Security daily (27-08-2020)

DOJ and Cyber Command partner up in civil forfeiture claim targeting North Korea’s financial hacks

The U.S. Department of Justice has filed a civil forfeiture complaint targeting the North Korean government’s hacking of two cryptocurrency exchanges last year. The hacks, which allegedly took place in July 2019 and September 2019, resulted in the theft of millions of dollars’ worth of cryptocurrency and financial instruments, according to the DOJ’s complaint, which was filed in a Washington, D.C. federal court on Thursday. The filing comes amid a broad effort in the U.S. government to hold North Korea accountable for its hacking operations, particularly those that seek to fund the regime amid international sanctions. It comes just one day after the U.S. government exposed details of other, more recent North Korean government financial hacking operations — aimed at stealing cash from ATMs around the globe. But the complaint filed Thursday reveals a new wrinkle in the U.S. military’s efforts to target North Korean hacking: The DOJ said it […] The post DOJ and Cyber Command partner up in civil forfeiture claim targeting North Korea’s financial hacks appeared first on CyberScoop. (CyberScoop)

Cloud company Fastly to purchase app security provider Signal Sciences for $775 million

The cloud services company Fastly said Thursday it intends to acquire Signal Sciences for $775 million. The deal for Los Angeles-based Signal Sciences, which provides security monitoring and digital defenses for web applications, is for $200 million in cash and roughly $575 million in Class A stock, the companies said in an announcement. The deal is subject to “customary adjustments for transactions of this nature,” they said. Fastly also will set up a $50 million retention pool for restricted stock meant to current Signal Sciences employees. The transaction brings Signal Sciences into Fastly’s service, a content distribution platform that protects against distributed denial-of-service (DDoS) attacks, automated bot traffic and provides an application firewall. Now, the plan is to include Signal Science’s technology, which encompasses API protection, into a new security product. Word of the deal comes after Palo Alto Networks announced it would acquire Crypsis Group, an incident response firm, for $265 […] The post Cloud company Fastly to purchase app security provider Signal Sciences for $775 million appeared first on CyberScoop. (CyberScoop)

TikTok's security boss makes his case. Carefully.

Roland Cloutier, the global chief security officer for ByteDance, says he still doesn’t understand why the U.S. government has labeled TikTok as a national security threat. The video-sharing social media company, owned by Beijing-based ByteDance, filed a lawsuit in U.S. federal court Monday challenging a White House executive order that effectively will ban the app unless TikTok is sold by Nov. 12. Then, news broke Thursday that TikTok chief executive Kevin Mayer had resigned, three months after he was hired, amid reports that he’d been excluded from acquisition talks. U.S. officials have said that commercial apps with roots in China, like TikTok, present a risk to national security by enabling the Chinese Communist Party to sweep up Americans’ personal and location data. Researchers, meanwhile, have suggested that TikTok collects much of the same information as other social media apps. The dispute resembles the 2018 debate over Kaspersky Lab, in which the […] The post TikTok's security boss makes his case. Carefully. appeared first on CyberScoop. (CyberScoop)

Russian cybercrime suspect arrested in $1m ransomware conspiracy

When ransomware hits, there are always 3 questions. How much? Did they pay? And the big one: How did the crooks get in? (Naked Security)

How to Fuzz Parameters, Directories & More with Ffuf

The art of fuzzing is a vital skill for any penetration tester or hacker to possess. The faster you fuzz, and the more efficiently you are at doing it, the closer you come to achieving your goal, whether that means finding a valid bug or discovering an initial attack vector. A tool called ffuf comes in handy to help speed things along and fuzz for parameters, directors, and more.

What Is Fuzzing?

Fuzzing, or fuzz testing, is the automated process of providing malformed or random data to software to discover bugs. Typically, when it comes to pentesting, a wordlist is used to iterate through... more (Null Byte « WonderHowTo)

Your Email Threads Are Now Being Hijacked By The QBot Trojan

(News ≈ Packet Storm)

iOS 14 Privacy Settings Will Tank Ad Targeting Business

(News ≈ Packet Storm)

Hurricane Laura Brings Catastrophic Storm Surge And Fearsome Winds To Gulf Coast

(News ≈ Packet Storm)

North Korean Hackers Ramp Up Bank Heists

(News ≈ Packet Storm)

QakBot Banking Trojan Returned With New Sneaky Tricks to Steal Your Money

A notorious banking trojan aimed at stealing bank account credentials and other financial information has now come back with new tricks up its sleeve to target government, military, and manufacturing sectors in the US and Europe, according to new research.

In an analysis released by Check Point Research today, the latest wave of Qbot activity appears to have dovetailed with the return of (The Hacker News)

Ex-Cisco Employee Pleads Guilty to Deleting 16K Webex Teams Accounts

Former Cisco employee Sudhish Kasaba Ramesh admitted to accessing Cisco’s cloud infrastructure and deleting 16,000 Webex Teams employee accounts. (Threatpost)

Facebook Hits Back At Apple’s iOS 14 Privacy Update

While privacy experts praised Apple’s upcoming iOS 14 updates, Facebook said the new features could cut its advertising business in half. (Threatpost)

Magecart’s Success Paves Way For Cybercriminal Credit Card ‘Sniffer’ Market

Magecart's successes have led to threat actors actively advertising 'sniffers' that can be injected into e-commerce websites in order to exfiltrate payment cards. (Threatpost)

Malicious Attachments Remain a Cybercriminal Threat Vector Favorite

Malicious attachments continue to be a top threat vector in the cybercriminal world, even as public awareness increases and tech companies amp up their defenses. (Threatpost)

Revamped Qbot Trojan Packs New Punch: Hijacks Email Threads

New version of trojan is spreading fast and already has claimed 100,000 victims globally, Check Point has discovered. (Threatpost)


/security-daily/ 28-08-2020 23:44:21