Cyber Security Roundup for March 2020
A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, February 2020.
Redcar and Cleveland Borough Council became the latest UK organisation to become the victim of a mass ransomware attack which started on 8th February. The north-east Council’s servers, PCs, mobile devices, websites and even phone lines have been down for three weeks at the time of writing. A Redcar and Cleveland councillor told the Guardian it would take several months to recover and the cost is expected to between £11m and £18m to repair the damage done. A significant sum for the cash-strapped council, which confirmed their outage as ransomware caused 19 days after the attack. The strain of ransomware involved and the method initial infiltration into the council’s IT systems has yet to be confirmed.
The English FA shut down its investigation into allegations Liverpool employees hacked into Manchester City’s scouting system. The Manchester club also made news headlines after UEFA banned it from European competition for two years, a ban based on alleged stolen internal email evidence obtained by a hacker. Read The Billion Pound Manchester City Hack for further details.
The UK government said GRU (Russian military intelligence) was behind a massive cyber-attack which knocked out more than 2,000 websites in the country of Georgia last year, in “attempt to undermine Georgia’s sovereignty”. Foreign Secretary Dominic Raab described it as “totally unacceptable“.
The United States deputy assistant secretary for cyber and communications, Robert Strayer, said he did not believe the UK government’s January 2020 decision to allow Huawei limited access to UK’s 5G infrastructure was final. ‘Our understanding is that there might have been some initial decisions made but conversations are continuing,” he told the BBC. Read The UK Government Huawei Dilemma and the Brexit Factor for more on UK government’s Huawei political, economic and security debate.
Following Freedom of Information requests made by Viasat, it reported UK government employees had either lost or stolen 2,004 mobiles and laptops between June 2018 and June 2019.
According to figures by the FBI, cybercriminals netted £2.7bn ($3.5bn) from cyber-crimes report 2019, with phishing and extortion remaining the most common method of scamming people. These FBI reported cybercrime losses have tripled over the past 5 years. The FBI concluded that cyber scam techniques are becoming more sophisticated, making it harder for original people to tell “real from fake“. A new Kaspersky report backs up the FBI, finding a 9.5% growth in financial phishing during the final quarter of 2019.
The Labour party is facing data protection fines of up £15m for failing to protect their members’ personal data. The Information Commissioner’s Office confirmed the Labour Party would be the focus of their investigation since it is legally responsible for securing members’ information as the “data controller”.
This month’s cloud misconfiguration breach award goes to french sports retail giant Decathlon, after 123 million customer records were found to be exposed by researchers at vpnMentor . Leaked data included employee usernames, unencrypted passwords and personally identifiable information (PII) including social security numbers, full names, addresses, mobile phone numbers, addresses and birth dates. “The leaked Decathlon Spain database contains a veritable treasure trove of employee data and more. It has everything that a malicious hacker would, in theory, need to use to take over accounts and gain access to private and even proprietary information,” said vpnMentor.
If you have a ‘Ring’ smart camera doorbell (IoT) device then may have noticed Two-Factor Authentication (2FA) was mandated in February. Ring’s stance of enforcing a strengthening of security may be related to several recent high-profile home camera hack reports.
The facial recognition company Clearview AI advised a hacker stole its client list database. The firm works with law enforcement agencies and gained notoriety after admitting it had scrapped billions of individuals photos off the internet.
BLOG
- The Billion Pound Manchester City Hack
- Keys to the Kingdom, Smart Cities Security Concerns
- Cyber Security Roundup for February 2020
NEWS
- Redcar Council took down by Ransomware Attack: Council using Pen and Paper for 3 weeks and counting
- US Cyber-Boss tells the UK to ‘think again’ on Huawei
- MGM Hack Exposes Personal Data of 10.6 million Guests on Hacking Forum
- UK says Russia’s GRU behind Massive Georgia Cyber-Attack
- Cybercrime Profits reached £2.7bn from Cybercrimes reported to FBI alone in 2019
- ISS World Hack leaves Thousands of Employees Offline
- Sports Retail Giant Decathlon Leaks 123 Million Records via a Misconfigured database
- Thousands of Mobiles and Laptops lost by the UK Government in a Year
- The United States charges Chinese Military Hackers with Equifax Breach
- Data Breach hits Agency overseeing White House Communications
- Labour could be fined up to £15m for failing to Protect Members’ Data
- The FA shutdown probe on claims of Liverpool FC Hacking Manchester City’s Youth Scouting System
- Ring Mandates MFA Logins
- Clearview AI Facial-Recognition has Client list Stolen
VULNERABILITIES AND SECURITY UPDATES
- Microsoft Patches 99 Vulnerabilities, including 13 Critical for Windows, IE. ChakraCore, and Flash
- Microsoft Patches IE Vulnerability being Exploited in the Wild
- Flaw in Philips Smart Light Bulbs Exposes WiFi Network to Hackers
- Adobe Patch Tuesday: Critical vulnerabilities in Flash Player, Framemaker Patched
- Adobe, VMWare issue Patches for Critical Vulnerabilities a week after Patch Tuesday
- Adobe Patches Critical Magento Security Vulnerabilities
- Critical Vulnerability Found in IBM ServeRAID Manager
- Google issues Chrome Update Patching to Zero Day
- Google Patches Bluetooth Vulnerability impacting most Android devices
- Critical Flaw in OpenSMTPD Found and Patched
- Cisco issues 17 Security Updates
- Five High-Level Flaws Patched in Cisco Discovery Protocol
- Dell Patches SupportAssist Vulnerability
- Mozilla issues Patches for Firefox 73, Firefox ESR 68.5 and Thunderbird 68.5
- Microsoft Exchange Servers Open to Remote Hacking due to Major Flaw
AWARENESS, EDUCATION AND THREAT INTELLIGENCE
- TA505 Phishing Campaign uses HTML redirectors to Spread Info Stealer
- Metamorfo Banking Malware Spreads around the World
- Hidden Cobra adds to its Malware Arsenal: CISA
- Phishers using Strong Tactics and Poor Bait in Office 365 Scam
- Emotet Now Using Wi-Fi To Spread Malware
- Android Banking Trojan steals Google Two-Factor Authentication codes
- Unpatched VPN Servers Hit by Apparent Iranian APT Groups
- Detecting Ryuk Ransomware
- Nominet CISO Stress Report
- Financial Phishing grew by 9.5% during Holiday Shopping Season
*** This is a Security Bloggers Network syndicated blog from IT Security Expert Blog authored by SecurityExpert. Read the original post at: http://feedproxy.google.com/~r/securityexpert/~3/65-tjxqYezY/cyber-security-roundup-for-march-2020.html