Security daily (11-09-2020)

Ransomware to blame for nearly half the cyber-insurance claims filed in early 2020

Nearly half of the cyber-insurance claims filed in the first half of this year were the result of ransomware attacks, further proof that digital extortion attempts are having a ripple effect throughout the private sector. Ransomware attacks were the cause of 41% of the cyber-insurance claims filed over the first six months of 2020, according to a report published by Coalition, a cyber-insurance vendor that compiled the data based on findings from 25,000 small and medium-sized companies in the U.S. and Canada. Coalition reported a 47% increase in the number of ransomware attacks, with the average size of the demand jumping by 46% over the time period in question. While cyber-insurance vendors have financial interest in emphasizing the frequency and severity of ransomware attacks, the latest figures come after a series of similar numbers hinted at the size of the ransomware problem. Beazley Breach Response, a unit of the London-based […] The post Ransomware to blame for nearly half the cyber-insurance claims filed in early 2020 appeared first on CyberScoop. (CyberScoop)

Postal Service left vulnerable IT applications unaddressed for years, inspector general finds

Officials at the U.S. Postal Service let multiple vulnerable applications languish on the agency’s IT network for years — flaws that could have been exploited by hackers to steal sensitive data, an inspector general audit has found. The inspector general investigation, distributed to Postal Service leadership in July, faults IT officials at the agency for not keeping a slew of applications up to date. Six of the IT applications were left on the Postal Service network for up to seven years with things like incomplete certification and accreditation from technology executives, according to the IG memo. A dozen vulnerabilities were deemed “catastrophic” by the USPS’s Corporate Information Security Office, the watchdog said, meaning they could have exposed the agency to big financial damages. “These are common, well-known vulnerabilities that have been present for three years that could be exploited by an attacker utilizing publicly available methods,” the memo reads. “The vulnerabilities […] The post Postal Service left vulnerable IT applications unaddressed for years, inspector general finds appeared first on CyberScoop. (CyberScoop)

Serious Security: Hacking Windows passwords via your wallpaper

Themes and wallpapers - how dangerous can they really be? (Naked Security)

Razer Gaming Fans Caught Up In Data Leak

(News ≈ Packet Storm)

Microsoft Warns Of CyberAttacks On Trump, Biden Election Campaigns

(News ≈ Packet Storm)

Postal Service Used Apps With Catastrophic Vulnerabilities For Years

(News ≈ Packet Storm)

Three Middle-Aged Dutch Hackers Slipped Into Donald Trump's Twitter Account Days Before The 2016 Election

(News ≈ Packet Storm)

New Linux Malware Steals Call Details from VoIP Softswitch Systems

Cybersecurity researchers have discovered an entirely new kind of Linux malware dubbed "CDRThief" that targets voice over IP (VoIP) softswitches in an attempt to steal phone call metadata.

"The primary goal of the malware is to exfiltrate various private data from a compromised softswitch, including call detail records (CDR)," ESET researchers said in a Thursday analysis.

"To steal this (The Hacker News)

APT28 Mounts Rapid, Large-Scale Theft of Office 365 Logins

The Russia-linked threat group is harvesting credentials for Microsoft's cloud offering, and targeting mainly election-related organizations. (Threatpost)

Office 365 Phishing Attack Leverages Real-Time Active Directory Validation

Attackers check the victims' Office 365 credentials in real time as they are typed into the phishing landing page, by using authentication APIs. (Threatpost)

It’s No ‘Giggle’: Managing Expectations for Vulnerability Disclosure

Vulnerability-disclosure policies (VDPs), if done right, can help provide clarity and clear guidelines to both bug-hunters and vendors when it comes to going public with security flaws. (Threatpost)

WordPress Plugin Flaw Allows Attackers to Forge Emails

The high-severity flaw in the Email Subscribers & Newsletters plugin by Icegram affects more than 100,000 WordPress websites. (Threatpost)


/security-daily/ 12-09-2020 23:44:21