A selection of this week’s more interesting vulnerability disclosures and cyber security news, include further discoveries with the Bangladesh attack, a new set of threats against Zencart and Magento shopping systems, and a new disturbing trend of ransomware to perform whole disk encryption.
- Chinese High Rollers Moved Stolen Bangladesh Millions to Philippines: Witness
- Zen Cart admins: Don’t skip version 1.5.5 (The Register)
- Magento becomes fresh target for KimcilWare ransomware (ZDNet)
- Petya Ransomware Encrypts Entire Hard Drives
Some really interesting articles this week making it difficult to pick out the highlights.
- 1.5M Verizon Enterprise customer records selling on forum after breach (The Register)
- A ‘hundred million’ Truecaller users vulnerable to privacy bug, security bod says (The Register)
- Bitdefender releases crypto-vaccine for popular ransomware infections (ZDNet)
- Bugtraq: Easy Hosting Control Panel (EHCP) Multiple Vulnerabilities Easy Hosting Control Panel (EHCP) Multiple Vulnerabilities
- Casino agent in Philippines says high-rollers brought in heist money (Yahoo Security)
- DNS root server attack was not aimed at root servers infosec bods (The Register)
- Don’t refund all online fraud victims: It only encourages their sloppy security, says police chief (ZDNet)
- Facebook rapidly patches Instagram bug which left one million users open to exploit (ZDNet)
- Flaw Allowed Hackers to Abuse PayPal Confirmation Emails (SecurityWeek
- How one hacker exposed thousands of insecure desktops that anyone can remotely view (ZDNet)
- Internet users don’t understand security or privacy, says survey (The Register)
- Teen tricks leaky Valve into publishing hot new Steam game: Watching Paint Dry (The Register)
- vBulletin Resets Passwords After Server Hack (SecurityWeek)
- When mobsters meet hackers the new, improved bank heist (Yahoo Security)
Weekly Cyber Security News 01/04/2016
