Categories
APT Breach Bug Cyber Security Data leak Hacking Malware Phishing Ransomware Scam Spearphishing Vulnerability Zoombombing

£130,000 fine imposed on pension scheme cold caller, Equinix discloses ransomware incident, and more

Major cybersecurity events on 10th September 2020 (Evening Post): Irish regulators ask Facebook to stop sending EU user data to the US due to privacy concerns. Office 365 phishing runs real-time check of stolen domain logins. Ransomware and zoombombing disrupt back-to-school plans.

Round Up of Major Breaches and Scams

Govt.-Backed Contact-Tracing Apps Raise Privacy Hackles

New opt-in COVID-19 Exposure Notifications Express systems baked into Apple’s iOS and available on Android need privacy guardrails, say privacy advocates. The Electronic Frontier Foundation is echoing lawmaker concerns that California is not taking privacy seriously enough as state legislators mull launching a Covid-19 exposure-notification app based on Apple and Google’s smartphone technology. The U.S. nonprofit aimed at protecting citizens’ privacy and free speech criticized the state’s lack of any privacy standards for state COVID-19 mobile tracking apps.

Pension scheme cold caller fined £130,000 by UK data watchdog

Britain’s data watchdog says it has snared Swansea-based business CPS Advisory for making more than 100,000 “unauthorised direct marketing calls” to people about their pensions, and subsequently fined the company £130,000. Under a change to the Private and Electronics Communications Regulation (PECR) in 2019, a firm can only make live calls to folks about work or a personal pension scheme if they are authorised to do so by the Financial Conduct Authority, or it is the trustee or manager of such a pension.

Data center giant Equinix discloses ransomware incident

Equinix, one of the world’s largest providers of on-demand colocation data centers, has disclosed today a security breach. In a short statement published on its website, Equinix said it found ransomware on its internal systems, but that the main core of its customer-facing services remained unaffected.

Privacy concerns prompt Irish regulators to ask Facebook to stop sending EU user data to the US

Facebook says that Irish regulators believe current user data exchange methods between the US and EU “cannot in practice be used,” leading to an inquiry into the data transfer practices employed by the company. The Irish Data Protection Commission (IDPC) is referring to Standard Contractual Clauses (SCCs), mechanisms designed to facilitate data transfers between the EU and non-EU countries.

Office 365 phishing runs real-time check of stolen domain logins

Threat researchers investigating phishing attacks encountered a less common technique in spear-phishing aimed at a senior executive at a top American company. The code behind the phishing page made sure that the threat actor got the right credentials for the company Active Directory and performed redirects to hide the attempt. Testing logins in real-time is an unusual technique that allows the attacker to adapt their response based on the received feedback.

Round Up of Major Malware and Ransomware Incidents

Ransomware And Zoom-Bombing: Cyberattacks Disrupt Back-to-School Plans

Cyberattacks have caused several school systems to delay students’ first day back – and experts warn that new COVID-related delays could be the new “snow days.” A slew of ransomware attacks and other cyberthreats have plagued back-to-school plans — as if dealing with the pandemic weren’t stressful enough for administrators. Just this week, attacks in Hartford, Conn. and Clark County, Nev. forced public schools to postpone the first day of school, in what security experts say is a sign of more cyberattacks to come as more students head back to the classroom.

New CDRThief malware steals VoIP metadata from Linux softswitches

Malware researchers discovered a new threat that they named CDRThief targeting a specific Voice over IP system to steal call data records (CDR) from telephone exchange equipment. Analysis of the malware revealed that it was specifically created for a particular Linux VoIP platform, namely Linknat VOS2009/3000 softswitches. A softswitch is a software solution acting as a VoIP server that manages traffic (audio/video/text) in a telecommunication network. It is a central element that ensures a connection between both internal and external lines.

SeaChange video delivery provider discloses REVIL ransomware attack

US-based supplier of video delivery software solutions, SeaChange International, revealed that a ransomware attack disrupted its operations in Q1 2020. SeaChange International, a US-based supplier of video delivery software solutions, revealed that a ransomware attack has disrupted its operations during the first quarter of 2020. SeaChange’s customers include major organizations such as BBC, Cox, Verizon, AT&T, Vodafone, Direct TV, Liberty Global, and Dish Network Corporation.

Round Up of Major Vulnerabilities and Patches

New Raccoon Attack Could Let Attackers Break SSL/TLS Encryption

A group of researchers has detailed a new timing vulnerability in Transport Layer Security (TLS) protocol that could potentially allow an attacker to break the encryption and read sensitive communication under specific conditions. Dubbed ” Raccoon Attack ,” the server-side attack exploits a side-channel in the cryptographic protocol (versions 1.2 and lower) to extract the shared secret key used for secure communications between two parties.

Secureworks acquires vulnerability management platform Delve

Secureworks has acquired Delve to bring a new vulnerability management solution to the firm’s portfolio. Announced on Wednesday, Secureworks says the deal will “enrich Secureworks’ intelligence, further differentiate our end-to-end capabilities, and accelerate our transformation to deliver software with security at its core.” The financial terms of the deal were not disclosed.