• These scammers have set their sights on members of the military
    Military combat isn't the only battle service members are fighting. Fraudsters have fleeced soldiers and veterans to the tune of $405 million since 2012.Those were the findings of a recent data analysis by Comparitech.Read More
  • VMware patches five security vulnerabilities
    VMware pushed out security updates covering five vulnerabilities that if exploited could lead to information disclosure or a denial of service situation. The important-rated vulnerabilities are CVE-2019-5540, CVE-2019-5541 and CVE-2019-5542 and impact VMware Workstation Pro / Player and VMware Fusion Pro/Fusion. CVE-2019-5541 covers an out-of-bounds write vulnerability in e1000e virtual network adapter that could lead to lead to code execution on the host from the guest or may allow attackers to create a denial-of-service condition on their own VM.CVE-2019-5540 is an information disclosure vulnerability in vmnetdhcp that if abused could allow an attacker on a guest VM to disclose sensitive information by leaking memory from the host process.CVE-2019-5542 refers to a denial-of-service vulnerability in the RPC handler giving attackers with normal user privileges to create a denial-of-service condition on their own VM. The two moderate issues covered are CVE-2018-12207 and CVE-2019-11135 and effect VMware ESXi, VMware Workstation and VMware Fusion.Read More
  • Malware attacks on hospitals are rising fast, and the problem is about to get a lot worse
    Emotet is this year's big malicious threat to your users The banking trojan turned botnet accounts for almost two-thirds of all malware payloads delivered by email - with malicious URLs favoured far more than weaponised attachments. Trojan malware attacks targeting hospitals and the healthcare industry have risen significantly over the course of this year as hackers increasingly look to exploit a sector which is often viewed as an easy target by those with the aim of stealing sensitive personal data. Figures in the new in the The State of Healthcare Cybersecurity report from Malwarebytes, state there's already been a 60% increase in trojan malware detections in the first nine months of 2019 compared with the entirety of 2018. Researchers point two two forms of trojan malware being the most responsible for the rise in attacks targeting healthcare and they're two of the most prolific trojans around – Emotet and Trickbot.Read More
  • SAP Updates Four Hot News Notes on November 2019 Patch Day
    German multinational software corporation SAP this week released 11 Notes as part of the November 2019 Security Patch Day, along with four updates to previously released patches. All of the four updates are for Patch Day Security Notes that have been rated Hot News and which feature CVSS scores above 9. The last three Hot News Security Note updates address CVE-2019-0330, an OS command injection vulnerability in SAP Diagnostics Agent (CVSS score 9.1). This month, SAP patched two Medium priority cross-site scripting (XSS) vulnerabilities, one impacting SAP Enable Now, tracked as CVE-2019-0385, and another affecting Business Objects BI Platform, tracked as CVE-2019-0382. Another issue that SAP addressed this month, although no new Note was published on the November 2019 Security Patch Day, is a High priority missing authorization check in SAP Internet Pricing Configurator (IPC), reveals Onapsis, a company that specializes in securing Oracle and SAP products. Related: SAP Patches Critical Vulnerabilities With October 2019 Security UpdatesRead More
  • Stronger regulations could help protect against cyber attacks -Bank of Canada official
    OTTAWA, Nov 12 (Reuters) - Canada should consider strengthening regulations to safeguard the country's financial system against potential cyber attacks, a top Bank of Canada official said on Tuesday. The comments come ahead of the release next week of the central bank's biannual survey of financial sector risk management experts, which is expected to cite cyber security as a concern. Last spring's survey identified cyber security incidents as the greatest risk to the Canadian financial system. "We need to increase our focus on the resilience of the financial sector," Filipe Dinis, the Bank of Canada's chief operating officer, told a Toronto business audience in a speech. Cyber security has long been a preoccupation for Canada's central bank. Canada's regulatory framework, Dinis said on Tuesday, should encourage collaboration and information sharing to reduce the risk of a cyber attack, which he said has been amplified by society's increased interconnectedness.Read More
  • Intel PMx driver flaw gave hackers 'near-omnipotent control' of devices
    INTEL HAS RELEASED an updated version of its PMx driver after it was revealed to be vulnerable to exploits that gave hackers "near-omnipotent control" over a targeted device. Researchers from firmware security firm Eclypsium discovered the vulnerability in PMx after a deep dive into the state of security with a host of drivers and their interaction with the Windows kernel. The issue stems from how the driver, and indeed the other drivers detailed in its research back in August, interact with the Windows kernel and underlying hardware and firmware. In the case of the PMx driver, Eclypsium's security smart folks noted it was "incredibly capable" in that it could read and write physical memory, read and write to debug registers, and arbitrarily gain access to I/O and PCI, among other highly-privileged hardware and firmware-level access. Essentially, a hacker operating in the least privileged user space of a Windows device could have exploited the PMx driver and other vulnerable drivers with their high-level access to the Windows kernel to bring malware to bear in parts of a Windows system where the most privileged access is needed.Read More
  • Visa enhances security capabilities to disrupt payment fraud
    Andrew Torre, regional president for the CEMEA region, presents on how security drives growth Image Credit: Supplied Visa, the world’s largest payment processor, has unveiled a suite of security capabilities that will help prevent and disrupt payment fraud, breaking new ground in cybersecurity and fraud prevention across Central & Eastern Europe, Middle East and Africa (CEMEA). Launched at the Visa CEMEA Security Summit 2019 in Barcelona, the new payment security services and capabilities help protect the integrity of the payments ecosystem by detecting and disrupting fraud threats targeting financial institutions and merchants. “Visa’s new payment security capabilities combine payment and cyber intelligence, insights and learnings from breach investigations, and law enforcement engagement to help financial institutions and merchants solve the most critical security challenges.” - Neil Fernandes, Visa’s Head of Risk for Middle East and North AfricaRead More
  • Lateral phishing makes for dangerous waters, here’s how you can avoid getting caught in the net
    As companies and consumers have become more aware of phishing, hackers have refined their techniques and are now launching a more advanced form of attack known as lateral phishing. Like regular phishing, a lateral phishing attack has the goal of gaining access to private information and begins with a user receiving an email that is attempting to extract login credentials or PII. However, the main differentiator between the two attack methods is that lateral phishing is conducted from a compromised email address within an organization. While many individuals have the misconception that phishing emails are easy to identify because they will always contain broken English or come from a stranger, advanced lateral phishing attacks come directly from a known sender’s email account, and attackers have become far more sophisticated in crafting convincing email messages. How enterprises can put a ban on phishing Below are strategies that companies can and must implement in order to protect their data and prevent lateral phishing attacks: 1.Read More
  • U.S. Manufacturing Group Hacked by China as Trade Talks Intensified
    WASHINGTON (Reuters) - As trade talks between Washington and Beijing intensified earlier this year, suspected Chinese hackers broke into an industry group for U.S. manufacturers that has helped shape President Donald Trump’s trade policies, according to two people familiar with the matter. The two sources and another familiar with the attack said the suspected Chinese hackers intensified their efforts to steal information in the days surrounding a meeting between Trump and NAM President Jay Timmons this summer. The intrusion is the latest by suspected Chinese hackers against U.S. industry trade groups during the Trump administration as Beijing seeks to learn more about U.S. policy positions, according to cybersecurity industry insiders who have handled similar breaches. The trade talks between the Trump administration and Beijing have included intellectual property protections and the opening of China’s markets to more U.S. products, issues that directly impact NAM’s members.Read More
  • Indian nuclear plant hack is only one small part of a much 'bigger' operation, according to a cybersecurity expert
    India's Kudankulam nuclear plant was hacked by North Korean malware last week. ORF believes that hacking into India's nuclear power plant might only be a "prelude to something greater". Malware attacked its systems and the code suggests that it was only a small part of a much 'bigger operation'.The hack of the India's nuclear plant definitely originated in North Korea, Choi Sang-myeong from the Seoul-based Issue Makers Lab told Asia Times . According to US intelligence, the Lazarus Group is a hacking collective composed of North Koreans.In the past, North Korea has used their cyber attack capabilities to target civilians. Now they seem to be tasked with disrupting the operation of atomic plants or stealing proprietary information from them, according to Choi.According to the Observer Research Foundation ( ORF ), this act of cyber espionage might only be a "prelude to something greater".The shift in North Korea now targeting nuclear facilities is an indicator of their growing cyber prowess.Read More