CHB Cybersecurity Digest - 13/08/19
by Cameron Hunter Bell
- A panel monitoring U.N. sanctions says North Korean cyber experts have illegally raised money for the country’s weapons of mass destruction programs “with total proceeds to date estimated at up to $2 billion.”
- Venture capital-backed sneaker trading site StockX Inc. is the latest to be hacked, with the records of 6.8 million customers stolen.
- State-backed Chinese hackers are running highly lucrative sidelines in attacking big corporations for cash, online security experts have said. One group, called Advanced Persistent Threat 41 (Apt41), has been identified as one of the most effective Beijing-backed operators carrying out worldwide cyberespionage for the state.
- The digital bank Monzo has urged nearly 480,000 customers to change their pins after it left banking information exposed to unauthorised staff for six months.
- Almost £8 million worth of fraudulent transactions were stopped in Scotland last year by a new rapid response scheme. The Banking Protocol was launched in March last year to prevent customers from falling victim to scams.
- Wealthy businessman Eike Batista has been arrested by federal police on account of suspected money laundering, which they believe he achieved by trading Bitcoin (BTC) on his wife’s behalf.
- Microsoft has announced that it will pay US $26M to settle corruption charges involving bribery in Hungary and a number of other countries.
- A cybersecurity firm says it has identified flaws in the popular messaging app WhatsApp that could allow hackers to manipulate messages in both public and private conversations, raising the prospect of misinformation being spread by what appears to be trusted sources.
- Critical U.S. election systems left exposed online
- AT&T workers took $1 million in bribes to unlock 2 million phones
- Hackers can break into an iPhone just by sending a text
- Microsoft contractors are listening to some Skype calls
- Meet APT41, the Chinese hackers moonlighting for personal gain
- Instagram's let another startup scrape millions of locations, stories
- CafePress tried to cover up data breach with a password reset
- GDPR privacy law exploited to reveal personal data
- U.S. military bought $32.8M of electronics with known security flaws
- The scramble to secure America’s voting machines
- Skype, Slack, other Electron-based apps can be easily backdoored
- New cars can be broken into in 10 seconds
- North Korea took $2B in cyberattacks to fund weapons program
- U.S. government's relationship with ethical hackers has improved
- Another speculative execution vulnerability fixed
- A multi-millionaire surveillance dealer steps out of the shadows
- Steam flaw in Windows client affects millions
About the Author
Cameron is a UK InfoSec veteran and an experienced innovation strategist. He speaks regularly at conferences and industry events about commercial strategy, ecosystem creation and business design. In 2009, he helped found the cyber security startup Vacta Ltd, which was integrated into the ECS Group in 2012. Cameron has successfully implemented innovation programs for several multinational defence, logistics, automotive manufacturers and financial service providers. He previously established the highly successful Berlin Studio for Idean (now part of the CapGemini Invent Group), specialising in service and ecosystem design for autonomous automotive. More recently, Cameron led the team delivering LORCA, the new 13.5M London cyber innovation centre, for Plexal in association with Deloitte, CSIT Belfast and the UK Department for Culture Media and Sport. Cameron advises Casta Spes Technologies, an AI driven robotics startup tackling the challenge of physical perimeter security.
The article has been originally posted at: https://www.linkedin.com/pulse/chb-cybersecurity-digest-130819-cameron-hunter-bell/