Security daily (25-08-2021)

New in October: AWS Security Awareness Training and AWS Multi-factor Authentication available at no cost

You’ve often heard us talk about security being “Job Zero” at Amazon, and today I’m happy to announce two new initiatives that I think will provide quick security wins for customers. The first initiative is the public release of the training we’ve developed and used to ensure our employees are up to date on how […] (AWS Security Blog)

White House rolls out pipeline, supply chain security initiatives as companies pledge billions in cyber spending

The Biden administration on Wednesday announced initiatives to bolster supply chain and natural gas pipeline security, following a White House private sector cybersecurity summit where major companies pledged billions of dollars in cyber spending. The National Institute of Standards and Technology will collaborate with industry to develop guidelines for building secure technology, in the first of two administration initiatives. In the other, the administration formally expanded its industrial control systems cybersecurity initiative — under which 150 electric utilities agreed to deploy control system security tech — to natural gas pipelines. Tech giants, insurance companies and educational organizations exit the summit with cybersecurity commitments large and small. Among those vowing the biggest dedication of dollars: Microsoft announced $20 billion over five years to integrate “cybersecurity by design,” which means incorporating security into products as they’re being built, while Google announced $10 billion over the same period to expand “zero trust” programs, […] The post White House rolls out pipeline, supply chain security initiatives as companies pledge billions in cyber spending appeared first on CyberScoop. (CyberScoop)

Voting is now open for CyberScoop 50

The post Voting is now open for CyberScoop 50 appeared first on CyberScoop. (CyberScoop)

FCC proposes record $5 million robocall fine for voter suppression scam

The Federal Communications Commission Tuesday proposed a roughly $5.1 million fine against right wing operatives John Burkman and Jacob Wohl, as well as Burkman’s lobbying firm, for hundreds of robocalls ahead of the 2020 election in which they allegedly used false claims to discourage Americans from voting by mail. The pair, both vocal supporters of former president Donald Trump, allegedly violated federal law that prohibits making pre-recorded calls to a wireless phone without user consent. The FCC found that between late August and early September last year the pair sent robocalls to over 1,000 individuals claiming that if they vote by mail, their information “will be part of a public database that will be used by police departments to track down old warrants and be used by credit card companies to collect outstanding debts.” The call, which encouraged voters to “stay home safe” also falsely claimed that the data would […] The post FCC proposes record $5 million robocall fine for voter suppression scam appeared first on CyberScoop. (CyberScoop)

Apple, JPMorgan Chase bosses among industry heads set to gather at White House for cyber 'call to action'

President Joe Biden will huddle Wednesday with industry leaders to issue a “call to action” on cybersecurity and make “concrete announcements” to counter the fundamental causes of cyberattacks, according to a senior administration official. It’s a star-studded afternoon gathering scheduled to include the likes of Apple CEO Tim Cook and JPMorgan Chase CEO Jamie Dimon from the financial, technology, energy, insurance and education sectors, then feature discussions led by top administration officials. The White House has been working to secure commitments from industry in advance of the meeting, mostly in the areas of “technology and talent,” the official said in a background call with reporters on Tuesday. Two points of emphasis, the official said, are building technology that is secure from the outset, and better defending critical infrastructure after the ransomware attack on Colonial Pipeline led to a fuel scare. “We need to bake in security by design into tech,” […] The post Apple, JPMorgan Chase bosses among industry heads set to gather at White House for cyber 'call to action' appeared first on CyberScoop. (CyberScoop)

Proofpoint Wins $14 Million In IP Theft Court Battle

(News ≈ Packet Storm)

These Four Rising Gangs Could Be Your Next Major Security Threat

(News ≈ Packet Storm)

Custom WhatsApp Build Delivers Triada Malware

(News ≈ Packet Storm)

Pegasus Spyware Uses iPhone Zero-Click iMessage Zero-Day

(News ≈ Packet Storm)

Critical Flaw Discovered in Cisco APIC for Switches — Patch Released

Cisco Systems on Wednesday issued patches to address a critical security vulnerability affecting the Application Policy Infrastructure Controller (APIC) interface used in its Nexus 9000 Series Switches that could be potentially abused to read or write arbitrary files on a vulnerable system. Tracked as CVE-2021-1577 (CVSS score: 9.1), the issue — which is due to improper access control — could (The Hacker News)

Preventing your Cloud 'Secrets' from Public Exposure: An IDE plugin solution

I'm sure you would agree that, in today's digital world, the majority of applications we work on require some type of credentials – to connect to a database with a username/password, to access computer programs via authorized tokens, or API keys to invoke services for authentication. Credentials, or sometimes just referred to as 'Secrets,' are pieces of user or system-level confidential (The Hacker News)

Researchers Uncover FIN8's New Backdoor Targeting Financial Institutions

A financially motivated threat actor notorious for setting its sights on retail, hospitality, and entertainment industries has been observed deploying a completely new backdoor on infected systems, indicating the operators are continuously retooling their malware arsenal to avoid detection and stay under the radar. The previously undocumented malware has been dubbed "Sardonic" by Romanian (The Hacker News)

B. Braun Infusomat Pumps Could Let Attackers Remotely Alter Medication Dosages

Cybersecurity researchers have disclosed five previously unreported security vulnerabilities affecting B. Braun's Infusomat Space Large Volume Pump and SpaceStation that could be abused by malicious parties to tamper with medication doses without any prior authentication. McAfee, which discovered and reported the flaws to the German medical and pharmaceutical device company on January 11, 2021,  (The Hacker News)

New SideWalk Backdoor Targets U.S.-based Computer Retail Business

A computer retail company based in the U.S. was the target of a previously undiscovered implant called SideWalk as part of a recent campaign undertaken by a Chinese advanced persistent threat group primarily known for singling out entities in East and Southeast Asia. Slovak cybersecurity firm ESET attributed the malware to an advanced persistent threat it tracks under the moniker SparklingGoblin (The Hacker News)

Cisco Issues Critical Fixes for High-End Nexus Gear

Networking giant issues two critical patches and six high-severity patches. (Threatpost)

Win10 Admin Rights Tossed Off by Yet Another Plug-In

Then again, you don’t even need the actual device – in this case, a SteelSeries peripheral – since emulation works just fine to launch with full SYSTEM rights. (Threatpost)

US Media, Retailers Targeted by New SparklingGoblin APT

The new APT uses an undocumented backdoor to infiltrate the education, retail and government sectors. (Threatpost)

California Man Hacked iCloud Accounts to Steal Nude Photos

Hao Kou Chi pleaded guilty to four felonies in a hacker-for-hire scam that used socially engineered emails to trick people out of their credentials. (Threatpost)


/security-daily/ 26-08-2021 23:44:25