Weekly Cyber Security News 07/06/2019

A selection of this week’s more interesting vulnerability disclosures and cyber security news. A great (or bad depending on how you look at it) example of a supply chain infection this week, luckily it was spotted and a pre-emptive move taken to divert funds before they were stolen. They were very lucky in this case:

• Cryptocurrency startup hacks itself before hacker gets a chance to steal users funds (ZDNet)

We often see reports saying that staff are really the greatest threat to security over hackers. Here we have two examples of how simple, and yet ultimately damaging a slip up can be:

• Data protection authority reports itself to itself after data breach

• Just when you think you’ve seen your share of stupid privacy breaches, there’s this one.

I so love hardware related cleverness and this is up there. Interesting where this eventually goes:

• New attack creates ghost taps on modern Android smartphones

 

The rest of the news:

• Own goal for Leicester City FC after fan credit card details snatched in merch store breach (The Register)

• A botnet is brute-forcing over 1.5 million RDP servers all over the world

• Another Hacker Selling Access to Charity, Antivirus Firm Networks

• Citrix Sued For Not Securing Employee Info Before Data Breach

• Compromised Docker Hosts Use Shodan for Cryptocurrency Mining

• Cryptojacking campaign strikes China with fileless attacks (ZDNet)on

• Facebook lawyer argues you should have ‘no expectation of privacy’

• Google Cloud goes down, taking YouTube, Gmail, Snapchat, and others with it (ZDNet)

• Hackers Are Going After Cisco RV110, RV130, and RV215 Routers

• Hackers steal $9.5 million from GateHub cryptocurrency wallets (ZDNet)

• iOS developers still failing to build end-to-end encryption into apps (TechRepublic)

• Legacy app whitelist can be abused to bypass latest macOS security features, expert warns (The Register)

• LibreOffice Will No Longer Provide 32-bit Linux Binaries

• Malboard: Hackers can now pose as victims through their keyboards

• Microsoft Outlook Data Stolen Via Support Agent Breach

• Microsoft says Windows 10 passwords shouldnt expire: Time for other companies to take note (ZDNet)

• New RCE vulnerability impacts nearly half of the internet”s email servers

• Only 4,183 of 76,000 Vulnerabilities Are Exploited in the Wild

• Platinum APT hides backdoor communication in text (ZDNet)

• Romanian ATM Skimmer Gets Over 5 Years of Jail Time

• Russia says Tinder must share user data, private messages (ZDNet)

• Salesforce”s Parker Harris offers CXO insights for managing complex IT integrations and handing the inevitable crisis

• Scattered Canary Evolves From One-Man Operation to BEC Giant

• The encryption wars are back, but this time it”s different (ZDNet)

• UK Hasn”t Made Sufficient Progress for National Security Strategy

• Unpatched Vulnerabilities Caused Breaches in 27% of Orgs, Finds Study

• US to demand five years of your social media, email account info in visa application

• Westpac confirms misuse of PayID lookup function (ZDNet)

• BlackSquid malware uses bag of exploits to drop cryptocurrency miners

• GandCrab Ransomware Shutting Down After Claiming to Earn $2.5 Billion

• Microsoft Azure Being Used to Host Malware and C2 Servers

• Crime doesn”t pay? Crime doesn”t do secure coding, either: Akamai bug-hunters find hijack hole in bank phishing kit

• Devs slam Microsoft for injecting tech-support scam ads into their Windows Store apps

• How one romance scammer built an international phishing operation (ZDNet)

• 440 million Android users installed apps with an aggressive advertising plugin

• Apple deprecates SHA-1 certificates in iOS 13 and macOS Catalina

• Developers demand Apple API solution for parental control apps

• Google confirms that advanced backdoor came preinstalled on Android devices

• NSA Urges Windows Users to Patch ‘BlueKeep’ Vulnerability

• rkt Container Runtime Flaws Give Root Access to Host

• Zero-Day Flaw in Windows 10 Task Scheduler Gets Micropatch