by CIRT Team
signal-desktop HTML tag injection [source: barreraoro]
Here’s the story of how a casual conversation uncovered a huge security hole in one of the most reliable messaging services. Story time It was Thursday afternoon: we were chatting as usual and suddenly Alfredo shows us an XSS in an Argentinian government site (don’t worry, it’s been reported). He was using the Signal add-on for Chrome. Javier and I were using the desktop version,...
Read More
by CIRT Team
Critical Flaws in PGP and S/MIME Tools Can Reveal Encrypted Emails in Plaintext[thehackernews]
An important warning for people using widely used email encryption tools—PGP and S/MIME—for sensitive communication. A team of European security researchers has released a warning about a set of critical vulnerabilities discovered in PGP and S/Mime encryption tools that could reveal your encrypted emails in plaintext. What’s worse? The vulnerabilities also impact encrypted emails you sent in the past. PGP, or Pretty Good Privacy, is...
Read More
by CIRT Team
Man hacked 200 firms & sold data of millions of users on dark web [source: hackread]
Grant West, a cunning hacker who goes by the online handle of “Courvoisier” on the Dark Web has been arrested by British police. The 26-year-old hacker is known for hacking over 200 companies around the world including Apple, Asda, Uber, and Just Eat, Groupon, and Nectar etc. West not only breached the security of these companies but also stole their user data before selling them on the...
Read More
by CIRT Team
European Central Bank’s framework for cyber attack simulation on financial org
Last week, the European Central Bank has published the European framework for testing financial sector resilience to cyber attacks. The framework aims to simulate the effects of cyber attacks on critical systems in the banking industry in the European Union. The move is the response to the numerous cyberheists that hit the financial industry in the past years, like the attacks against the SWIFT system and the assault against online...
Read More
by CIRT Team
Android P to Restrict Apps From Monitoring Network Activity [source: bleepingcomputer]
The upcoming version of the Android OS —codenamed only Android P for the moment— will block applications from accessing and monitoring the operating system’s network activity. Android project developers took this decision to improve the operating system’s privacy and prevent user-installed apps from sniffing on the user’s network activity outside the app. /proc/net access abused by apps Currently, apps can access networking data by requiring...
Read More
by CIRT Team
Dharma Ransomware Attack Emerged Again in Wide with New Variant & Extension [gbhackers]
Re-emerging Dharma Ransomware distributed with new variant that developed to attack various organisation and individual systems and encrypting the victim files to demand the ransom amount. It added various futures and tactics to infiltrate the victims computer when compare old version of Dharma Ransomware. Unlike old version, it using various infections vectors such as Spam and phishing emails, Exploit Kits, SMB vulnerabilities and dropped by other malware. Old...
Read More
by CIRT Team
MassMiner cryptocurrency worm targets unpatched enterprise servers [source: 2-spyware]
MassMiner – a cryptocurrency mining malware which is exploiting EternalBlue (CVE-2017-0143),[1] Apache Struts (CVE-2017-5638),[2] and Oracle WebServer (CVE-2017-10271)[3] vulnerabilities to hijack local and enterprise web servers. Initiating brute force attacks, the miner takes control over Microsoft SQL Servers and starts mining Monero cryptocurrency by consuming an excessive amount of system’s CPU and GPU resources. AlienVault,[4] the developer of commercial and open source solutions to manage cyber attacks, and the...
Read More
by CIRT Team
Android users hit by ZooPark malware stealing data & recording calls [source: hackread]
Kaspersky Lab has discovered a brand new cyber-spying campaign targeting Android users via Telegram chat app and infected websites while watering holes is the preferred attack vector. Watering holes is a technique in which famous websites are infected with malware so that visitors unknowingly get their devices infected. The main targets of this campaign are users in the Middle East and North Africa (primarily Morocco, Egypt, Lebanon, Jordan, and Iran)....
Read More
by CIRT Team
Recycling is a must, but why would you reuse your password [source: welivesecurity]
It would be nice to imagine that if the various contenders for “inventor of the password” had known how much of a hassle its computer variety would end up posing centuries later, they would never have bothered. Or maybe that inventor – perhaps a Gileadite or Roman soldier – just didn’t care about the tradeoff between security and convenience that would plague us in the internet era....
Read More
by CIRT Team
Half a million pacemakers need a security patch [source: nakedsecurity]
The US Food and Drug Administration (FDA) last month approved a firmware patch for pacemakers made by Abbott’s (formerly St Jude Medical) that are vulnerable to cybersecurity attacks and which are at risk of sudden battery loss. Some 465,000 patients are affected. The FDA is recommending that all eligible patients get the firmware update “at their next regularly scheduled visit or when appropriate depending on the preferences of the...
Read More
