15-11-202017-11-2020

Security daily (16-11-2020)

Investigate VPC flow with Amazon Detective

Many Amazon Web Services (AWS) customers need enhanced insight into IP network flow. Traditionally, cost, the complexity of collection, and the time required for analysis has led to incomplete investigations of network flows. Having good telemetry is paramount, and VPC Flow Logs are a very important part of a robust centralized logging architecture. The information […] (AWS Security Blog)

Round 2 post-quantum TLS is now supported in AWS KMS

AWS Key Management Service (AWS KMS) now supports three new hybrid post-quantum key exchange algorithms for the Transport Layer Security (TLS) 1.2 encryption protocol that’s used when connecting to AWS KMS API endpoints. These new hybrid post-quantum algorithms combine the proven security of a classical key exchange with the potential quantum-safe properties of new post-quantum […] (AWS Security Blog)

59 security experts reject Trump’s election fraud claims as 'incoherent'

A group of 59 computer scientists, researchers and cybersecurity experts on Monday released a letter rejecting President Donald Trump’s claims of widespread electoral fraud as “technically incoherent” and “unsubstantiated” in the latest rebuke of Trump’s campaign to undermine public confidence in the election results. “We are aware of alarming assertions being made that the 2020 election was ‘rigged’ by exploiting technical vulnerabilities,” wrote the group of experts, which included Matt Blaze, a cryptologist and professor at Georgetown University, and Alex Stamos, the former security chief at Facebook. “However, in every case of which we are aware, these claims either have been unsubstantiated or are technically incoherent.” Since multiple media outlets, including Fox News and the Associated Press, on Nov. 7 projected Joe Biden as the winner of the presidential election, Trump and his allies have continuously made false claims of election fraud. The director of the Department of Homeland Security’s […] The post 59 security experts reject Trump’s election fraud claims as 'incoherent' appeared first on CyberScoop. (CyberScoop)

Twitter hires influential hacker Peiter ‘Mudge’ Zatko as security boss

Facing some of the most persistent security challenges of its 14-year existence, Twitter has turned to Peiter “Mudge” Zatko, a renowned computer security expert, and given him a broad mandate to bolster security at the social media platform. Zatko is the company’s new “head of security,” reporting directly to CEO Jack Dorsey, Reuters first reported Monday. The news comes after Twitter said in September it had hired Rinki Sethi as chief information security officer. Zatko gained recognition in the cybersecurity industry as a member of L0pht, a flamboyant Massachusetts-based hacking collective that famously warned Congress in 1998 about the insecurities of the internet. Zatko also oversaw high-profile cybersecurity projects at the Pentagon’s Defense Advanced Research and Projects Agency, and did stints at Google and an independent lab for testing software integrity. Looks like the cat is out of the bag. I’m very excited to be joining the executive team at Twitter! I […] The post Twitter hires influential hacker Peiter ‘Mudge’ Zatko as security boss appeared first on CyberScoop. (CyberScoop)

Zoom pushes new tools meant to counter 'Zoombombing'

Zoom on Monday unveiled a trio of security tools the video conferencing company and its users can deploy to defend against unwelcome intruders who “Zoombomb” meetings. The announcement is the latest in a blitz that began this spring, when Zoom’s daily usage skyrocket at the onset of the coronavirus outbreak, and the company admitted it was caught off guard by the resulting security woes — among them, uninvited users posting offensive materials. Last week, Zoom reached a settlement with the Federal Trade Commission over its encryption claims. The company has since begun rolling out end-to-end encryption for all users. Multiple state attorneys general also had pressed Zoom to do more about Zoombombing. The company reached an agreement with New York in May to increase security. “Suspend Participant Activities,” one of the three tools Zoom detailed in a blog post, allows Zoom hosts to pause meeting functions to report disruptive attendees. Afterward, the host can resume video, audio, screen sharing and other […] The post Zoom pushes new tools meant to counter 'Zoombombing' appeared first on CyberScoop. (CyberScoop)

Video game company Capcom details attack, data breach by ransomware gang

The Japanese video game company known for the “Resident Evil” and “Street Fighter” series confirmed Monday that a ransomware attack in early November potentially exposed data about thousands of customers and business partners. In a news release, Capcom said an investigation of the Nov. 2 breach showed that personal information of a handful of current and former employees definitely had been compromised, as well as company sales reports and other financial information. Another 350,000 records of employees, shareholders, customers and other business partners also may have been exposed, Capcom said, but it was unsure of the exact number because log files had been lost because of the attack. The company confirmed that the ransomware gang known as Ragnar Locker was responsible for the attack, and said it had referred the matter to law enforcement in Japan and the U.S., as well as data protection agencies in Japan and Europe. Earlier reports […] The post Video game company Capcom details attack, data breach by ransomware gang appeared first on CyberScoop. (CyberScoop)

Cult videogame company Capcom pays a big round $0.00 to ransomware crooks

Bad news: data stolen, data dumped, customers affected. Good news: crooks got $0. The ransom was $11M, so that's a big deal! (Naked Security)

Naked Security Live – Don’t get hoaxed (pass it on)!

Here's the latest Naked Security Live video - enjoy (and please share with your friends)! (Naked Security)

How to do cybersecurity – join us online for the Sophos Evolve event

Join us this week or next week for a free online event to learn how cybersecurity is evolving, and why. (Naked Security)

Lazarus Malware Strikes South Korean Supply Chains

(News ≈ Packet Storm)

Microsoft Is Working On The Kerberos Authentication Bug

(News ≈ Packet Storm)

Up To 350,000 People's Information Stolen In Capcom Hack

(News ≈ Packet Storm)

Scams Ramp Up Ahead Of Black Friday Cyber Criminal Craze

(News ≈ Packet Storm)

Hackers Can Use Just-Fixed Intel Bugs To Install Malicious Firmware On PCs

(News ≈ Packet Storm)

Dating Site Bumble Leaves Swipes Unsecured for 100M Users

Bumble fumble: An API bug exposed personal information of users like political leanings, astrological signs, education, and even height and weight, and their distance away in miles. (Threatpost)

Attackers Target Porn Site Goers in ‘Malsmoke’ Zloader Attack

A fake Java update found on various porn sites actually downloads the well-known Zloader malware. (Threatpost)

Citrix SD-WAN Bugs Allow Remote Code Execution

The bugs tracked as CVE-2020–8271, CVE-2020–8272 and CVE-2020–8273 exist in the Citrix SD-WAN Center. (Threatpost)

15-11-202017-11-2020

/security-daily/ 17-11-2020 23:44:24