News – March 2018


  • Cyberattacks Put Russian Fingers on the Switch at Power Plants, U.S. Says

    March 15, 2018

    The Trump administration accused Russia on Thursday of engineering a series of cyberattacks that targeted American and European nuclear power plants and water and electric systems, and could have sabotaged or shut power plants off at will. United States officials and private security firms saw the attacks as a signal by Moscow that it could disrupt ...

  • OceanLotus APT campaign debuts new backdoor that resembles old Korplug RAT

    March 14, 2018

    The suspected Vietnamese APT group OceanLotus has added a new backdoor to its repertoire of malicious tools – one that includes capabilities for enabling file, registry and process manipulation, and also downloading more malicious files. According a Mar. 13 blog post by ESET researcher Tomas Foltyn, the hackers appears to be delivering the malware via spear phishing and watering hole ...

  • Warning – 3 Popular VPN Services Are Leaking Your IP Address

    March 13, 2018

    Researchers found critical vulnerabilities in three popular VPN services that could leak users’ real IP addresses and other sensitive data. VPN, or Virtual Private Network, is a great way to protect your daily online activities that work by encrypting your data and boosting security, as well as useful to obscure your actual IP address. While some choose VPN ...

  • Spy malware secrets: How complex ‘Slingshot’ hit targets via hacked routers

    March 12, 2018

    Researchers at Kaspersky Lab have discovered espionage malware that appears to have been developed by a government to spy on targets across Africa and the Middle East for the past six years. The researchers haven’t named Slingshot’s country of origin, but note the presence of debug messages written in perfect English, while various component names such ...

  • Cybersecurity and Brexit: What does it mean for the fight against hackers?

    March 8, 2018

    Brexit means Brexit, according to the prime minister, but with little more than a year until 29 March 2019 — the date the UK is due to depart the European Union — there are still many questions to be answered for cybersecurity professionals. One thing that is certain is that the upcoming General Data Protection Regulation (GDPR) ...

  • Government set to position UK as leader in cyber amid rise in attacks

    March 8, 2018

    The government wants to position the UK as a global leader in cybersecurity and make it one of the safest countries to do business. These aims were set out in its Cyber Security Export Strategy; a five year plan for the Government to protect businesses and people, deter attackers and develop security skills. The report reads: “Our ...

  • Hacking operation uses malicious Word documents to target aid organisations

    March 5, 2018

    A newly uncovered ‘nation-state level’ cyber espionage operation has targeted humanitarian aid organisations around the globe via the use of backdoors hidden within malicious Word documents. Dubbed Operation Honeybee based on the name of lure documents used during the attacks, the campaign has been discovered by security researchers at security company McAfee Labs after a new variant of ...

  • UK Government To Seek Post-Brexit EU Data Protection Agreement

    March 5, 2018

    Tech firms said they welcome the government’s latest data protection plans, which could see an ongoing EU-level role for Britain’s information commissioner UK technology ndmpanies have welcomed a commitment by the government to seek a broader role for Britain in the ongoing development of European data protection policy after exit from the European Union, as laid out in ...

  • Spring break! Critical vuln in Pivotal framework’s Data parts plugged

    March 5, 2018

    Pivotal’s Spring Data REST project has a serious security hole that needs patching. Pivotal’s Spring Framework is a popular platform for building web apps. Spring Data REST is a collection of additional components for devs to build Java applications that offer RESTful APIs to underlying Spring Data repositories. These interfaces are widely used. Read more… Source: The Register  

  • Equifax hack just got worse for a lot more Americans

    March 2, 2018

    Equifax has confirmed more Americans are impacted by the cyberattack that targeted the credit rating giant last year than was first revealed. The company said in a statement Thursday that an ongoing analysis showed 2.4 million more Americans had their names and partial drivers’ license information stolen, but they were not previously thought to have been affected. The company ...

  • Bug in HP Remote Management Tool Leaves Servers Open to Attack

    March 1, 2018

    Hewlett Packard Enterprise has patched a vulnerability in its remote management hardware called Integrated Lights-Out 3 that is used in its popular line of HP ProLiant servers. The bug allows an attacker to launch an unauthenticated remote denial of service attack that could contribute to a crippling on vulnerable datacenters under some conditions. The vulnerability (CVE-2017-8987) ...

  • Sophisticated RedDrop Malware Targets Android Phones

    March 1, 2018

    A sophisticated strain of mobile malware targeting Android devices can extract sensitive data and audio recordings, run up premium SMS charges and then tries to extort money from victims. According to security firm Wandera the malware, dubbed RedDrop, is being distributed inside 53 Android applications promoted on third-party app stores. Apps range from image editors, calculators, ...

  • GitHub hit with the largest DDoS attack ever seen

    March 1, 2018

    GitHub has revealed it was hit with what may be the largest-ever distributed denial of service (DDoS) attack. The first portion of the attack against the developer platform peaked at 1.35Tbps, and there was a second 400Gbps spike later. This would make it the biggest DDoS attack recorded so far. Until now, the biggest clocked in ...

  • 23,000 HTTPS certs will be axed in next 24 hours after private keys leak

    March 1, 2018

    Customers of HTTPS certificate reseller Trustico are reeling after being told their website security certs – as many as 23,000 – will be rendered useless within the next 24 hours. This is allegedly due to a security blunder in which the private keys for said certificates ended up in an email sent by Trustico. Those keys ...