Security daily (12-05-2021)

Biden signs security-focused executive order meant to accelerate breach reporting, boost software standards

President Joe Biden on Wednesday signed an executive order that will significantly tighten cybersecurity rules for government contractors and set up an incident review board to try to blunt the impact of major hacks. The directive comes as the U.S. government continues to grapple with the fallout from breaches at key software suppliers and the disruption of a national pipeline operator by ransomware. The executive order requires federal contractors to promptly report cyber incidents to agencies, and it establishes a new government entity modeled after the National Transportation Safety Board to review major breaches. It will also require software that the government buys to meet a baseline set of security standards — an effort to make it harder for hackers to tamper with code that ends up on federal networks. “The current market development of build, sell and maybe patch later means we routinely install software with significant vulnerabilities into […] The post Biden signs security-focused executive order meant to accelerate breach reporting, boost software standards appeared first on CyberScoop. (CyberScoop)

US commission urges AI development amid global security concerns

American technology companies racing to develop and adopt artificial intelligence technology should do so responsibly and safely, according to a longtime security expert who has spent years studying the issue.  In a conversation on Thursday during A.I. Week, an event produced by Scoop News Group, Yll Bajraktari, the executive director of the National Security Commission on Artificial Intelligence, urged U.S. citizens to think carefully about the ethical use of powerful new technologies. The advice comes after Bajraktari’s commission published a report advising the U.S. government on issues to consider around the use of A.I.  The commission was established in 2018 to examine America’s ability to defend against malicious automation, and understand how the U.S. might best move forward in understanding such technology. In a report published March of this year, the group warned that the U.S. is not sufficiently prepared to compete with China on the issue.  “The United States […] The post US commission urges AI development amid global security concerns appeared first on CyberScoop. (CyberScoop)

After Colonial Pipeline hack, lawmakers want more action on pipeline security

As a major fuel delivery operator gradually returns to service five days after suffering a ransomware attack, U.S. lawmakers are pressing federal agencies on what more they can do to secure the nation’s pipelines from hackers. The disruption at Colonial Pipeline, which operates 5,500 miles of pipelines and provides 45% of the fuel consumed on the East Coast, has renewed longstanding concerns that the lead agency for pipeline cybersecurity, the Transportation Security Administration, is ill-equipped to deal with the scale of security challenges in the sector. A multi-agency initiative to bolster pipeline cybersecurity begun in 2018 is a good start, but more can be done, critics say. “I have raised significant concerns with TSA’s focus on surface transportation, including pipelines, for years,” Rep. Jim Langevin, D-R.I., told CyberScoop. He pointed to a 2018 audit from the Government Accountability Office that found that TSA’s pipeline cybersecurity work was inadequate and lacked […] The post After Colonial Pipeline hack, lawmakers want more action on pipeline security appeared first on CyberScoop. (CyberScoop)

Amid ransomware fallout, Energy Secretary asks Americans to avoid panic buying fuel

If Americans are starting to feel the cascading effects of a recent ransomware incident affecting Colonial Pipeline, they should resist the temptation to buy more gasoline than they need, U.S. officials say. Energy Secretary Jennifer Granholm said Tuesday several states will likely feel effects on their fuel supplies in the coming days as a result of Colonial Pipeline shutting down operations last Friday following a ransomware attack. Colonial Pipeline, which supplies 45% of the East Coast’s transportation fuels, normally supplies 100 million gallons of gas from Texas to New York daily. Secretary Granholm said that after speaking with the CEO of the firm, she expects Colonial Pipeline to restore service by the end of the week. There is not a shortage of gasoline, Granholm said. The issue is that deliveries are held up as a result of the company shuttering some operations after the ransomware incident. “The [supply] crunch is in […] The post Amid ransomware fallout, Energy Secretary asks Americans to avoid panic buying fuel appeared first on CyberScoop. (CyberScoop)

Beware fake online trading apps, on iOS as well as Android

All that glisters is not gold/Often have you heard that told/Gilded tombs do worms enfold (Naked Security)

Hackers Leverage Adobe Zero Day Bug Impacting Adobe Reader

(News ≈ Packet Storm)

CISA Warns Over FiveHands File-Encrypting Malware Variant

(News ≈ Packet Storm)

Washington DC Police Allegedly Offered $100k To Hackers To Stop Leak

(News ≈ Packet Storm)

AWS Configuration Issues Lead To Exposure Of 5 Million Records

(News ≈ Packet Storm)

Nearly All Wi-Fi Devices Are Vulnerable to New FragAttacks

Three design and multiple implementation flaws have been disclosed in IEEE 802.11 technical standard that undergirds Wi-Fi, potentially enabling an adversary to take control over a system and plunder confidential data. Called FragAttacks (short for FRgmentation and AGgregation attacks), the weaknesses impact all Wi-Fi security protocols, from Wired Equivalent Privacy (WEP) all the way to Wi-Fi (The Hacker News)

Latest Microsoft Windows Updates Patch Dozens of Security Flaws

Microsoft on Tuesday rolled out its scheduled monthly security update with patches for 55 security flaws affecting Windows, Exchange Server, Internet Explorer, Office, Hyper-V, Visual Studio, and Skype for Business. Of these 55 bugs, four are rated as Critical, 50 are rated as Important, and one is listed as Moderate in severity. Three of the vulnerabilities are publicly known, although, unlike  (The Hacker News)

Ransomware Gang Leaks Metropolitan Police Data After Failed Negotiations

The cybercrime syndicate behind Babuk ransomware has leaked more personal files belonging to the Metropolitan Police Department (MPD) after negotiations with the DC Police broke down, warning that they intend to publish all data if their ransom demands are not met. "The negotiations reached a dead end, the amount we were offered does not suit us, we are posting 20 more personal files on officers (The Hacker News)

U.S. Intelligence Agencies Warn About 5G Network Weaknesses

Inadequate implementation of telecom standards, supply chain threats, and weaknesses in systems architecture could pose major cybersecurity risks to 5G networks, potentially making them a lucrative target for cybercriminals and nation-state adversaries to exploit for valuable intelligence. The analysis, which aims to identify and assess risks and vulnerabilities introduced by 5G adoption, was (The Hacker News)

Researchers Flag e-Voting Security Flaws

Paper ballots and source-code transparency are recommended to improve election security. (Threatpost)

Telegram Fraudsters Ramp Up Forged COVID-19 Vaccine Card Sales

A new type of fraud is spiking across the platform: Selling fake vax records to people who want to lie their way into places where proof of vaccine is required. (Threatpost)

Gig Workers Being Paid $500 for Payroll Passwords

Argyle is paying workers to help hack payroll providers, researchers suspect. (Threatpost)


/security-daily/ 13-05-2021 23:44:24