Security daily (24-11-2020)

AWS Security Profiles: Colm MacCárthaigh, Senior Principal Engineer

In the weeks leading up to re:Invent, we’ll share conversations we’ve had with people at AWS who will be presenting, and get a sneak peek at their work. How long have you been at AWS and what do you do in your current role? I joined in 2008 to help build Amazon CloudFront, our content […] (AWS Security Blog)

Home Depot to pay states $17.5 million over massive 2014 data breach

U.S. states have reached a settlement over the mammoth 2014 Home Depot breach that will net them $17.5 million, plus an agreement from the home improvement retailer to strengthen its data security practices. The breach, which compromised 56 million payment card across the U.S., still ranks among the biggest data breaches ever. It’s been an expensive cleanup. Years after the attack, Home Depot estimated the cost at about $179 million and said it was likely to continue growing. The settlement with 46 states and the District of Columbia adds to the tally. It also comes one month after Home Depot suffered a data breach of its Canadian customers that was much smaller than the 2014 breach that was the subject of the U.S. settlement. “Instead of building a secure system, The Home Depot failed to protect consumers and put their data at risk,” New York Attorney General Letitia James said about the 2014 incident. […] The post Home Depot to pay states $17.5 million over massive 2014 data breach appeared first on CyberScoop. (CyberScoop)

State-sponsored hackers try to exploit flaw in popular mobile software, UK warns

Suspected state-sponsored hackers and cybercriminals are trying to exploit a five-month-old vulnerability in popular mobile device management software to target a range of U.K. organizations in the local government, health, logistics and legal sectors, the British government warned Monday. Organizations use the affected software to manage mobile devices from a central server, “making them a valuable target for threat actors,” the U.K.’s National Cyber Security Centre (NCSC) said in a security advisory. By breaking into the mobile device management (MDM) software, snoops could selectively steal information from mobile devices communicating with the MDM server. Some of the exploitations have been successful, the NCSC said without elaborating. The NCSC did not name any foreign governments suspected to be behind the activity. It was also unclear what type of health care organizations were targeted. The NCSC declined to comment. The advisory is part of a consistent effort by the U.K. and U.S. governments […] The post State-sponsored hackers try to exploit flaw in popular mobile software, UK warns appeared first on CyberScoop. (CyberScoop)

Senators warn YouTube to buck up on misinformation

YouTube has found itself in the crosshairs of a group of Democratic senators who want the Alphabet-owned video platform to take down misinformation about elections, false claims of voter fraud and content that could fuel civil unrest. In the buildup to the 2020 U.S. presidential elections, YouTube chose to not take down content that promotes false claims about the election or that challenges the credibility of election’s results. That policy is not enough to curb misinformation, the senators warned in a letter they sent Tuesday to YouTube CEO Susan Wojcicki. “[T]he platform is now home to an ‘onslaught of videos aiming to undermine the legitimacy of the election,’” wrote senators Bob Menendez of New Jersey, Mazie Hirono of Hawaii, Gary Peters of Michigan and Amy Klobuchar of Minnesota. “These videos seek to undermine our democracy and cast doubt on the legitimacy of President-elect Biden’s incoming administration. Moreover, because the current president has […] The post Senators warn YouTube to buck up on misinformation appeared first on CyberScoop. (CyberScoop)

UK bill proposes stiff fines for companies that violate Huawei ban

The U.K. government is proposing big penalties for companies that fail to comply with telecommunications security requirements aimed at keeping technology from Huawei out of the country’s new high-speed networks. Legislation proposed Tuesday by Prime Minister Boris Johnson’s government would levy fines of as much as 100,000 pounds ($134,000) per day if companies don’t meet deadlines for new security requirements. The bill essentially would codify a decision by Johnson this summer to ban Huawei from the U.K.’s 5G and fiber optics networks because of security concerns. The U.S. had pressured Britain to block Huawei over its alleged ties to the Chinese state. The Trump administration has continued to expand restrictions on the company as the U.S. and China continue to battle over trade rules, internet policy and other tech issues. Huawei has denied it spies on customers at the behest of the Chinese government. The legislation clarifies what is expected […] The post UK bill proposes stiff fines for companies that violate Huawei ban appeared first on CyberScoop. (CyberScoop)

Baidu apps in Google Play Store left users vulnerable to tracking, Palo Alto finds

A pair of Baidu applications on the Google Play Store were recently leaking users’ sensitive data that could be used to track users’ location, according to Palo Alto Networks’ Unit 42 research published Tuesday. Through reverse-engineering, the researchers at Unit 42, the research arm at Palo Alto Networks, found that both the Baidu Search Box and Baidu Maps applications used a software development kit (SDK) that would collect users’ MAC address, carrier information and international mobile subscriber identity (IMSI) number. It’s the kind of data that, if it were to fall into the wrong hands, could be used to stalk, monitor, or even harass an individual. IMSI numbers, for instance, could allow cybercriminals or state-linked actors to track someone, even if they switch to a new device, as IMSI numbers can be used to uniquely identify a user. Snoops using IMSI catchers, which imitate cell towers to capture a user’s location, have been known […] The post Baidu apps in Google Play Store left users vulnerable to tracking, Palo Alto finds appeared first on CyberScoop. (CyberScoop)

Gift card hack exposed – you pay, they play

These crooks hacked into a network hoping to get everyone in the company to buy them gift cards. (Naked Security)

How to Extract Bitcoin Wallet Addresses & Balances from Websites with SpiderFoot CLI

While there are completely legitimate reasons to use Bitcoin, it's also used by terrorists, drug dealers, and other shady people that need to be investigated. That's where SpiderFoot comes in, which has a command-line interface to search for Bitcoin wallet addresses on a website and query the balances associated with them.

SpiderFoot is a great tool overall for automating OSINT (open-source intelligence), and there are two different versions: the free open-source project and SpiderFoot HX, a paid service that costs almost $800 a year. For our use, the free version is adequate for... more (Null Byte « WonderHowTo)

Hacker Leaks The User Data Of Event Management App Peatix

(News ≈ Packet Storm)

Critical VMware Zero-Day Bug Allows Command Injection

(News ≈ Packet Storm)

Telecom Firms Face £100k Daily Fines Over Security

(News ≈ Packet Storm)

Debunking The Election's Most Widespread Voter Fraud Claims

(News ≈ Packet Storm)

Tesla Hacked And Stolen Again Using Key Fob

(News ≈ Packet Storm)

Apple Security Chief Indicted For Allegedly Trading iPads For Gun Permits

(News ≈ Packet Storm)

Post-Breach, Peatix Data Reportedly Found on Instagram, Telegram

Events application Peatix this week disclosed a data breach, after user account information reportedly began circulating on Instagram and Telegram. (Threatpost)

‘Minecraft Mods’ Attack More Than 1 Million Android Devices

Fake Minecraft Modpacks on Google Play deliver millions of abusive ads and make normal phone use impossible. (Threatpost)

Smart Doorbells on Amazon, eBay, Harbor Serious Security Issues

Matt Lewis, with NCC Group, talks to Threatpost about a slew of security and privacy issues found in smart doorbells that are being sold on Amazon and eBay. (Threatpost)

Baidu Apps in Google Play Leak Sensitive Data

Cyberattackers could use the information to track users across devices, disable phone service, or intercept messages and phone calls. (Threatpost)

Blackrota Golang Backdoor Packs Heavy Obfuscation Punch

Blackrota is targeting a security bug in Docker, but is nearly impossible to reverse-analyze. (Threatpost)

Tesla Hacked and Stolen Again Using Key Fob

Belgian researchers demonstrate third attack on the car manufacturer’s keyless entry system, this time to break into a Model X within minutes. (Threatpost)


/security-daily/ 25-11-2020 23:44:22