Categories
security

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M — Krebs on Security

Spear-phishing is quickly becoming the most popular technique for hacking high-value targets. The SingHealth hack was suspected to be due to spear-phishing as well. HR is obviously most at risk, as they need to review resumes which can come as PDF or Word document.

The lawsuit notes the company determined that it was likely the same group of attackers responsible for both intrusions. Verizon also told the bank that the malware the attackers used to gain their initial foothold at the bank in the 2017 breach was embedded in a booby-trapped Microsoft Word document.

Source: Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M — Krebs on Security

Categories
privacy security

SingHealth cyberattack: MAS orders financial institutions to tighten customer verification – Channel NewsAsia

Good pre-emptive measure to prevent possible misuse of information from the SingHealth hack.

“With immediate effect, all financial institutions should not rely solely on the types of information stolen (name, NRIC number, address, gender, race, and date of birth) for customer verification,” MAS said in a statement.

“Additional information must be used for verification before undertaking transactions for the customer. This may include, for instance, One-Time Password, PIN, biometrics, last transaction date or amount, etc.”

Source: SingHealth cyberattack: MAS orders financial institutions to tighten customer verification – Channel NewsAsia

Categories
privacy security

Singapore health system hit by ‘most serious breach of personal data’ in cyberattack; PM Lee’s data targeted

This is indeed the most serious cybersecurity breach in Singapore so far. 1.5 million records were exfiltrated. If this were to happen to a private company, the fine for breaching PDPA would surely be significant. While cyber attacks are not uncommon or unexpected, having it happen in a way that affects so many people will surely bring pause to many ongoing and upcoming IT projects in the pipeline.

Source: Singapore health system hit by ‘most serious breach of personal data’ in cyberattack; PM Lee’s data targeted

Categories
security

‘Suspicious’ USB fan given out at Trump-Kim summit deemed safe | ZDNet

Much ado about nothing. The context was, some journalists were highly suspicious of the USB fan that was included in the goody bag for the media during the Trump-Kim summit in Singapore, deeming it a cybersecurity risk. It’s probably good not to plug untrusted USB devices into your machine but c’mon please give the organizers more credit than this.

A University of Cambridge researcher wanted to know if the fan was bugged.

Source: ‘Suspicious’ USB fan given out at Trump-Kim summit deemed safe | ZDNet

Categories
security sysadmin

WINDOWS NTFS TRICKS COLLECTION

A collection of eye-opening NTFS tricks to do things that you normally can’t.

TRICK 1: CREATE FOLDERS WITHOUT PERMISSIONS (CVE-2018-1036/NTFS EOP) On Windows you can assign “special permissions” to folders like permissions that a user is allowed to create files in a folder, …

Source: MOV AX, BX Code depilation salon: Articles, Code samples, Processor code documentation, Low-level programming, Working with debuggers WINDOWS NTFS TRICKS COLLECTION

Categories
security

Malware Found In The Ubuntu Snap Store – Linux Uprising Blog

Be careful what you install, even if it’s from the official app/repository store. This also goes for browser extensions, docker images, Notepad++ add-ons, etc.

Oh, snap! Just because some packages are available to install directly from the Ubuntu Software Center doesn’t make them safe. This is proved by a recent discovery of malware in some snap packages from the Ubuntu Snaps Store.

Source: Malware Found In The Ubuntu Snap Store – Linux Uprising Blog

Categories
security

Malaysia general election candidates slam ‘dirty trick’ spam calls; Najib orders action

This is the classic DDoS attack, but with a twist. Instead of spamming servers through the Internet, someone is spamming phone lines through a phone botnet. Similar to DDoS, this makes it difficult for legitimate calls to go through.

Candidates for Malaysia’s 14th general election have claimed that their phones have been hacked and spammed with calls from overseas numbers.

Source: Malaysia general election candidates slam ‘dirty trick’ spam calls; Najib orders action

Categories
security

Drive-by Rowhammer attack uses GPU to compromise an Android phone

Your mobile phone may be hacked when visiting a hostile website. Researchers have used the Rowhammer attack to successfully run unauthorized code.

JavaScript based GLitch pwns browsers by flipping bits inside memory chips.

Source: Drive-by Rowhammer attack uses GPU to compromise an Android phone

Categories
security

ACME v2 and Wildcard Certificate Support is Live

Great news for web security. There’s no excuse not to adopt HTTPS for your website. We have reached the tipping point for HTTPS adoption and hopefully this will encourage the rest to do so.

Source: ACME v2 and Wildcard Certificate Support is Live

Categories
privacy security

Maersk Reinstalled 45,000 PCs and 4,000 Servers to Recover From NotPetya Attack

A heroic effort by the IT team from Maersk. But this just goes to show the huge impact that randomware can have on today’s businesses.

The world’s largest container shipping company —A.P. Møller-Maersk— said it recovered from the NotPetya ransomware incident by reinstalling over 4,000 servers, 45,000 PCs, and 2500 applications over the course of ten days in late June and early July 2017.

Source: Maersk Reinstalled 45,000 PCs and 4,000 Servers to Recover From NotPetya Attack