Weekly Cyber Security News 09/03/2018

A selection of this week’s more interesting vulnerability disclosures and cyber security news. The news is often filled with enterprising hackers breaching complex systems, but what about the easy stuff such as what risks are there when you take any device into a repair shop or let someone you know with more skills loose on some precious bit of tech? We assume that these people are OK right?

• Apple Employee Threatens to Leak User’s iCloud Data Chen Na reports

• Best Buy’s Geek Squad and the FBI have been in bed together for a decade

• Exploiting the User PII Held in Everyone’s Web Browser

Even if you don’t hand your kit over, just walking past a bunch of machines could put you at some kind of risk:

• Hackers can use Cortana to open websites on Windows 10 even if your PC is locked Tristan Greene reports

I’m always intrigued when an security alert pops up which only requires construction of a single network packet can take out a machine. This one may not be as great a risk as others in the past but I wonder how many network appliances/routers using embedded versions of FreeBSD could be affected, and if they will ever be fixed:

• FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec

Other news of course…

• Researchers Discovered Data Leak In Facebook’s Ad Software Steven Melendez reports

• CCleaner Incident Investigation Reveals Possible Stage 3 Payload

• Chrome 65 Patches 45 Vulnerabilities

• Gozi Trojan Using Dark Cloud Botnet in New Wave of Attacks

• Largest Ever 1.3Tbps DDoS Attack Includes Embedded Ransom Demands

• Windows Updates Deliver Intel’s Spectre Microcode Patches

• Researchers Devise New Attacks Against 4G LTE Mobile Networks

• Intel SGX Can Be Used to Hide and Execute Malware

• Second Ransomware Round Hits Colorado DOT A variant of SamSam sends CDOT employees back to pen and paper with two attack waves in two weeks.

• ‘ComboJack’ Malware Steals Multiple Virtual Currencies

• Millions of Office 365 Accounts Hit with Password Stealers Phishing emails disguised as tax-related alerts aim to trick users into handing attackers their usernames and passwords.

• BlackBerry Sues Facebook Over Messaging Apps

• Design Weakness in Microsoft CFG Allows Complete Bypass

• Researchers Defeat Android OEMs’ Security Mitigations At Black Hat Asia

• Triada Trojan Pre-Installed on Low Cost Android Smartphones

• Android’s March 2018 Patches Fix Critical, High Risk Flaws

• Memcached DDoS Attack: Kill Switch, New Details Disclosed Corero shares a kill switch for the Memcached vulnerability and reports the flaw is more extensive than originally believed.

• Telangana BSNL employee database vulnerable to hacking