Cybersecurity News of the Week, March 31, 2019

Cybersecurity News of the Week, March 31, 2019


Individuals at Risk

Cyber Privacy

Spyware app exposes private photos, hosting provider steps in. From the story: “It’s difficult to imagine a more egregious breach of privacy, or a less forgivable lack of response on the developers’ part”: A hosting company took down a database operated by a spying app this week after it was found displaying thousands of intimate images and recordings online. NakedSecurity, March 28, 2019

Cyber Leak

Asus Engineers Exposed Company Passwords for Months on GitHub: Asus isn’t having a very good March. There are fresh allegations of major security breaches by the company’s employees, this time involving GitHub. The news comes on the heels of a security problem the company is still dealing with. ExtremeTech, March 29, 2019

Cyber Update

Asus Publishes Fix For ‘ShadowHammer’ Malware: ASUS has just released fixes for vulnerabilities exploited by a malware called ShadowHammer, which was disguised as a security update. TechTimes, March 29, 2019

How to Check Your Computer for Hacked Asus Software Update: Today’s news that hackers put backdoors into thousands of Asus computers using the company’s own software update platform is a reminder of why supply-chain compromises are one of the scariest digital attacks out there. Wired, March 25, 2019

Cyber Defense

Why you should never allow your web browser to save your passwords: When a web browser like Chrome, Firefox or Safari is allowed to store passwords, you’re putting your network security at risk. TechRepublic, March 28, 2019

Windows security: Microsoft Defender AV can now stop malware from disabling it: Microsoft adds new tamper-protection feature that stops malware from switching off key security features. ZDNet, March 28, 2019

Cyber Warning

Android Malware Targets Users of 32 Crypto Apps, Including Coinbase, BitPay: A new strain of Trojan malware for Android phones is targeting global users of top crypto apps such as Coinbase, BitPay and Bitcoin Wallet, as well as banks including JPMorgan, Wells Fargo, and Bank of America. The news was reported by technology news outlet The Next Web on March 28. CoinTelegraph, March 29, 2019

Hundreds of compromised WordPress and Joomla websites are serving up malware to visitors. Researchers see a spike in compromised domains attempting to deliver malicious payloads including Shade ransomware and phishing links: Websites built on two of the most popular content management systems used in publishing are being hacked and exploited to deliver ransomware and other malware to visitors. ZDNet, March 28, 2019

Cyber Humor


Information Security Management in the Organization

Information Security Management and Governance

When It Comes to Incident Response, Failing to Plan Means Planning to Fail: If there’s one thing I’ve learned from working in cybersecurity, it’s that security incidents do not simply occur, they are caused — either by legitimate users who unintentionally expose company data or malicious actors who seek to breach enterprise systems undetected. Unfortunately, it is much easier for attackers to identify exploitable vulnerabilities than it is for security teams to fix every flaw in the company’s network. SecurityIntelligence, March 26, 2019

Cybersecurity in the C-Suite

Speak the Board’s Language to Communicate the Value of Security: Security teams often complain that the board doesn’t give them the investment they need, the proper level of attention or acknowledgment for a job well done. After all, an attacker only needs to get lucky once, but defenders need to be successful every time. Part of the problem is how security teams communicate risk to their boards. How can they get the value of security across in a way that resonates with business leaders? SecurityIntelligence, March 28, 2019

Cyber Crime

Is your e-commerce site being used to test stolen card data?: An unspecified weakness in some versions of the Magento e-commerce platform is reportedly being misused by carding criminals to surreptitiously test the validity of stolen, leaked or skimmed credit and debit cards. NakedSecurity, March 29, 2019

71% of Ransomware Attacks Targeted Small Businesses in 2018: Ransomware attacks hit healthcare the hardest last year, with small to medium sized businesses targeted most by hackers due to fewer security resources than their larger counterparts. HealthITSecurity, March 28, 2019

Cyber Defense

Study Finds 40% of Organizations Not Doing Enough to Protect Office 365, SharePoint, and Other Cloud Data From Loss: Companies could be leaving themselves vulnerable by not using third-party data backup tools, a new report finds. DarkReading, March 28, 2019

Cyber Fine

Office Depot Fined $25M for Defrauding Customers With Fake Malware Removal Service: The FTC announced it has fined Office Depot $25M for scamming customers into buying malware removal services they never needed. The company that cooperated with the scam,, was also fined $10M, for a total of $35M. The two companies collaborated to charge Office Depot customers up to $300 for malware removal services. Office Depot also owns OfficeMax (the two companies merged in 2013). ExtremeTech, March 29, 2019

Cyber Insurance

States begin adopting insurance cybersecurity requirements | PropertyCasualty360: Because of the multi-state nature of the insurance industry, major insurance licensees will likely adopt stringent cybersecurity compliance programs. PropertyCasualty3660, March 29, 2019

Cyber Talent

New game provides cybersecurity education for Girl Scouts. A new game provides cybersecurity education for Girl Scouts, who can earn virtual and real badges by playing. HPE’s Liz Joyce talks about the partnership that led to the game: In January 2019, Hewlett Packard Enterprise launched a program in partnership with the Girl Scouts to educate girls between the ages of 9 and 11 about cybersecurity. TechTarget, March 28, 2019

Coordination Called Essential to Closing Cybersecurity Gender Gap: Women make up less than a quarter of the cybersecurity workforce and while efforts are underway to boost that number, success has been limited. New America, a non-partisan think tank, released a report on Thursday detailing the current status of women in the cyber workforce, efforts to increase the number of women in the field, and steps that can be taken to improve hiring and retention across the industry. MeriTalk, March 28, 2019

Cybersecurity in Society

Cyber Privacy

FTC Demands Broadband Providers Reveal Data Handling Practices: The FTC is ordering seven companies – including AT&T, T-Mobile, Comcast and more – to outline what data they collect, what they use the data for, and how transparent they’re being with consumers. ThreatPost, March 27, 2019

Cyber Attack

Ransomware Behind Norsk Hydro Attack Takes On Wiper-Like Capabilities: Researchers are still looking for answers when it comes to LockerGoga’s initial infection method – and what the attackers behind the ransomware really want. ThreatPost, March 27, 2019

Cyber Defense

DoD will crack down on contractors not complying with cybersecurity standards: Contractors not up to date on cybersecurity standards will only get a pass from the Defense Department for a little longer, leadership says. Federal News Netrwork, March 29, 2019

Microsoft Takes Down 99 Hacker-Controlled Websites. A judge granted Microsoft the injunction allowing them to disrupt a network of sites operated by an Iranian-linked group of hackers: Microsoft said it has taken down 99 websites belonging to an Iranian state-linked hacking group it calls “Phosphorus,” aka APT35, Charming Kitten, and Ajax Security Team. DarkReading, March 28, 2019

Cyber Espionage

Researchers Find Google Play Store Apps Were Actually Government Malware: Security researchers have found a new kind of government malware that was hiding in plain sight within apps on Android’s Play Store. And they appear to have uncovered a case of lawful intercept gone wrong. Motherboard, March 29, 2019

Know Your Enemy

Ransomware Attackers turn to Google Ads after Dream Market Take Down: The ransomware supply chain faced disruption this week after a prominent dark market place was likely seized by law enforcement. In a sequence of events similar to the xDedic seizure, the email addresses and communications between ransomware distributors and victims all but stopped as ransomware operators hurried to delete and disconnect accounts linked to Dream Market. Dream Market was the last remaining major dark market for illicit goods that had originally sprung up after Silk Road was dismantled by law enforcement. The other three were AlphaBay, Hansa Market, and RAMP which were seized and closed by US, European and Russian authorities in mid 2017. Security Boulevard, March 29, 2019

National Cybersecurity

NIST’s Ron Ross on the state of cyber: ‘We literally are hemorrhaging critical information’: After Chinese hackers infiltrated a Navy subcontractor’s computer network and stole a trove of highly sensitive data on submarine warfare, it spurred the government to revise the standards that contractors must follow to ensure government data is properly protected data. Fifth Domain, March 29, 2019

The Cybersecurity 202: Trump wants a ‘cybersecurity moonshot’ but cuts research: President Trump wants to find a grand solution to the nation’s cybersecurity challenges, one that will allow the nation to stop playing constant defense. The Washington Post, March 29, 2019

UK watchdog slams Huawei over ‘serious’ cybersecurity vulnerabilities: A UK government cybersecurity watchdog has once again raised serious concerns about Huawei’s security practices, the Financial Times reports. The report comes from the Huawei Cyber Security Evaluation Centre (HCSEC) Oversight Board, an organization set up by the UK’s National Cyber Security Centre to evaluate the security risks posed by using Huawei’s equipment in critical national infrastructure. The Verge, March 28, 2019

Cyber Enforcement

Alleged Child Porn Lord Faces US Extradition: In 2013, the FBI exploited a zero-day vulnerability in Firefox to seize control over a Dark Web network of child pornography sites. The alleged owner of that ring – 33-year-old Freedom Hosting operator Eric Eoin Marques – was arrested in Ireland later that year on a U.S. warrant and has been in custody ever since. This week, Ireland’s Supreme Court cleared the way for Marques to be extradited to the United States. KrebsOnSecurity, March 22, 2019

Cyber Miscellany

Hacker Rigs New Zealand Shooter’s Manifesto With Malware: The shooter’s manifesto has been circulating on the web, even as authorities try to take it down. However, at least one copy of the document has been secretly rigged to reconfigure Windows PCs with a message. PC Mag, March 29, 2019

9 top hacker movies and TV shows of all time: Movies and TV shows have long influenced how lawmakers and society think about information security. We all have our personal favorite we’re obsessed with. What’s yours? CSO, March 29, 2019

SecureTheVillage Calendar

Webinar: SecureTheVillage April Webinar
California Consumer Privacy Act, Part 1
April 4 @ 10:00 am – 11:00 am

Financial Services Cybersecurity Roundtable – April 2019
April 12 @ 8:00 am – 10:00 am

Webinar: SecureTheVillage May Webinar
California Consumer Privacy Act, Part 2
May 2 @ 10:00 am – 11:00 am

Webinar: SecureTheVillage June Webinar
California Consumer Privacy Act, Part 3
June 6 @ 10:00 am – 11:00 am

Financial Services Cybersecurity Roundtable – June 2019
June 14 @ 8:00 am – 10:00 am

The post Cybersecurity News of the Week, March 31, 2019 appeared first on Citadel Information Group.

from Citadel Information Group
via Citadel Information Group