A selection of this week’s more interesting vulnerability disclosures and cyber security news.
Each week when I choose which articles to curate for this list I wonder what news could out do the previous week. I think we have two in particular that float to the top, and they offer mind blowing levels of ridiculousness.
The first is Oracle, a company you would expect to know better, though this is their subsidiary Micros – a company I have had dealings with in the past. I can’t imagine the chaos there right now:
- Oracle Probes MICROS PoS System Breach More than 700 systems may have been compromised by suspected Russian cybercriminals Carbanak Gang.
The other follows on from last week’s pop at mobile apps. The UK banking system is trying to mix things up and encourage customers to shop around. Their idea is to create a mobile phone app that allows customers to compare bank account deals and to ease migration. See where this is going? As soon as I saw that on the news I ROLF’d, and it looks like I wasn’t the only one!
- Funny story, this. UK.gov’s ‘open banking app revolution’. Security experts not a fan of it (The Register)
And why not check the rest of the exciting news of breaches and other silliness!
- ‘It was an attack’: Australian census website collapses due to ‘malicious foreign hackers’ Catherine Healey reports
- Classic Shell hackers: We infected FossHub so ransomware couldn’t (and yeah, also for fun) (The Register)
- Bungling Microsoft singlehandedly proves that golden backdoor keys are a terrible idea (The Register)
- Newly Announced Chipset Vuln Affects 900 Million Android Devices Check Point Research Team details four vulnerabilities that can easily lead to full privilege escalation.
- Unpatched quot;QuadRooterquot; Vulnerabilities Put Over 900 Million Android Devices at Risk (SecurityWeek)
- Linux security backfires: Flaw lets hackers inject malware into downloads, disrupt Tor users, etc (The Register)