07-01-202109-01-2021

Security daily (08-01-2021)

Control VPC sharing in an AWS multi-account setup with service control policies

Amazon Web Services (AWS) customers who establish shared infrastructure services in a multi-account environment through AWS Organizations and AWS Resource Access Manager (RAM) may find that the default permissions assigned to the management account are too broad. This may allow organizational accounts to share virtual private clouds (VPCs) with other accounts that shouldn’t have access. […] (AWS Security Blog)

Biden transition fills some top cybersecurity personnel spots

The incoming Biden administration has spent the week heralding some of its cybersecurity-related personnel decisions, even as a couple key jobs remain a question mark. The Biden transition on Friday announced a slew of National Security Council picks. Among them is Caitlin Durkovich to serve as senior director for resilience and response, reflecting a similar role she once held at a Department of Homeland Security division that Congress later renamed and reorganized as the Cybersecurity and Infrastructure Security Agency. Andrea Kendall-Taylor will take the job of senior director for Russia and Central Asia, areas she worked on during a prior government stint in the intelligence community. “This outstanding team of dedicated public servants will be ready to hit the ground running on day one to address the transnational challenges facing the American people — from climate to cyber,” said Vice President-elect Kamala Harris. “They reflect the very best of our […] The post Biden transition fills some top cybersecurity personnel spots appeared first on CyberScoop. (CyberScoop)

Russian man sentenced to 12 years in prison for massive JPMorgan data heist

A U.S. federal judge on Thursday sentenced Andrei Tyurin, a 37-year-old Russian man, to 12 years in prison for his role in a hacking scheme that prosecutors say involved the theft of personal data from over 100 million customers of big U.S. financial firms. The brazen hacking operation, which ran from 2012 to 2015, is one of the biggest to hit Wall Street in recent memory. It involved Tyurin allegedly working with an Israeli man named Gery Shalon, among others, to breach big-name companies like JPMorgan Chase, ETrade and The Wall Street Journal. The scammers then sought to inflate stock prices by marketing them to people whose data they had stolen. Tyurin’s breach of JPMorgan Chase alone saw data on 80 million customers stolen, according to prosecutors. The Russian man made $19 million altogether from the hacking, the Justice Department said in a statement. The case is a win for […] The post Russian man sentenced to 12 years in prison for massive JPMorgan data heist appeared first on CyberScoop. (CyberScoop)

SolarWinds hires Chris Krebs, Alex Stamos to boost security in wake of suspected Russian hack

Software provider SolarWinds, which was breached in a suspected Russian hacking campaign against U.S. companies and federal agencies, has hired former senior U.S. cybersecurity official Chris Krebs and former Facebook security chief Alex Stamos to help respond to the hack and improve its security practices. Krebs and Stamos will work as consultants for Texas-based SolarWinds as it continues to deal with the fallout of a hacking operation that has roiled Washington and is considered one of the more significant cyber-espionage campaigns against U.S. agencies in years. “Armed with what we have learned of this attack, we are also reflecting on our own security practices and seeking opportunities to enhance our posture and policies,” SolarWinds said in a statement. “We have brought in the expertise of Chris Krebs and Alex Stamos to assist in this review and provide best-in-class guidance on our journey to evolve into an industry leading secure software […] The post SolarWinds hires Chris Krebs, Alex Stamos to boost security in wake of suspected Russian hack appeared first on CyberScoop. (CyberScoop)

Google Chrome Browser Privacy Plan Investigated In UK

(News ≈ Packet Storm)

Investigation Launched Into Vulns Found In US Judiciary Case System

(News ≈ Packet Storm)

Rioters Had Physical Access To Lawmakers' Computers. How Bad Is That?

(News ≈ Packet Storm)

Hackers Can Clone Google Titan 2FA Keys

(News ≈ Packet Storm)

Malicious Software Infrastructure Easier to Get and Deploy Than Ever

Researchers at Recorded Future report a rise in cracked Cobalt Strike and other open-source adversarial tools with easy-to-use interfaces. (Threatpost)

A Look Ahead at 2021: SolarWinds Fallout and Shifting CISO Budgets

Threatpost editors discuss the SolarWinds hack, healthcare ransomware attacks and other threats that will plague enterprises in 2021. (Threatpost)

Ryuk Rakes in $150M in Ransom Payments

An examination of the malware gang's payments reveals insights into its economic operations. (Threatpost)

SolarWinds Hires Chris Krebs, Alex Stamos in Wake of Hack

Former CISA director Chris Krebs and former Facebook security exec Alex Stamos have teamed up to create a new consulting group - and have been hired by SolarWinds. (Threatpost)

FBI Warns of Egregor Attacks on Businesses Worldwide

The agency said the malware has already compromised more than 150 organizations and provided insight into its ransomware-as-a-service behavior. (Threatpost)

Bugs in Firefox, Chrome, Edge Allow Remote System Hijacking

Major browsers get an update to fix separate bugs that both allow for remote attacks, which could potentially allow hackers to takeover targeted devices. (Threatpost)

07-01-202109-01-2021

/security-daily/ 09-01-2021 23:44:23