Cyber Security Roundup for July 2019

July was a month of mega data privacy fines. The UK Information Commissioners Office (ICO) announced it intended to fine British Airways £183 million for last September's data breach, where half a million BA customer personal records were compromised. The ICO also announced a £100 million fine for US-based Marriot Hotels after the Hotel chain said 339 million guest personal data records had been compromised by hackers. Those fines were dwarfed on the other side of the pond, with Facebook agreeing to pay a US Federal Trade Commission (FTC) fine of $5 billion dollars, to put the Cambridge Analytica privacy scandal to bed. And Equifax paid $700 million to FTC to settle their 2017 data breach, which involved the loss of at least 147 million personal records. Big numbers indeed, we are seeing the big stick of the GDPR kicking in within the UK, and the FTC flexing some serious privacy rights protection punishment muscles in the US. All 'food for thought' when performing cybersecurity risk assessments.

Through a Freedom of Information request, the UK Financial Conduct Authority (FCA) disclosure a sharp rise of over 1000% in cyber-incidents within UK financial sector in 2018. In my view, this rise was fueled by the mandatory data breach reporting requirement of the GDPR, given it came into force in May 2018. I also think the finance sector was reluctant to report security weakness pre-GDPR, over fears of damaging their customer trust. Would you trust and use a bank if you knew its customers were regularly hit by fraud?

Eurofins Scientific, the UK's largest forensic services provider, which was taken down by a mass ransomware attack last month, paid the cybercrooks ransom according to the BBC News. It wasn't disclosed how much Eurofins paid, but it is highly concerning when large ransoms are paid, as it fuels further ransomware attacks.

A man was arrested on suspicion of carrying out a cyberattack against Lancaster University. The UK National Crime Agency said university had been compromised and "a very small number" of student records, phone numbers and ID documents were accessed. In contrast, the FBI arrested a 33 old software engineer from Seattle, she is alleged to have taken advantage of a misconfigured web application firewall to steal a massive 106 million personal records from Capital One. A stark reminder of the danger of misconfiguring and mismanaging IT security components.

The Huawei international political rhetoric and bun fighting has gone into retreat. UK MPs said there were no technological grounds for a complete Huawei ban, while Huawei said they were 'confident' the UK will choose to include it within 5G infrastructure. Even the White House said it would start to relax the United States Huawei ban. It seems something behind the scenes has changed, this reversal in direction is more likely to be financially motivated than security motivated in my rather cynical view.

A typical busy month for security patch releases, Microsoft, Adobe and Cisco all releasing the expected barrage of security updates for their products. There was security updates released by Apple as well, however, Google researchers announced six iPhone vulnerabilities, including one that remains unpatched.

BLOG

• Four Key Questions to ask following a Cyber Attack
• How to Prevent Insider Data Breaches at your Business
• Cyber Security Roundup for June 2019

NEWS

• ICO to fine BritishAirways £183 Million for Data Breach
• ICO to fine Marriot nearly £100 Million for 2018 Data Breach 
• Cyber-Incident Reports from the UK Finance Sector spiked by 1,000% in 2018
• Facebook pay $5 billion fine over the Cambridge Analytica Scandal
• UK Forensic Services firm Eurofins Scientific Paid Ransom after Cyber-Attack
• Capital One Hacker who stole Personal information on 106M individuals Arrested
• Equifax to pay up to $700m to settle Data Breach
• Former Equifax executive sentenced to prison for insider trading prior to Data Breach 
• E.On 'error’ Reveals 498 Customers’ Email Addresses
• Fake Voices 'help cyber-crooks steal cash’
• Internet wobble caused by Cloudflare Glitch 
• Lancaster University cyber-attack Suspect Arrested

VULNERABILITIES AND SECURITY UPDATES

• Microsoft Patches 77 Vulnerabilities, including 16 Critical for Windows, IE, .NET, SQL Server, Visual Studio & Chakra
• Google Researchers Discover Six iPhone Vulnerabilities, One Unpatched
• Cisco Releases Updates for 10 High-Rated Vulnerabilities 
• Mozilla’s latest Firefox releases Fix 21 Bugs
• Adobe’s July Patch Tuesday includes Bridge CC, Experience Manager, Dreamweaver fixes
• Apple Patches Bugs in Four Operating systems and Safari browser 
• Apple Watch bug allowed iPhone Eavesdropping
• Intel releases Updates for Processor Diagnostic tool and SSD DC S4500/S4600 Series
• Cisco releases Updates for ASA DoS Vulnerability
• Cisco releases Updates, One ‘Critical,’ Two ‘High’ Severity ratings

HUAWEI NEWS AND THREAT INTELLIGENCE

• No technological grounds for complete Huawei ban, say MPs
• Huawei 'confident' UK will choose to include it within 5G infrastructure 
• US to start to relax Huawei ban, announces White House

AWARENESS, EDUCATION AND THREAT INTELLIGENCE

• Flaws in Visa Contactless Cards allow for bypass of anti-fraud checks, researchers warn
• BlueKeep built into exploitation tool, sparks fear of WannaCry style infections
• APT34 Spread Malware via LinkedIn invites
• APT-hunting group claims China’s Security Ministry is behind APT17
• Ke3chang APT group linked to Okrum Backdoor
• Scams use false alerts to target Office 365 users 
• Cybersecurity Should Be Handled by Law Enforcement and Government, Report