21-09-202023-09-2020

Security daily (22-09-2020)

Improving security as part of accelerated data center migrations

Approached correctly, cloud migrations are a great opportunity to improve the security and stability of your applications. Many organizations are looking for guidance on how to meet their security requirements while moving at the speed that the cloud enables. They often try to configure everything perfectly in the data center before they migrate their first […] (AWS Security Blog)

On-Demand SCIM provisioning of Azure AD to AWS SSO with PowerShell

In this post, I will demonstrate how you can use a PowerShell script to initiate an on-demand synchronization between Azure Active Directory and AWS Single Sign-On (AWS SSO) and avoid the default 40-minute synchronization schedule between both identity providers. This solution helps enterprises quickly synchronize changes made to users, groups, or permissions within Azure AD […] (AWS Security Blog)

FBI, CISA: Foreign actors likely to spread disinformation on election results

U.S. national security agencies said on Tuesday that foreign actors and cybercriminals could seize on delays in the reporting of election results to spread disinformation aimed at undermining confidence in the vote. Those adversaries could peddle false reports of “voter suppression, cyberattacks targeting election infrastructure, voter or ballot fraud, and other problems intended to convince the public of the elections’ illegitimacy,” the FBI and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency said in a public advisory. Crooks or spies could set up websites or social media accounts to spread the false information, the agencies added. “The public should also be aware that if foreign actors or cyber criminals were able to successfully change an election-related website, the underlying data and internal systems would remain uncompromised,” the FBI and CISA statement said. The agencies urged voters to “rely on state and local government election officials” for official election results. With […] The post FBI, CISA: Foreign actors likely to spread disinformation on election results appeared first on CyberScoop. (CyberScoop)

Trump officials hint at update for US maritime cybersecurity

The White House hopes to update U.S. government’s approach to its maritime cybersecurity strategy in coming months, according to two senior administration officials. The Trump administration’s priorities are to enhance and secure the United States’ ability to project power at sea and defend against adversarial cyberattacks, two senior administration officials told reporters during a call Tuesday. The plan involves re-examining the national approach to information sharing and better emphasizing the use of operational technologies in ports, according to one senior administration official. The two officials on the call declined to reveal any specific information about the administration’s plans, saying more information would soon become available. But hackers have long targeted shipping firms and the maritime supply chain to steal data involving the U.S. government or interrupt cargo operations. Hackers using a strain of ransomware known as Ryuk compromised computer networks at a maritime transportation facility last year, disrupting operations for 30 hours, according to the U.S. Coast Guard. Nation-state hackers also have […] The post Trump officials hint at update for US maritime cybersecurity appeared first on CyberScoop. (CyberScoop)

Snowden agrees to forfeit $5 million from 'Permanent Record' and speeches

Former National Security Agency contractor Edward Snowden has agreed to give up the proceeds from his book “Permanent Record” and the speeches he gave after leaking secret documents in 2013, under a deal reached with U.S. prosecutors. The Sept. 18 filing in a Virginia federal court would result in the forfeiture of more than $4 million that Snowden earned from the book, as well as $1 million from public appearances made from 2014 onward. A judge had ruled in late 2019 that in publishing the book and speaking about his leaks without pre-approval from the U.S. government, Snowden had violated his secrecy agreements with the CIA and NSA. The government has pursued the civil suit against Snowden as part of broader efforts to hold him to account for his unlawful disclosure of classified NSA surveillance programs in 2013. The government’s criminal case against him includes allegations that he violated the Espionage Act. […] The post Snowden agrees to forfeit $5 million from 'Permanent Record' and speeches appeared first on CyberScoop. (CyberScoop)

'DisrupTor' dark-web crackdown leads to 179 arrests by international law enforcement

U.S. and European law enforcement agencies on Tuesday announced the arrest of 179 alleged drug traffickers and the seizure of millions in cash and virtual currencies in one of the largest takedowns of dark-web commerce to date. The crackdown seized more than 1,000 pounds in drugs and targeted an illicit supply chain of opioids, a highly addictive class of drug that has ravaged American lives in recent years. More than two-thirds of the arrests occurred in the U.S., officials said. The alleged drug dealers are accused of advertising on infamous dark-web sites such as AlphaBay and Dream. The takedown — dubbed Operation DisrupTor — involved investigators from Austria, Cyprus, Germany, the Netherlands, Sweden, Australia, Canada, the United Kingdom and the U.S. “With the spike in opioid-related overdose deaths during the COVID-19 pandemic, we recognize that today’s announcement is important and timely,” FBI Director Christopher Wray said in a statement. “The FBI will continue to […] The post 'DisrupTor' dark-web crackdown leads to 179 arrests by international law enforcement appeared first on CyberScoop. (CyberScoop)

Massive Dark Web Bust Seizes $6.5 Million From 179 Drug Dealers

(News ≈ Packet Storm)

Healthcare Lags Behind In Critical Vulnerability Management

(News ≈ Packet Storm)

This Is How Much Top Hackers Are Earning From Bug Bounties

(News ≈ Packet Storm)

Twitter Faces Class-Action Privacy Lawsuit For Sharing Security Info With Advertisers

(News ≈ Packet Storm)

Phishing Page Targets AT&T’s Employee Multi-Factor Authentication

Employees at companies of all sizes can be targets of phishing attacks, but certain corporations or industries can be more valuable to an attacker than others. For instance, employees at telecom companies will often have some level of elevated access that is unavailable to a non-employee. In fact, this access can be so valuable that attackers often find it easier and more efficient to simply bribe employees with large amounts of money, as revealed in a case last year. Continue reading Phishing Page Targets AT&T’s Employee Multi-Factor Authentication at Sucuri Blog. (Sucuri Blog)

Unsecured Microsoft Bing Server Exposed Users' Search Queries and Location

A back-end server associated with Microsoft Bing exposed sensitive data of the search engine's mobile application users, including search queries, device details, and GPS coordinates, among others. The logging database, however, doesn't include any personal details such as names or addresses. The data leak, discovered by Ata Hakcil of WizCase on September 12, is a massive 6.5TB cache of log (The Hacker News)

British Hacker Sentenced to 5 Years for Blackmailing U.S. Companies

A UK man who threatened to publicly release stolen confidential information unless the victims agreed to fulfill his digital extortion demands has finally pleaded guilty on Monday at U.S. federal district court in St. Louis, Missouri. Nathan Francis Wyatt , 39, who is a key member of the infamous international hacking group 'The Dark Overlord,' has been sentenced to five years in prison and (The Hacker News)

Google Chrome Bugs Open Browsers to Attack

Google's new release of Chrome 85.0.4183.121 for Windows, Mac, and Linux fixes 10 security flaws. (Threatpost)

Known Citrix Workspace Bug Open to New Attack Vector

Windows MSI files provide an opening for attackers even though the bug was mostly patched in July. (Threatpost)

Microsoft Overhauls Patch Tuesday Security Update Guide

Microsoft announced a new Security Guide to help cybersecurity professionals more quickly untangle relevant bugs in its monthly security bulletins. (Threatpost)

Firefox 81 Release Kills High-Severity Code-Execution Bugs

Mozilla has fixed three high-severity flaws with the release of Firefox 81 and Firefox ESR 78.3. (Threatpost)

Activision Refutes Claims of 500K-Account Hack

The Call of Duty behemoth said that the reports of widespread hacks are false. (Threatpost)

21-09-202023-09-2020

/security-daily/ 23-09-2020 23:44:23