News – November 2016

US, Israel set to boost teamwork on cybersecurity
November 30, 2016
House of Representatives unanimously passes 2 bills to strengthen collaboration against attacks on computer systems

Stratus Technologies Brings Always-On Infrastructure for Smart Buildings to Global Security Community at UK Security Expo 2016
November 29, 2016
Stratus Technologies, Inc. Jason Andersen, Vice President, Business Line Management, will be addressing leading security professionals and international Government Delegations about the company’s commitment to Always-On availability for critical security applications in Smart Buildings at UK Security Expo 2016.

Autumn 2016 edition of the Cyber Security Review is now available
November 28, 2016
We are pleased to inform you that Autumn 2016 edition of the Cyber Security Review is now available.

Japan Denies Report of ‘State-Backed’ Cyber Attack on Military
November 28, 2016
Japan’s Defense Ministry on Monday denied a report that a military computer network had suffered a high-level cyber attack in September, possibly involving a state actor.

San Francisco Metro Hackers Threatening to Leak Customer, Contracts Info
November 28, 2016
The San Francisco transit system (MUNI) suffered a ransomware attack the last weekend, and all its systems got infected with malware that eventually led to everyone getting free rides on Friday evening and Saturday in most stations.

Cyber Attack Knocks Nearly a Million Routers Offline
November 28, 2016
Mirai Botnet is getting stronger and more notorious each day that passes by. The reason: Insecure Internet-of-things Devices.

Security budgets continue to grow, but is it enough?
November 28, 2016
Cybersecurity is now a top concern for businesses, but the reality is that it should have been on their radar years ago. Why did businesses wait so long to invest in cybersecurity?

BlackBerry gets cyber security certification from UK govt
November 28, 2016
Cyber security company BlackBerry has received a Cyber Essentials Plus (CE+) certification from the UK government.

Cyber security: Inside Pakistan’s first digital forensic research lab
November 27, 2016
Located in the suburbs of the provincial metropolis, the Lahore Garrison University (LGU) has started building the first-of-its-kind Digital Forensic Research and Service Centre (DFRSC).

Hackers Hunting Hackers: Backdoor-Infected Phishing Kits for Sale on YouTube
November 26, 2016
YouTube is the most recent platform used by cybercriminals to sell and distribute their tools, but it turns out that not even hackers can trust their fellow “colleagues.”

Powerful Greek Army Hacker Breaches High Commission Websites in India Updated
November 26, 2016
India is making the security headlines once again, this time after hackers managed to break into some of the high commission websites in the country and access login information of hundreds of users.

Retail cyber security: are your details safe?
November 25, 2016
In the first six months of 2016 cyber-attacks rose by 46 per cent, and in the next six retail giants like Tesco and Deliveroo have succumbed to attacks exposing customer data.

European Commission Suffers DDoS Attack, Servers Go Offline for Several Hours
November 25, 2016
The European Commission experienced a distributed denial of service (DDoS) attack on Thursday that disrupted its operations for several hours, though no data breach was experienced.

US Navy Hacked, Social Security Numbers of 134,000 Sailors Stolen
November 24, 2016
The United States Navy got hacked, and the personal details of more than 134,000 sailors were accessed, according to a public statement released by US officials this morning.

Enigma Codebreaker site to house cyber security college
November 24, 2016
Bletchley Park, the home of the Enigma codebreakers, is to become the home of UK’s first National College of Cyber Security

How one F1 team uses cybersecurity to keep the crown jewels under lock and key
November 23, 2016
It’s a highly competitive sport, for the financial rewards for success are many, and so that data represents a gold mine for each team.

Hackers Could Infect Headphones to Spy on You
November 23, 2016
Israeli security researchers at Ben Gurion University have found a way to convert typical headphones into microphones and then use them to record audio in the room just like a fully-featured spying device.

Shad0wS3C Hacker Breaches Mexican Government Website
November 23, 2016
Shad0wS3C leader Gh0s7 has managed to hack another website, this time belonging to Instituto de la Función Registral del Estado México (also known as IFREM).

Exploit Code Bypasses Linux Security Features Leaving Systems Vulnerable
November 23, 2016
The exploit bypasses two of the security systems that are integrated in Linux, ASLR and DEP, which is also known as NX or No-Execute.

NTP DoS Exploit Released — Update Your Servers to Patch 10 Flaws
November 22, 2016
A proof-of-concept (PoC) exploit for a critical vulnerability in the Network Time Protocol daemon (ntpd) has been publically released that could allow anyone to crash a server with just a single maliciously crafted packet.

DoD, Army Ramp Up Cybersecurity Measures With New Initiatives
November 21, 2016
Two initiatives were rolled out today to strengthen the cyber security environment in the Defense Department and the Army, DoD officials announced.

Hackers target ATMs across Europe: Fourteen countries including Britain are affected as cyber security threat grows
November 21, 2016
Cyber criminals have remotely attacked cash machines in more than a dozen countries across Europe this year.

Public sector cybersecurity: under threat but fighting back
November 21, 2016
Britain’s spend is almost twice the figure France has put aside over the next three years, and is slightly more than the European Commission’s €1.8bn investment in a new public-private partnership on cybersecurity.

Symantec to purchase LifeLock in $2.3 billion cybersecurity deal
November 20, 2016
Computer-security-software maker Symantec Corp. has agreed to acquire LifeLock Inc., a seller of identity-theft protection services, for $2.3 billion in cash.

Hacker Breaks into Italian Government Website, 45,000 Users Exposed
November 18, 2016
Hacker Kapustkiy just managed to break into another government website, this time in Italy where the target was the Dipartimento della Funzione Pubblica.

Cyber hack of Three mobile puts customer information at risk
November 18, 2016
Three men have been arrested after a data breach at the Three mobile network allowed fraudsters to steal phones.

iPhone Secretly Sends Your Call History to Apple Even If iCloud Backups are Turned Off
November 17, 2016
New report from a security firm suggests Apple’s online syncing service iCloud secretly stores logs of its users’ private information for as long as four months — even when iCloud backup is switched off.

How your connected home or office is a gift for hackers, criminals, and cyber spies
November 17, 2016
Internet-connected fridges which order your food, virtual assistants which react to your every voice command, and applications which allow you to remotely control almost every aspect of your home: today’s technologies increasingly make The Jetsons look like a prophetic message about the future.

Android banking malware whitelists itself to stay connected with attackers
November 17, 2016
Recent variants of Android.Fakebank.B have been updated to work around the battery-saving process Doze.

Adobe Fined $1 Million for 2013 Hack That Affected Millions of Users
November 16, 2016
The security breach happened in 2013 when an attacker broke into Adobe’s own network and accessed systems where the company was storing customer data.

$5 Device Can Hack your Password-Protected Computers in Just One Minute
November 16, 2016
Dubbed PoisonTap, the new exploit tool runs freely available software on a tiny $5/£4 Raspberry Pi Zero microcomputer, which is attached to a USB adapter.

Pre-installed Backdoor On 700 Million Android Phones Sending Users’ Data To China
November 15, 2016
Over 700 Million Android smartphones contain a secret ‘backdoor’ that surreptitiously sends all your text messages, call log, contact list, location history, and app data to China every 72 hours.

NSA Director asks American CEOs to prioritize cybersecurity
November 15, 2016
National Security Agency Director Michael Rogers told a crowded room full of corporate executives Tuesday that they play a role in strengthening the entire country’s cybersecurity posture.

NHS patients being put ‘at risk’ because of cybersecurity flaws
November 15, 2016
Seven NHS trusts, serving more than two million people, spent nothing on cybersecurity in 2015.

Microsoft investigated by Russian antitrust body after Kaspersky complaint
November 14, 2016
Last Thursday, Russian antitrust authority said it had opened an investigation into Microsoft for allegedly abusing its dominance in the antivirus software market.

Majority of businesses neglecting cybersecurity due to lack of resources
November 14, 2016
Insights gathered from 500 IT managers working in large UK corporates reveals that 74 per cent think their company is neglecting cybersecurity and data protection.

Bangladesh hopes to recover $30 million more from cyber heist
November 14, 2016
Bangladesh’s central bank hopes to retrieve $30 million more of the $81 million stolen from its account at the New York Federal Reserve in February, two bank officials said on Monday.

How a Low-Carbon Economy Increases Cybersecurity Risks
November 13, 2016
The transition to a low-carbon economy may bring new and different energy security risks, as it becomes more electrified and interconnected.

Recruitment giant PageGroup hacked, Capgemini dev server blamed for info leak
November 11, 2016
Global recruitment giant PageGroup says a hacker infiltrated its network and accessed job applicants’ personal information.

Hacker Compromises Microsoft’s Windows 10 Browser in Just 18 Seconds
November 11, 2016
Security experts from Chinese firm Qihoo 360 managed to break into Microsoft Edge and WMware Workstation without user interaction

Release of Maritime Bulk Liquids Transfer Cybersecurity Framework Profile
November 10, 2016
The U.S. Coast Guard, the National Institute of Standards and Technology (NIST), and maritime industry stakeholders have developed a voluntary cybersecurity “Profile” for Maritime Bulk Liquid Transfer (MBLT) facilities.

UK Ministry of Defense Signs Deal with Microsoft for Extra Security in the Cloud
November 10, 2016
Microsoft has just announced that it signed a deal with the United Kingdom Ministry of Defense to provide them with access to Microsoft Cloud, as well as to Office 365 Advanced Threat Protection and Customer Lockbox from a Microsoft U.K. data center.

Security directors to lead the way on cyber resilience
November 10, 2016
Despite UK businesses doubling spend on security budgets, companies are still in the dark as to how many cyber-attacks are hitting their business, according to PwC’s annual Global State of Information Security Survey 2017.

NCA hit by DDoS barrage
November 9, 2016
It’s just a ‘temporary inconvenience’, says agency

Microsoft Patches Windows Zero-Day Flaw Disclosed by Google
November 9, 2016
Microsoft was very upset with Google last week when its Threat Analysis Group publically disclosed a critical Windows kernel vulnerability (CVE-2016-7255) that had yet to be patched.

Tesco says $3 million stolen in cyber theft, resumes service
November 9, 2016
The National Cyber Security Centre (NCSC), said on Tuesday that it was working with criminal investigators and Tesco to understand the nature of an attack described as “unprecedented” by the financial regulator.

Over 300,000 Android Devices Hacked Using Chrome Browser Vulnerability
November 8, 2016
A vulnerability in Chrome for Android is actively being exploited in the wild that allows hackers to quietly download banking trojan apps (.apk) onto victim’s’ device without their confirmation.

LinkedIn Users Hit with Sophisticated Phishing Campaign
November 7, 2016
Cyber criminals are targeting LinkedIn users with a sophisticated phishing scam in which the idea is to trick the user into believing that their LinkedIn account has a security issue which can be solved only by providing their personal details.

Russia launches dedicated anti-hacking center for defense industry
November 7, 2016
Russian state-run weapons corporation Rostec has set up a special center for countering cyber-attacks on all Russian defense enterprises and companies, a popular daily reports.

Tesco Bank Hacked — Cyber Fraudsters Stole Money From 20,000 Accounts
November 7, 2016
Almost 20,000 Tesco Bank customers have had their money stolen from their accounts after the banking arm of UK’s biggest retailer fall victim to a hacking attack this weekend.

Russia demands Washington explain after reports say US military hacked into Russian networks
November 6, 2016
Russia expects Washington to provide an explanation after a report claimed that Pentagon cyber-offensive specialists have hacked into Russia’s power grids, telecommunications networks, and the Kremlin’s command systems for a possible sabotage.

Websites of Indian Embassy in 7 Countries Hacked; Database Leaked Online
November 5, 2016
Indian embassy websites in seven different countries have been hacked, and attackers have leaked personal data, including full name, residential address, email address, passport number and phone number, of Indian citizens living abroad.

More Insights On Alleged DDoS Attack Against Liberia Using Mirai Botnet
November 5, 2016
The DDoS attack of more than 500 Gbps targeting one undersea cable caused Internet outage in some parts of the country, citing ‘slow Internet’ and ‘total outage’ experienced by some local sources and citizens.

Hacker finds flaw in Gmail allowing anyone to hack any email account
November 4, 2016
Google invites researchers from all across the globe to find out flaws in its newest or existing applications, extensions, software and operating system that are available at Google Play, Chrome Web Store and/or iTunes.

U.S. Govt. Hackers Ready to Hit Back If Russia Tries to Disrupt Election
November 4, 2016
U.S. military hackers have penetrated Russia’s electric grid, telecommunications networks and the Kremlin’s command systems, making them vulnerable to attack by secret American cyber weapons should the U.S. deem it necessary

Your cyber insurance isn’t protecting you from elite hackers
November 3, 2016
Today’s nascent cyber insurance industry is largely unprepared to cover the type of damage than can be caused by the world’s best hackers. And the industry isn’t hiding it.

Hundreds Of Operations Canceled After Malware Hacks Hospitals Systems
November 3, 2016
Cyber attacks on hospitals have emerged as a significant cyber security risk in 2016, which not only threaten highly sensitive information but also potentially harm the very lives of those being protected.

IAI signs a strategic cyber deal in Asia worth $15 million
November 2, 2016
Israel Aerospace Industries (IAI) announced this week that it signed a significant contract worth $15 million for a cyber-intelligence system with a customer in Asia.

Police across the globe crackdown on darknet marketplaces
November 1, 2016
Law enforcement agencies across the globe staged a crackdown on so-called darknet web sites last week, targeting marchants and thousands of customers who were looking to obtain illegal drugs and goods.

UK vows to ‘strike back’ against cyberattacks
November 1, 2016
A major part of the UK’s new cyber security strategy focuses on “taking the fight to those who threaten Britain in cyberspace”