Weekly Cyber Security News 04/10/2019

A selection of this week’s more interesting vulnerability disclosures and cyber security news. A serious breach from a popular game was announced earlier in the week. Considering the prevalence of linking many such games with Facebook and other social media platforms, such an exposure gives a great ‘way in’. If you’ve not done it already, go check what access you’ve granted to your data:

• Hackers have stolen more than 218 million records from the popular “Words With Friends”

Uh oh…. With so few handsets being in a position to receive updates, I think this is going to have a significant hit against the ecosystem for a long time ahead:

• Attackers exploit 0day vulnerability that gives full control of Android phones

While major businesses do take a substantial amount of damage, they do stand a chance in surviving, but it’s unfortunately the smaller one that ultimately pay the price. One popped up this week in the feed announcing that they failed to recover from an attack, and although details are of course lacking on what actually went on, with Ransomware just a simple trick email can easily trigger the destruction process. Businesses looking at the risk and impact of recovering from a physical disaster, say a fire, treating the risk of a cyberattack and it’s effects should certainly be considering attacks in the same, if not higher probability now, and not as some kind of “won’t happen to me” scenario. If we don’t how many more will end up like this?

• Medical Practice Closing Permanently After Ransomware Attack

 

More news…

 

• Google gets tougher on HTTPS with ban on mixed content

• Comodo Forums Hacked via Recently Disclosed vBulletin Vulnerability

• Comodo Forums Breached, Data of Over 170,000 Users Up for Grabs

• FTCode PowerShell Ransomware Resurfaces in Spam Campaign

• Bulletproof Hosting Service in Former NATO Bunker Goes Down

• Academics find eight vulnerabilities in Android’s VoIP components

• American Express Customer Info Accessed by Employee for Possible Fraud

• Banks Add to Confusion as Scammers Target Thomas Cook Customers

• CafePress’s confusing incident response

• Casbaneiro: Dangerous cooking with a secret ingredient

• Cyber Security Awareness Month starts today!

• FBI softens stance on ransomware: it”s (sort of) okay to pay off crims to get your data back

• Former Yahoo software engineer pleads guilty to using work access to hack into Yahoo user’s personal accounts

• Four U.S. Food Chains Disclose Payment Card Theft via PoS Malware

• Google launches Incognito Mode for Google Maps, and more

• Google Play Malicious Apps Racked Up 335M+ Installs in September

• Life’s certainties: Death, taxes, and Cisco patching more serious vulnerabilities

• Linux to get kernel “lockdown” feature

• Pi-hole drops support for ad blocklists used by browser-based ad-blockers

• Prying-Eye Vulnerability Exposes Online Meetings to Snooping

• Ransomware forces 3 hospitals to turn away all but the most critical patients

• Thanks crims: UK cop’s first auction of ill-gotten Bitcoin nets them £240k

• WebEx, Zoom Meetings Exposed to Snooping via Enumeration Attacks

• What’s that smell? Perfume merchant senses the scent of a digital burglary

• Zendesk Exposes 10,000 Accounts to Unknown Third Party Zendesk says access occurred in 2016 and that only a small percentage of customers were impacted.

• FBI: Don’t pay ransomware demands, stop encouraging cybercriminals to target others

• German Auto and Defense Firm Rheinmetall Says Malware Hit Several Plants

• EU nations can force Facebook to remove content worldwide, court rules

• Jamf emits mystery security fix for Pro macOS, iOS wrangler, keeps admins in dark by censoring chatter

• US wants Facebook to backdoor WhatsApp and halt encryption plans

• WhiteShadow downloader uses Microsoft SQL queries to deliver malicious payloads

• Hackers Turn to OpenDocument Format to Avoid AV Detection Malware laced OpenDocument files target Microsoft Office, OpenOffice and LibreOffice users.

• Critical Exim Flaw Opens Servers to Remote Code Execution

• Stop us if you”ve heard this one before: Yet another critical flaw threatens Exim servers

• Urgent/11 Flaws Impact More RTOS Used by Medical, Industrial Devices

• Webkit zero-day exploit besieges Mac and iOS users with malvertising redirects