Industry News

Let's talk shop!

309 Topics

Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Watch out for phishing attacks that make use of the coronavirus

WSJ Hackers Target Companies With Coronavirus Scams Criminals are using concerns about the coronavirus epidemic to spread infections of their own. They are forging emails mentioning the outbreak that appear to be from business partners or public institutions in an effort to get users to open the... Something to let your users know about. Given the anxiety around the virus, they might be more likely to open attachments or believe a phishing email that purports to be news from the CDC or your company about changes to WFH policies.

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Let's Encrypt to revoke 3 million certificates on March 4 due to software bug

ZDNet Let's Encrypt to revoke 3 million certificates on March 4 due to software bug... Let's Encrypt issued 3,048,289 TLS certificates without checking the CAA field for the requesting domain. You should have received an email if one of your certs was affected, but you can always replace your certs just in case. They did say that some of the affected certs they didn’t have a good email contact for, so it’s possible that some of the affected people weren’t notified. Here’s their FAQ if you need more info: Let's Encrypt Community Support – 3 Mar 20 Revoking certain certificates on March 4 Due to the 2020.02.29 CAA Rechecking Bug, we unfortunately need to revoke many Let’s Encrypt TLS/SSL certificates. We’re e-mailing affected subscribers for whom we have contact information. This post and thread will collect answers to frequently... Reading time: 22 mins ? Likes: 275 ❤

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Check your Wordpress plugins

Some big zero days out there for some of them, including Duplicator, Profile Builder, Themegrill Demo Importer, Themerex Addons and more: ZDNet Hackers are actively exploiting zero-days in several WordPress plugins | ZDNet There's quite the WordPress p0wnage going on right now.

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Report: New Android malware can steal 2FA codes from Google Authenticator

Android Authority – 27 Feb 20 Report: New Android malware can steal 2FA codes from Google Authenticator 2FA apps are one of the best ways to secure your accounts, but a new form of malware poses a significant threat. This is a nasty one - once it gets on your system it will relay 2FA codes allowing hackers to break into your other systems.

3
dimforest
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Details of 10.6 million MGM hotel guests posted on a hacking forum

This is from the MGM breach last year. The data from that hack was posted online recently, including full names, home addresses, phone numbers, emails, and dates of birth. ZDNet Exclusive: Details of 10.6 million MGM hotel guests posted on a hacking forum... MGM Resorts said security incident took place last summer and notified impacted guests last year.

2
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Krebs: Hackers Were Inside Citrix for Five Months

https://krebsonsecurity.com/2020/02/hackers-were-inside-citrix-for-five-months/ “Citrix said the information taken by the intruders may have included Social Security Numbers or other tax identification numbers, driver’s license numbers, passport numbers, financial account numbers, payment card numbers, and/or limited health claims information, such as health insurance participant identification number and/or claims information relating to date of service and provider name.” Pretty crazy that they were inside for that long. The FBI were the ones who had to tell Citrix they’d bee pwned.

3
dimforest
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Critical Adobe Flaws Fixed in Out-of-Band Update

threatpost.com Critical Adobe Flaws Fixed in Out-of-Band Update Two critical Adobe vulnerabilities have been fixed in Adobe After Effects and Adobe Media Encoder. Adobe After Effects and Adobe Media Encoder are affected.

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Pay Up, Or We’ll Make Google Ban Your Ads

https://krebsonsecurity.com/2020/02/pay-up-or-well-make-google-ban-your-ads/ Google claims that they have systems to detect the fraudulent ad traffic, making the extortion threat empty. Then again Google has made their own bed by making it impossible to contact a human being who works there. It’s completely plausible that malicious actors could get your account banned and then there’s a kafkaesque process to get unbanned.

2
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Equifax makes it harder to get your $125

theregister.co.uk Equifax is going to make you work for that 125 bucks it owes each of you: Biz... Millions likely to get kicked into credit monitoring deal Adding additional steps that they’re hoping people won’t bother to go through to get their money.

11
dimforest
4 years ago
TaylorT-Automox
TaylorT-AutomoxAutomox Employee
posted in Patch Tuesday

February 2020 Patch Tuesday

Adobe and Mozilla have released updates for multiple products. Microsoft updated a previously released security advisory containing vulnerabilities in Microsoft Edge based on Chromium. We’re expecting Microsoft’s full releases anytime now. You can use the patch index and Patch Tuesday central below to stay updated on all releases throughout the day! See anything interesting so far? go.automox.com Automox Patch Tuesday - Rapid Response Center | Cyber Security Every patch Tuesday, speed is your biggest advantage for ensuring the cyber security of your infrastructure. It’s a race to harden your endpoints before adversaries exploit these new vulnerabilities. blog.automox.com February 2020 Patch Tuesday Index For the latest Patch Updates from Microsoft and third-party vendors, bookmark the Automox February 2020 Patch Tuesday Index, updated live throughout the day.

0
TaylorT-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Android owners – you'll want to get these latest security patches, especially for this nasty Bluetooth hijack flaw

theregister.co.uk Android owners – you'll want to get these latest security patches, especially... 'Pwned with a broadcast' bug among 25 to be patched by Google The flaw lets arbitrary code be run through the Bluetooth module, so get this one patched asap! Advisory here: https://source.android.com/security/bulletin/2020-02-01.html

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Chrome 80 Released With 56 Security Fixes, Cookie Changes, More

BleepingComputer Chrome 80 Released With 56 Security Fixes, Cookie Changes, More Google has released Chrome 80 today, February 4th, 2020, to the Stable desktop channel for the Windows, macOS, Linux, Chrome OS, iOS, and Android platforms with bug fixes, new features, and 56 security fixes. 56 security fixes in here, some of the high, so make sure you patch!

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Wawa card breach may rank as one of the biggest of all times

ZDNet Wawa card breach may rank as one of the biggest of all times | ZDNet Hackers put the card details of more than 30 million Wawa customers on sale online. Looks like a bunch of us will be getting new credit/debit card numbers. Apparently the black market price for a credit card is $17. Wawa is claiming that no CVV2 info was included, but that is contradicted by journalists who obtained a sample that did include CVV2 numbers.

2
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

New 'CacheOut' attack targets Intel processors, with a fix arriving soon

Another day, another CPU attack: PCWorld New 'CacheOut' attack targets Intel processors, with a fix arriving soon Researchers claim that the latest side-channel exploit against Intel processors can be used to leak a targeted set of data, rather than just a random bunch of bytes. Affects all Intel CPUs but not AMD. Fix coming “soon”

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Ransomware that leaks your data if you don't pay up

BleepingComputer Maze Ransomware Not Getting Paid, Leaks Data Left and Right Maze ransomware operators have infected computers from Medical Diagnostic Laboratories (MDLab) and are releasing close to 9.5GB of data stolen from infected machines. I hadn’t heard of this approach before. Looks like the Maze ransomware folks are threatening to release almost 10GB of data if the victim doesn’t pay up. On the plus side, at least you can get your data back from the leak 🙂

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Microsoft discloses security breach of customer support database

ZDNet Microsoft discloses security breach of customer support database | ZDNet Five servers storing customer support analytics were accidentally exposed online in December 2019. Info in the database included email addresses, IP addresses and support case details (which could contain further sensitive information). Microsoft is notifying affected customers today, so be on the lookout for an email in case you were one of the unlucky 250M entries in the database.

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

It's gonna be a big Patch Tuesday

https://krebsonsecurity.com/2020/01/cryptic-rumblings-ahead-of-first-2020-patch-tuesday/Speculation is that it will be an update to crypt32.dll, the module that handles all certificate and cryptographic functions.Make sure to get all the news and analysis here: Webinar: Automating Patch Tuesday: January 2020Join Richard Melick for a review of the first Patch Tuesday of 2020. He'll discuss Microsoft's updates, third-party security patches, and tips for automatically protecting your infrastructure from these vulnerabilities.

11
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

What not to buy on Cyber Monday

USA TODAY Beware gifts bearing 'backdoors' and other security vulnerabilities this... Don't be fooled by the discounts these companies offer. The cost to your privacy could be much greater than you bargained for. TL;DR - avoid Huawei, Lenovo, Lexmark & GoPro Any other brands you avoid buying due to security concerns?

8
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

New trend for ransomware - MSP is the vector

I’ve heard of a couple like this now: BleepingComputer Sodinokibi Ransomware Hits New York Airport Systems Albany International Airport staff announced that the New York airport's administrative servers were hit by Sodinokibi Ransomware following a cyberattack that took place over Christmas. Your MSP is like a toddler in kindergarten - they get exposed to all the germs!

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Watch out for Iranian hackers

StateScoop – 6 Jan 20 MS-ISAC cautions of cyberattacks following death of Iranian general | StateScoop Though based on no specific credible cyberthreat, an advisory warns state and local governments to be especially vigilant after the death Qassem Soleimani. We’ve seen a spike in traffic from Iran this week - anyone else seeing that in your analytics?

1
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Hackers Can Use Lasers to ‘Speak’ to Your Amazon Echo or Google Home

Wired Hackers Can Use Lasers to ‘Speak’ to Your Amazon Echo By sending laser-powered “light commands” to a smart assistant, researchers could force it to unlock cars, open garage doors, and more. I’d heard of lasers to record conversations from window vibrations, but this is going in the other direction. Make sure you home devices aren’t visible through a window!

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

The Hidden Cost of Ransomware: Wholesale Password Theft

https://krebsonsecurity.com/2020/01/the-hidden-cost-of-ransomware-wholesale-password-theft/ Krebs points out that once hackers breach your network, they are going to slurp up any and all credentials they can find, including browser-stored passwords and password managers. They’ve even automated the process: CIS Security Primer - TrickBot TrickBot is a modular banking trojan that uses man-in-the-browser attacks to target user financial information and act as a dropper for other malware.

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Smart camera maker Wyze hit with customer data breach

CNN Smart camera maker Wyze hit with customer data breach Wyze Labs, which makes smart cameras and connected home gadgets, has confirmed databases holding millions of customers' information were exposed to the public. Looks like this breach was a BOGO special, with two breaches to two separate databases. And if you think you’re safe because you use Ring instead of Wyze, they just had a breach as well.

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Microsoft Updates November Security Updates with SharePoint Bug

threatpost.com Microsoft Issues Out-of-Band Update for SharePoint Bug An attacker could exploit CVE-2019-1491 to obtain sensitive information that could be used to mount further attacks. There’s some confusion as to whether this is an out of band update or whether it just got left off the list for patch Tuesday. Either way, this one has a severity of Important so patch your Sharepoint (if you’re one of the poor people stuck using it).

0
Nic-Automox
4 years ago
Nic-Automox
Nic-AutomoxFormer Automox Employee
posted in Patch Tuesday

Snatch Ransomware Reboots to Windows Safe Mode to Bypass AV Tools

BleepingComputer Snatch Ransomware Reboots to Windows Safe Mode to Bypass AV Tools Researchers discovered a new Snatch ransomware strain that will reboot computers it infects into Safe Mode to disable any resident security solutions and immediately starts encrypting files once the system loads. Clever trick to get around some AV software. Sophos’ recommendation is to make sure you don’t expose any RDP services outside of your network, for which we have a handy worklet.

0
Nic-Automox
4 years ago
Terms & ConditionsCookie settings