Security daily (27-09-2021)

AWS achieves FedRAMP P-ATO for 18 additional services in the AWS US East/West and AWS GovCloud (US) Regions

We’re pleased to announce that 18 additional AWS services have achieved Provisional Authority to Operate (P-ATO) by the Federal Risk and Authorization Management Program (FedRAMP) Joint Authorization Board (JAB). The following are the 18 additional services with FedRAMP authorization for the US federal government, and organizations with regulated workloads: Amazon Cognito lets you add user […] (AWS Security Blog)

137 AWS services achieve HITRUST certification

We’re excited to announce that 137 Amazon Web Services (AWS) services are certified for the Health Information Trust Alliance (HITRUST) Common Security Framework (CSF) for the 2021 cycle. The full list of AWS services that were audited by a third-party auditor and certified under HITRUST CSF is available on our Services in Scope by Compliance […] (AWS Security Blog)

Newly-formed international alliances vow to improve cybersecurity, in moves China sees as affront

A coalition of four nations — Australia, India, Japan and the U.S. — has committed to promoting cybersecurity standards and practices as one of their chief goals, in one of several recent moves from countries widely viewed as a counter to China in cyberspace and elsewhere. The group, which calls itself the Quad, held its first in-person gathering on Friday. when President Joe Biden hosted Prime Minister Scott Morrison of Australia, Prime Minister Narendra Modi of India and Prime Minister Yoshihide Suga of Japan at the White House. “Today, we begin new cooperation in cyberspace and pledge to work together to combat cyber threats, promote resilience and secure our critical infrastructure,” the group said in a joint statement. The group will hold more meetings between its leaders and collaborate with industry on improving in areas like the development of secure software, and building up cybersecurity workforces, according to a fact […] The post Newly-formed international alliances vow to improve cybersecurity, in moves China sees as affront appeared first on CyberScoop. (CyberScoop)

Cybercrime is hitting communities of color at higher rates, study finds

Black people, Indigenous people, and people of color (BIPOC) are more likely to suffer from identity theft and financial impact from the fallout, according to survey data collected by internet security company Malwarebytes with the nonprofits Digitunity and the Cybercrime Support Network. The survey found, for instance, that just 47% of BIPOC respondents were able to avoid a financial impact due to identity theft, compared to 59% of overall respondents. Compared to overall respondents, BIPOC on average reported roughly $200 more in financial losses. “Forty-seven percent sounds like okay, well, that’s not so bad — it’s like 50-50 whether you’re losing money, right? But 47% is compared to 59% of all respondents,” said David Ruiz, an online privacy advocate at Malwarebytes. “That means that everyone else has a better chance at not being financially hit, everyone else has a better chance of skirting by kind of unscathed.” Ruiz says the […] The post Cybercrime is hitting communities of color at higher rates, study finds appeared first on CyberScoop. (CyberScoop)

Old Coal Plant Is Now Mining Bitcoin For A Utility Company

(News ≈ Packet Storm)

Frustrated Dev Drops Three Zero Day Vulns Affecting Apple iOS 15 After Six Month Wait

(News ≈ Packet Storm)

How To Find And Remove Spyware From Your Phone

(News ≈ Packet Storm)

Mr Goxx, The Crypto Trading Hamster Beat Human Investors

(News ≈ Packet Storm)

Microsoft Warns of FoggyWeb Malware Targeting Active Directory FS Servers

Microsoft on Monday revealed new malware deployed by the hacking group behind the SolarWinds supply chain attack last December to deliver additional payloads and steal sensitive information from Active Directory Federation Services (AD FS) servers. The tech giant's Threat Intelligence Center (MSTIC) codenamed the "passive and highly targeted backdoor" FoggyWeb, making it the threat actor tracked (The Hacker News)

Russian Turla APT Group Deploying New Backdoor on Targeted Systems

State-sponsored hackers affiliated with Russia are behind a new series of intrusions using a previously undocumented implant to compromise systems in the U.S., Germany, and Afghanistan. Cisco Talos attributed the attacks to the Turla advanced persistent threat (APT) group, coining the malware "TinyTurla" for its limited functionality and efficient coding style that allows it to go undetected. (The Hacker News)

New Android Malware Steals Financial Data from 378 Banking and Wallet Apps

The operators behind the BlackRock mobile malware have surfaced back with a new Android banking trojan called ERMAC that targets Poland and has its roots in the infamous Cerberus malware, according to the latest research. "The new trojan already has active distribution campaigns and is targeting 378 banking and wallet apps with overlays," ThreatFabric's CEO Cengiz Han Sahin said in an emailed (The Hacker News)

How Does DMARC Prevent Phishing?

DMARC is a global standard for email authentication. It allows senders to verify that the email really comes from whom it claims to come from. This helps curb spam and phishing attacks, which are among the most prevalent cybercrimes of today. Gmail, Yahoo, and many other large email providers have implemented DMARC and praised its benefits in recent years. If your company's domain name is (The Hacker News)

5 Steps to Securing Your Network Perimeter

Ekaterina Kilyusheva, head of the Information Security Analytics Research Group at Positive Technologies, offers a blueprint for locking up the fortress. (Threatpost)

Women, Minorities Are Hacked More Than Others

Income level, education and being part of a disadvantaged population all contribute to cybercrime outcomes, a survey suggests. (Threatpost)

EU: Russia Behind ‘Ghostwriter’ Campaign Targeting Germany

It's not the first time that the disinformation/spearphishing campaign, which originally smeared NATO, has been linked to Russia. (Threatpost)

3.8 Billion Users’ Combined Clubhouse, Facebook Data Up for Sale

Combined cache of data likely to fuel rash of account takeover, smishing attacks, experts warn.   (Threatpost)


/security-daily/ 28-09-2021 23:44:22