Security daily (25-02-2021)

Fall 2020 PCI DSS report now available with eight additional services in scope

We continue to expand the scope of our assurance programs and are pleased to announce that eight additional services have been added to the scope of our Payment Card Industry Data Security Standard (PCI DSS) certification. This gives our customers more options to process and store their payment card data and architect their cardholder data […] (AWS Security Blog)

Vietnamese hackers spent years harassing human rights activists with spyware

For the past several years a Vietnamese hacking group best known for its attacks on the auto sector has been targeting activists and non-governmental organizations with spyware, according to an Amnesty International investigation published Wednesday. The suspected government-linked hackers, known as OceanLotus or APT32, specifically targeted pro-democracy activist Bui Thanh Hieu, who writes about human rights and economic justice, with spyware on four occasions between February 2018 and December 2019, according to the investigation. The same group launched spyware against a blogger, who has written on a violent police clash in Vietnam in 2009, three times between July and November of last year. Bui Thanh Hieu has been exiled in Germany since 2013. Amnesty did not identify the blogger out of concern for their safety. The hackers also went after the Vietnamese Overseas Initiative for Conscience Empowerment (VOICE), which works on behalf of Vietnamese refugees resettling, in April of 2020. […] The post Vietnamese hackers spent years harassing human rights activists with spyware appeared first on CyberScoop. (CyberScoop)

S3 Ep21: Cryptomining clampdown, the 100-ton man, and ScamClub ads [Podcast]

Latest episode - listen now! (Naked Security)

Npower App Attack Exposed Customers' Bank Details

(News ≈ Packet Storm)

Chart Shows Connections Between Cybercrime Groups

(News ≈ Packet Storm)

Ukraine Says Russia Planted Malware In Its Document Portal

(News ≈ Packet Storm)

Cisco Warns Of Critical Auth Bypass Security Flaw

(News ≈ Packet Storm)

McDonald's Has An Intel Team Spying On Workers

(News ≈ Packet Storm)

Four New Hacking Groups Are Targeting Critical Infrastructure

(News ≈ Packet Storm)

SQL Triggers in Website Backdoors

Over the past year, there’s been an increasing trend of WordPress malware using SQL triggers to hide malicious SQL queries within compromised databases. These queries inject an admin level user into the infected database whenever the trigger condition is met. What makes this especially problematic for website owners is that most malware cleanup guides focus on the website files and data within specific database tables  — for example, wpusers, wpoptions, and wp_posts. Continue reading SQL Triggers in Website Backdoors at Sucuri Blog. (Sucuri Blog)

Cyberattacks Launch Against Vietnamese Human-Rights Activists

Vietnam joins the ranks of governments using spyware to crack down on human-rights defenders. (Threatpost)

Health Website Leaks 8 Million COVID-19 Test Results

A teenaged ethical hacker discovered a flawed endpoint associated with a health-department website in the state of Bengal, which exposed personally identifiable information related to test results. (Threatpost)

Malicious Mozilla Firefox Extension Allows Gmail Takeover

The malicious extension, FriarFox, snoops in on both Firefox and Gmail-related data. (Threatpost)


/security-daily/ 26-02-2021 23:44:27