Security daily (15-06-2021)

Top tech critic Lina Khan named FTC chair

Just hours after the Senate confirmed Columbia law professor Lina Khan as the new Democratic commissioner of the Federal Trade Commission, the Biden administration reportedly picked her to run the agency. Sen. Amy Klobuchar, D-Minn., first noted Khan’s selection as FTC chair in a Senate Judiciary antitrust subcommittee hearing on Tuesday. A White House spokesperson confirmed the pick. The 32-year old Khan has been a staunch critic of Amazon, Facebook and Google, contending that they abuse their market power. She’s also warned of tech firms that could mine consumer data in a way that endangers privacy. The selection is a huge warning shot to big tech companies that the Biden administration will put close scrutiny on how they wield market might to acquire and crush the competition. Khan’s power could also be buoyed by efforts in the House from both parties to limit anti-competitive behavior in Silicon Valley. The FTC […] The post Top tech critic Lina Khan named FTC chair appeared first on CyberScoop. (CyberScoop)

SEC settles with First American over massive data leak for nearly $500,000

The Securities and Exchange Commission announced Tuesday that it has settled charges with First American Financial over its 2019 leak of sensitive customer information that exposed more than 800 million document images. Under the terms of the deal, the heavyweight real estate title insurance company will pay a $487,616 fine. The SEC had charged the company with inadequately disclosing the cybersecurity vulnerability that exposed the information. The digitized records included things like Social Security numbers and bank account statements. First American first made public statements about the vulnerability in May 2019 but the company’s information security personnel had first spotted it in January, and according to the SEC they didn’t fix it and failed to notify company brass. “As a result of First American’s deficient disclosure controls, senior management was completely unaware of this vulnerability and the company’s failure to remediate it,” said Kristina Littman, chief of the SEC Enforcement […] The post SEC settles with First American over massive data leak for nearly $500,000 appeared first on CyberScoop. (CyberScoop)

'That horse has left the barn': Secret Service official says ransom payments have fueled hacking sprees

After the multimillion-dollar extortions of Colonial Pipeline and meat processor JBS, a Secret Service official is urging organizations not to pay off hackers and underscoring that more victims need to come forward in order to help U.S. officials get a handle on the problem. “We’re in this boat we’re in now because over the last several years, people have paid the ransom,” Stephen Nix, assistant to the Special Agent in Charge at the U.S. Secret Service, said at CyberTalks, a summit presented by CyberScoop. “This is the monetization of security flaws. That’s what we’re looking at. That horse has left the barn.” Nix asked ransomware victims to tell law enforcement agencies details such as the cryptocurrency wallet, or account, used by the attackers in order to track them down. “I think it’s a very small number of cases we actually hear about,” he added. “If we don’t hear about it, […] The post 'That horse has left the barn': Secret Service official says ransom payments have fueled hacking sprees appeared first on CyberScoop. (CyberScoop)

How FireEye attributed the SolarWinds hacking campaign to Russian spies

Careful data collection, specific keyword searches and the type of breach were factors that FireEye used to determine that Kremlin-sponsored hackers were behind one of the largest cyber-espionage operations in recent years. The first revelations about what would come to be known as the SolarWinds campaign — in which spies exploited the federal contractor to breach nine U.S. government agencies and roughly 100 companies — occurred in early December 2020, when FireEye announced that hackers had stolen its security testing tools. The Milpitas-based company discovered that SolarWinds software was affected during the course of its own investigation, sparking examinations throughout U.S. national security circles that remain ongoing. “We learned it’s fair game to hack the supply chain,” FireEye CEO Kevin Mandia said Tuesday during CyberTalks, a summit presented by CyberScoop. While scrambling to understand the scope of the breach, FireEye investigators observed that hackers had searched for specific keywords, an […] The post How FireEye attributed the SolarWinds hacking campaign to Russian spies appeared first on CyberScoop. (CyberScoop)

“Face of Anonymous” suspect deported from Mexico to face US hacking charges

After nearly a decade as a US expat dubbed "The Face of Anoynmous", he's back in the US facing cybercrime charges from almost a decade ago. (Naked Security)

Digital Artists Targeted In RedLine Infostealer Campaign

(News ≈ Packet Storm)

Utilities Concerningly At Risk From Active Exploits

(News ≈ Packet Storm)

Apple Hurries Patches For Safari Bugs Under Active Attack

(News ≈ Packet Storm)

Critical Remote Code Execution Flaw In Thousands Of VMWare vCenter Servers Remains Unpatched

(News ≈ Packet Storm)

TimeCache Aims To Block Side-Channel Cache Attacks

(News ≈ Packet Storm)

Experts Shed Light On Distinctive Tactics Used by Hades Ransomware

Cybersecurity researchers on Tuesday disclosed "distinctive" tactics, techniques, and procedures (TTPs) adopted by operators of Hades ransomware that set it apart from the rest of the pack, attributing it to a financially motivated threat group called GOLD WINTER. "In many ways, the GOLD WINTER threat group is a typical post-intrusion ransomware threat group that pursues high-value targets to (The Hacker News)

Instagram‌ ‌Bug Allowed Anyone to View Private Accounts Without Following Them

Instagram has patched a new flaw that allowed anyone to view archived posts and stories posted by private accounts without having to follow them. "This bug could have allowed a malicious user to view targeted media on Instagram," Mayur Fartade said in a Medium post today. "An attacker could have been able to see details of private/archived posts, stories, reels, IGTV without following the user (The Hacker News)

Apple Issues Urgent Patches for 2 Zero-Day Flaws Exploited in the Wild

Apple on Monday shipped out-of-band security patches to address two zero-day vulnerabilities in iOS 12.5.3 that it says are being actively exploited in the wild. <!--adsense--> The latest update, iOS 12.5.4, comes with fixes for three security bugs, including a memory corruption issue in ASN.1 decoder (CVE-2021-30737) and two flaws concerning its WebKit browser engine that could be abused to (The Hacker News)

Chinese Hackers Believed to be Behind Second Cyberattack on Air India

Even as a massive data breach affecting Air India came to light the previous month, India's flag carrier airline appears to have suffered a separate cyber assault that lasted for a period of at least two months and 26 days, new research has revealed, which attributed the incident with moderate confidence to a Chinese nation-state threat actor called APT41. Group-IB dubbed the campaign "ColunmTK" (The Hacker News)

Millions of Connected Cameras Open to Eavesdropping

A supply-chain component lays open camera feeds to remote attackers thanks to a critical security vulnerability. (Threatpost)

Malicious PDFs Flood the Web, Lead to Password-Snarfing

SolarMarker makers are using SEO poisoning, stuffing thousands of PDFs with tens of thousands of pages full of SEO keywords & links to redirect to the malware. (Threatpost)


/security-daily/ 16-06-2021 23:44:22