25-10-202027-10-2020

Security daily (26-10-2020)

Twitter introduces banner debunking voter misinformation

Twitter launched a feature on its platform Monday that seeks to debunk misinformation about voting in a last minute effort to inform users of weaponized information operations. The feature, which appears as a a banner that greets Twitter users at the top of their feeds, already had a message for American voters Monday: People are spreading misinformation about election fraud and voting by mail. “You might encounter misleading information about voting by mail,” the banner reads. “Election experts confirm that voting by mail is safe and secure, even with an increase in mail-in ballots. Even so you might encounter unconfirmed claims that voting by mail leads to election fraud ahead of the 2020 US elections.” President Donald Trump has claimed without evidence that voting by mail is linked with fraud, when in reality mail-in ballot fraud-related cases are extremely rare. The announcement of the Twitter feature is just the latest effort from social […] The post Twitter introduces banner debunking voter misinformation appeared first on CyberScoop. (CyberScoop)

The worst part about finding Facebook disinformation is finding it again

When Facebook said in August it had removed a network of fake accounts that had been trying to amplify criticism of President Donald Trump, it gave some external researchers a sense of déjà vu. After all, Facebook had taken intermittent action against accounts, pages and groups that were misrepresenting themselves to promote China’s Communist Party, including specific removals of a campaign known as Spamouflage Dragon. The Spamouflage campaign apparently began in the summer of 2019 as a scheme to denounce pro-democracy protesters in Hong Kong, eventually shifting to demonize critics of Beijing and to praise China’s handling of the coronavirus pandemic. By August 2020, Facebook, like Twitter and YouTube, was still removing Spamouflage-affiliated accounts that bashed Trump’s inaction on the coronavirus and U.S. scrutiny of TikTok under its “coordinated inauthentic behavior” policy. Other networks of accounts also have managed to return to Facebook after they were detected and previously removed, […] The post The worst part about finding Facebook disinformation is finding it again appeared first on CyberScoop. (CyberScoop)

Pentagon's initiative for Black cyber students met with cautious optimism

Not everyone in the cybersecurity community is entirely optimistic about a new U.S. military program meant to extend educational resources to historically Black colleges and universities. For years, the Department of Defense has worked to extend cybersecurity resources to historically Black colleges and universities (HBCUs). A new initiative meant to improve access to cybersecurity resources at HBCUs and Minority Serving Institutions, though, is being met with some skepticism among prominent cyber practitioners and educational advocates. Backed by the National Security Agency and the Pentagon’s Office of Small Business Programs, the goal is to connect Black and minority universities with other colleges that already meet NSA cybersecurity curriculum standards. The aim is to share resources, such as labs and range time, and advice on curriculum development. The effort, known as the Cybersecurity Education Diversity Initiative (CEDI), also allocates $300,000 available for internships, the Pentagon said. “A lot of these programs almost end up being lip service,” said Camille Stewart, who […] The post Pentagon's initiative for Black cyber students met with cautious optimism appeared first on CyberScoop. (CyberScoop)

Data breach at Finnish psychotherapy center takes a darker turn with extortion attempts

The response to a data breach at a prominent Finnish psychotherapy practice intensified over the weekend after cybercriminals reportedly posted batches of patient information on the dark web and claimed that individual people could protect their data by directly paying a ransom. The breach at Vastaamo, which has locations throughout Finland, prompted an emergency meeting of the country’s Cabinet on Sunday. The company said the incident happened as early as November 2018. Local news reports say the attackers didn’t contact Vastaamo with any demands until September of this year. Neither the company nor Finnish investigators have released many details about the nature of the breach, but reports say the attackers initially sought a payment of about 450,000 euros to protect about 40,000 patient records. The company reportedly did not pay up. Given the scale of the attack and the sensitive nature of the stolen data, the case has become a […] The post Data breach at Finnish psychotherapy center takes a darker turn with extortion attempts appeared first on CyberScoop. (CyberScoop)

Naked Security Live – Who’s watching you? 5 mobile privacy tips

Here's the latest Naked Security Live video - enjoy (and please share with your friends)! (Naked Security)

How Politics, Injustice Shapes How We View Hacktivism

(News ≈ Packet Storm)

Privacy Ballot Measure Could Give You More Control Over Personal Data

(News ≈ Packet Storm)

Therapy Patients Blackmailed After Clinic Data Breach

(News ≈ Packet Storm)

Treasury Sanctions Russian Research Institute For Triton Attack

(News ≈ Packet Storm)

P.A.S. Fork v. 1.0 — A Web Shell Revival

A PHP shell containing multiple functions can easily consist of thousands of lines of code, so it’s no surprise that attackers often reuse the code from some of the most popular PHP web shells, like WSO or b374k. After all, if these popular (and readily available) PHP web shells do the job, there’s no need to code an entirely new tool. Instead of completely writing a new PHP shell, attackers are simply masking or cloaking the pre-existing code by using a variety of different obfuscation techniques to avoid detection. Continue reading P.A.S. Fork v. 1.0 — A Web Shell Revival at Sucuri Blog. (Sucuri Blog)

Experts Warn of Privacy Risks Caused by Link Previews in Messaging Apps

Cybersecurity researchers over the weekend disclosed new security risks associated with link previews in popular messaging apps that cause the services to leak IP addresses, expose links sent via end-to-end encrypted chats, and even unnecessarily download gigabytes of data stealthily in the background. "Links shared in chats may contain private information intended only for the recipients," (The Hacker News)

New Framework Released to Protect Machine Learning Systems From Adversarial Attacks

Microsoft, in collaboration with MITRE, IBM, NVIDIA, and Bosch, has released a new open framework that aims to help security analysts detect, respond to, and remediate adversarial attacks against machine learning (ML) systems. Called the Adversarial ML Threat Matrix, the initiative is an attempt to organize the different techniques employed by malicious adversaries in subverting ML systems. Just (The Hacker News)

Microsoft IE Browser Death March Hastens

Internet Explorer redirects more traffic to Edge Chromium browser as Microsoft warns of the upcoming demise of the once dominant browser. (Threatpost)

‘Among Us’ Mobile Game Under Siege by Attackers

Ongoing attacks on the wildly popular game Among Us are testing developers’ ability to keep up. (Threatpost)

Containerd Bug Exposes Cloud Account Credentials

The flaw (CVE-2020-15157) is located in the container image-pulling process. (Threatpost)

25-10-202027-10-2020

/security-daily/ 27-10-2020 23:44:23