CHB Cybersecurity Briefing 29/07/19
by Cameron Hunter Bell
FTC hits Facebook with $5 billion penalty and new privacy measures: The FTC's settlement with Facebook will see it pay $5B in fines and commit to improving its privacy record. The fine comes in the wake of several significant security lapses and breaches and the scandal embroiling Cambridge Analytica, which was also fined after it siphoned off millions of records for voter profiling.
A major electricity supplier in South Africa's largest city has suffered a ransomware attack, leaving some residents without power. City Power revealed on Thursday that its IT systems had been shut down.
Marcus Hutchins sentenced to time served for selling Kronos malware: Marcus Hutchins, the malware researcher who stopped the WannaCry ransomware attack, is a free man. He was sentenced to time served by a judge in Milwaukee after he pleaded guilty to two counts of creating and selling the Kronos malware. The judge said he was young, has done good work since, and putting him away would be harmful for security. "Security is everything," said the judge.
A hacking group apparently stole 7.5 terabytes of data from a contractor for Russia’s FSB state security agency, exposing various secret projects, including one to make traffic on the anonymity network called Tor no longer anonymous.
Government contractor drops exploit code for the BlueKeep flaw: A cybersecurity firm and government contractor has released exploit code for the highly dangerous and "wormable" BlueKeep vulnerability. So far it's only accessible to paying subscribers of the pen-testing firm's but many have criticised the decision to allow others to use it. More than a million internet-exposed machines are affected.
Microsoft Corp agreed on Monday to pay about $25.3 million (£20.3 million), including a criminal fine, to settle U.S. charges it made improper payments that were used to bribe government officials in Hungary and other countries.
Equifax to pay at least $575 million over 2017 data breach: A double-whammy for the FTC this week: Equifax will be fined at least $525M and up to $700M for its 2017 data breach. It took four months for the company to admit publicly that its servers had been raided, exposing close to 150M Americans' credit files. The breach was entirely preventable had the company installed the necessary security patches, according to a House committee, which Equifax didn't do. You can check to see if you are affected and can claim through the FTC's website.
Brazil's federal police arrested four people for allegedly hacking the phone of Justice Minister Sérgio Moro, a key member of far-right President Jair Bolsonaro's Cabinet who had previously been a renowned anti-corruption judge.
NSA forms cybersecurity directorate: The NSA has a new cybersecurity directorate, soon to be run by Anne Neuberger. It's part of a new effort by the NSA to align the agency's cyber offensive and defensive operations, reports @dnvolz. The directorate opens October 1. The NSA even has a handy FAQ on what the directorate does.
[UK] Students' personal data has been stolen in a "sophisticated and malicious" phishing attack at Lancaster University.
QuickBooks host hit by ransomware attack: Cloud hosting firm Insynq was hit by ransomware that shut down its networks and left customers unable to get access to their tax and financial backups. Many complained on Twitter about the lack of communication. Insynq's chief executive eventually came clean in a statement. At the time of writing, the company claims 96% of its customers have access to their files.
Hackers who breached a Russian intelligence contractor found that it had been trying to crack the Tor browser and been working on other secret projects
Apple contractors 'regularly hear' Siri conversations, says whistleblower: Apple contractors regularly hear confidential medical information, drug deals, and recordings of couples having sex, as part of their job providing quality control, or "grading," the company’s Siri voice assistant, according to The Guardian. Although the recordings are said to be anonymous and are used to make Siri better, the company does not explicitly state that that work is undertaken by humans who listen to the pseudonymised recordings. Some of the recordings include user location, contact details and app data, the whistleblower said.
A forum created by technology firms to disrupt the spread of terrorist content online has announced new plans to collaborate responses to “active events” similar to the Christchurch terror attacks.
Advanced mobile surveillanceware, made in Russia, found in the wild : New powerful malware, said to be developed by a Russian defense contractor, has been uncovered. The malware, known as Monokle, can reset a user’s pincode, make calls, take photos and screenshots, record calls, log passwords and more. It's believed the malware was developed for both Android and iOS, the researchers said.
[UK] Cyber-criminals hack Deliveroo customers' accounts after buying their passwords on the dark web for £5 a time to place orders for up to £450 worth of fried chicken, cakes and cider.
Bulgaria’s police have raided the office of TAD Group, seized computers and arrested one of its managers they suspect is related to the hacking of Bulgaria’s tax administration.
If you wish to submit a story, event, research or article to the CHB Cybersecurity Briefing, please email [email protected] The information contained within the brief is gathered from current, open source data supplied through contacts within diplomatic posts, law enforcement agencies & UK intelligence services. Credit to Dillitas International Risk and Zack Whitaker at Tech Crunch.
This information keeps you informed of current security situations and risks within the UK and internationally. Please forward this briefing to colleagues. You can follow Cameron on Twitter @CamHunterBell.
About the Author
Cameron is a UK InfoSec veteran and an experienced innovation strategist. He speaks regularly at conferences and industry events about commercial strategy, ecosystem creation and business design. In 2009, he helped found the cyber security startup Vacta Ltd, which was integrated into the ECS Group in 2012. Cameron has successfully implemented innovation programs for several multinational defence, logistics, automotive manufacturers and financial service providers. He previously established the highly successful Berlin Studio for Idean (now part of the CapGemini Invent Group), specialising in service and ecosystem design for autonomous automotive. More recently, Cameron led the team delivering LORCA, the new 13.5M London cyber innovation centre, for Plexal in association with Deloitte, CSIT Belfast and the UK Department for Culture Media and Sport. Cameron advises Casta Spes Technologies, an AI driven robotics startup tackling the challenge of physical perimeter security.
The article has been originally published at: https://www.linkedin.com/pulse/chb-cybersecurity-briefing-290719-cameron-hunter-bell/