Weekly Cyber Security News 03/02/2017

A selection of this week’s more interesting vulnerability disclosures and cyber security news.

For this week’s post I have fought quite hard to resist commenting on the continued silliness of home router security and IoT vulnerabilities. I will leave it at that. You know what I’m talking about…

What has instead drawn my attention is the item directly below, not just in relation to telephone support numbers which all too often seem to be increasingly hard to find on corporate websites, necessitating the need to do a little bit of digging, I mean SEO poisoning. I’ve seen this off and on for a long time myself, of search engines producing what looks like great results for something but instead they are just links to nasty places. With the ease and lucritive return lure for cyber crime, this can only increase as crims pay highly for search result ranking. OK, of course the the search engines fight back and the ability to know what kind of risk lies behind a link we click is clear enough – isn’t it? When in a rush one slip is all it takes.

• Turning to the internet to find customer support numbers? Be wary, especially for Facebook (TechRepublic)

And the rest of the stuff going on. Including home router notifications…

 

• Dark web hubs paying workers to leak corporate secrets (The Register)

• Info of 200,000 Indycar race fans exposed in misconfigured backup Chris Vickery writes

• Many NETGEAR Routers Leak Admin Passwords

• Witcher 3 dev forums hacked, 1.8 million accounts stolen Dale Walker reports

• Businesses Fear Brand Damage More Than Security Breaches

• CVE-2016-6329 OpenVPN, when using a 64-bit block cipher, makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session

• Dridex Trojan Uses New Tactic to Bypass User Account Control (SecurityWeek)

• Facebook Proposes New Account Recovery Method

• Google launches root certificate authority (The Register)

• Google mistakes the entire NHS for massive cyber-attacking botnet (The Register)

• Home-pwners: Cisco’s Prime Home lets hackers hijack people’s routers, no questions asked (The Register)

• How Cybercriminals Turn Employees Into Rogue Insiders The Dark Web is a growing threat to organizations as hackers recruit insiders with access to corporate networks.

• Insider Recruitment Growing on Dark Web

• It might be time to stop using antivirus (ArsTechnica)

• Linux encryption app Cryptkeeper has universal password: ‘p’ (The Register)

• Metasploit Can Now Be Directly Linked To Hardware For Vulnerability Testing

• Niche dark web marketplaces for buying confidential insider information

• OpenSSL pushes trio of DoS-busting patches (The Register)

• Passwords Are Not Dead; There Are 90 Billion of Them, Report Says

• Popular hacker warkit Metasploit now hacks hardware and cars (The Register)

• Rapid7 Adds Hardware Testing Capabilities to Metasploit

• Telemarketing Company Leaks Nearly 400K Consumer Files

• The Interconnected Nature Of International Cybercrime How burgeoning hackers are honing their craft across language barriers from top tier cybercriminal ecosystems and forums of the Deep and Dark Web.

• Want to bring down that pesky drone? Try the power of sound (The Register)

• We don’t want to alarm you, but PostScript makes your printer an attack vector (The Register)

• WordPress Delayed Disclosure of Critical Vulnerability (SecurityWeek)

• Cerber tops Windows 10 ransomware charts (The Register)

• Fake Chrome Font Update Attack Distributes Ransomware (SecurityWeek)

• Keylogger, Bitcoin Stealer Dropped via Fake Bank Transfer Emails

• Texas cops lose evidence going back eight years in ransomware attack (The Register)

• We see you, ransomware flingers, testing out your baddest stuff on… Germany? (The Register)

• PayPal Users Targeted in Sophisticated Phishing Attack

• Forgotten passwords are bane of the Internet. Facebook wants to fix that (ArsTechnica)

• Cisco Patches WebEx Flaw in Firefox, IE Plugins (SecurityWeek)

• Printer Vulnerabilities Expose Organizations to Attacks

• Zimperium Throws $1.5 Million at Mobile N-day Exploits