurgent path since last year has received a major update this week that will send shivers down any organization’s back. According to a report from Kryptos Logic shared earlier today with ZDNet, the Emotet malware family has started mass-harvesting full email messages from infected victims, starting yesterday. The Emotet group ...