Security daily (21-06-2021)

Customize requests and responses with AWS WAF

In March 2021, AWS introduced support for custom responses and request header insertion with AWS WAF. This blog post will demonstrate how you can use these new features to customize your AWS WAF solution to improve the user experience and security posture of your applications. HTTP response codes are standard responses sent by a server […] (AWS Security Blog)

Spanish-language misinformation about vaccines is evading Facebook's moderators

Facebook is still struggling to rein in COVID-19 misinformation in Spanish, a recent report from the advocacy group Avaaz indicates. Avaaz, a global human rights group, looked at top-performing posts on Instagram, which is owned by Facebook, promoting a debunked viral claim the coronavirus will make patients’ arms magnetic because it contains metals or possibly a microchip. Of the 30 Instagram posts in Spanish, only one had received a fact-checking label as of June 14. In comparison, roughly half of the 47 high-performing English posts had a fact-checking label. One post flagged by the group showed a woman placing a magnet on her arm, claiming that it stuck to the site where she received her vaccine injection. The post, which racked up tens of thousands of views, has been removed by Facebook. Facebook employs third-party organizations to fact-check its content. If a post receives a fact-checking label as false, it’s […] The post Spanish-language misinformation about vaccines is evading Facebook's moderators appeared first on CyberScoop. (CyberScoop)

CISA doesn't know how many US federal agencies use firewalls to fend off malicious traffic

The Department of Homeland Security’s top cybersecurity agency doesn’t know how many agencies are segmenting their networks from unwanted outside traffic, a basic security practice, according to a letter recently sent to the office of Sen. Ron Wyden (D-Ore.) by the agency. The agency provided the answers in response to a February inquiry from Wyden’s office following a heated Senate Intelligence Committee hearing about the breach at the federal contractor SolarWinds. The suspected Russian espionage campaign used a vulnerability in SolarWinds and other software to infiltrate the systems of at least nine federal agencies and about 100 private companies. Wyden questioned why agencies did not have properly configured firewalls defending their servers running the SolarWinds software, Orion. Such a measure would have prevented hackers from implementing the second stage of the SolarWinds attack and using the backdoor they had planted, according to an assessment by SolarWinds. The agency concurred that […] The post CISA doesn't know how many US federal agencies use firewalls to fend off malicious traffic appeared first on CyberScoop. (CyberScoop)

5 Critical Steps to Recover From a Ransomware Attack

Hackers are increasingly using ransomware as an effective tool to disrupt businesses and fund malicious activities. A recent analysis by cybersecurity company Group-IB revealed ransomware attacks doubled in 2020, while Cybersecurity Ventures predicts that a ransomware attack will occur every 11 seconds in 2021. Businesses must prepare for the possibility of a ransomware attack affecting their (The Hacker News)

DroidMorph Shows Popular Android Antivirus Fail to Detect Cloned Malicious Apps

A new research published by a group of academics has found that anti-virus programs for Android continue to remain vulnerable against different permutations of malware, in what could pose a serious risk as malicious actors evolve their toolsets to better evade analysis. "Malware writers use stealthy mutations (morphing/obfuscations) to continuously develop malware clones, thwarting detection by (The Hacker News)

Beware! Connecting to This Wireless Network Can Break Your iPhone's Wi-Fi Feature

A wireless network naming bug has been discovered in Apple's iOS operating system that effectively disables an iPhone's ability to connect to a Wi-Fi network. The issue was spotted by security researcher Carl Schou, who found that the phone's Wi-Fi functionality gets permanently disabled after joining a Wi-Fi network with the unusual name "%p%s%s%s%s%n" even after rebooting the phone or changing (The Hacker News)

Wegmans Exposes Customer Data in Misconfigured Databases

Cleanup in aisle "Oops": The supermarket chain said that it misconfigured two cloud databases, exposing customer data to public scrutiny. (Threatpost)

Bugs in NVIDIA’s Jetson Chipset Open Door to DoS Attacks, Data Theft

Chipmaker patches nine high-severity bugs in its Jetson SoC framework tied to the way it handles low-level cryptographic algorithms. (Threatpost)

Embryology Data Breach Follows Fertility Clinic Ransomware Hit

Approximately 38,000 of RBA's customers had their embryology data stolen by a ransomware gang. (Threatpost)

Agent Tesla RAT Returns in COVID-19 Vax Phish

An unsophisticated campaign shows that the pandemic still has long legs when it comes to being social-engineering bait. (Threatpost)


/security-daily/ 22-06-2021 23:44:22