Security daily (08-10-2021)

Trolls defaced Twitch's website with pictures of Jeff Bezos, the latest security concern

Two days after an unnamed hacker leaked a trove Twitch data including the streaming platform’s source code and information about payments to streamers, users are still seeking answers. Instead, they’re getting trolled. Users complained Friday that the header image for a game listings section on the Twitch website was replaced by a close-up of Jeff Bezos, founder of Amazon, which owns Twitch, as The Verge first reported. The image also seems to appear alongside the data leaked on the message board 4Chan, a notorious forum where hackers, trolls and other anonymous internet users congregate. While the image of Bezos disappeared from Twitch within a few hours, the website defacement is a signal that Twitch’s security issues are not over, days after a major data breach. The Amazon-owned company confirmed Wednesday that an unknown party had accessed Twitch’s source code as a result of a “misconfigured server.” Caught up in the trove of […] The post Trolls defaced Twitch's website with pictures of Jeff Bezos, the latest security concern appeared first on CyberScoop. (CyberScoop)

Former TD Bank, Bank of America employee allegedly helped email scammers launder money

An accused money launderer allegedly used his position as an employee at Bank of America and TD Bank to aid an email fraud scheme that scammed five businesses out of more than $1 million. The U.S. Department of Justice announced Thursday that a grand jury had returned an indictment against three men — Onyewuchi Ibeh, Jason Joyner and Mouaaz Elkhebri — charging them with money laundering and aggravated identity theft. The defendants allegedly operated a business email compromise scheme, in which thieves pose as a business or associate in an email then ask a victim to wire up to hundreds of thousands of dollars at a time. Elkhebri, a 30-year-old resident of Alexandria, Va., used inside access at Bank of America (where he worked as a personal banker and relationship manager from 2015 through 2017) and then TD Bank (where he worked from 2017 through 2018) to open multiple accounts […] The post Former TD Bank, Bank of America employee allegedly helped email scammers launder money appeared first on CyberScoop. (CyberScoop)

A rising tide lifts all boats in maritime cybersecurity

This past March, the world watched as the container ship Ever Given clumsily blocked a major artery in the global supply chain – leading to a six-day blockage of the world’s most important shipping corridor, the Suez Canal. The disruption held up an estimated $9 billion of trade per day. Today, the Port of Los Angeles and the Port of Long Beach are experiencing disruptions leading to a record number of ships waiting off the coast of California. These disruptions have permeated throughout the supply chains for goods that Americans rely on from computers and chips to cars and clothing. The lesson is clear: The maritime industry is full of chokepoints which, if manipulated, can cause cascading economic impacts that affect Americans. While these recent disruptions were not caused by hacks or bad actors in cyberspace, they demonstrate the vulnerable chokepoints in the global marketplace. We aren’t dealing in hypotheticals, either – […] The post A rising tide lifts all boats in maritime cybersecurity appeared first on CyberScoop. (CyberScoop)

Apache patch proves patchy – now you need to patch the patch

Once more unto the breach, dear friends, once more, and close up the hole of encoding dread. (Naked Security)

BrewDog Exposed Data Of 200,000 Shareholders For Over A Year

(News ≈ Packet Storm)

New TSA Regulations To Address Cyber Threat To Rail Systems

(News ≈ Packet Storm)

Twitch Blames Server Error For Massive Data Leak

(News ≈ Packet Storm)

Google Blocked 14,000 Russian Government Phishing Emails

(News ≈ Packet Storm)

Ransomware Group FIN12 Aggressively Going After Healthcare Targets

An "aggressive" financially motivated threat actor has been identified as linked to a string of RYUK ransomware attacks since October 2018, while maintaining close partnerships with TrickBot-affiliated threat actors and using a publicly available arsenal of tools such as Cobalt Strike Beacon payloads to interact with victim networks. Cybersecurity firm Mandiant attributed the intrusions to a (The Hacker News)

Researchers Warn of FontOnLake Rootkit Malware Targeting Linux Systems

Cybersecurity researchers have detailed a new campaign that likely targets entities in Southeast Asia with a previously unrecognized Linux malware that's engineered to enable remote access to its operators, in addition to amassing credentials and function as a proxy server. The malware family, dubbed "FontOnLake" by Slovak cybersecurity firm ESET, is said to feature "well-designed modules" that (The Hacker News)


/security-daily/ 09-10-2021 23:44:22