The launch of Disney Plus didn’t go exactly to plan, without hours of the streaming service going live, compromised Disney Plus user accounts credentials were being sold on the black market for as little as £2.30 a pop. Disney suggested hackers had obtained customer credentials from previously leaked identical credentials, as used by their customers on other compromised or insecure websites, and from keylogging malware. It's worth noting Disney Plus doesn’t use Multi-Factor Authentication (MFA), implementing MFA to protect their customer's accounts would have prevented the vast majority of Disney Plus account compromises in my view.
Trend Micro reported an insider stolen around 100,000 customer accounts details, with the data used by cyber con artists to make convincing scam phone calls impersonating their company to a number of their customers. In a statement, Trend Micro said it determined the attack was an inside job, an employee used fraudulent methods to access its customer support databases, retrieved the data and then sold it on. “Our open investigation has confirmed that this was not an external hack, but rather the work of a malicious internal source that engaged in a premeditated infiltration scheme to bypass our sophisticated controls,” the company said. The employee behind it was identified and fired, Trend Micro said it is working with law enforcement in an on-going investigation.
Security researchers found 4 billion records from 1.2 billion people on an unsecured Elasticsearch server. The personal information includes names, home and mobile phone numbers and email addresses and what may be information scraped from LinkedIn, Facebook and other social media sources.
T-Mobile reported a data breach of some their prepaid account customers. A T-Mobile spokesman said “Our cybersecurity team discovered and shut down malicious, unauthorized access to some information related to your T-Mobile prepaid wireless account. We promptly reported this to authorities”.
A French hospital was hit hard by a ransomware attack which has caused "very long delays in care". According to a spokesman, medical staff at Rouen University Hospital Centre (CHU) abandon PCs as ransomware had made them unusable, instead, staff returned to the "old-fashioned method of paper and pencil". No details about the strain of the ransomware have been released.
Microsoft released patches for 74 vulnerabilities in November, including 13 which are rated as critical. One of which was for a vulnerability with Internet Explorer (CVE-2019-1429), an ActiveX vulnerability known to be actively exploited by visiting malicious websites.
Trend Micro reported an insider stolen around 100,000 customer accounts details, with the data used by cyber con artists to make convincing scam phone calls impersonating their company to a number of their customers. In a statement, Trend Micro said it determined the attack was an inside job, an employee used fraudulent methods to access its customer support databases, retrieved the data and then sold it on. “Our open investigation has confirmed that this was not an external hack, but rather the work of a malicious internal source that engaged in a premeditated infiltration scheme to bypass our sophisticated controls,” the company said. The employee behind it was identified and fired, Trend Micro said it is working with law enforcement in an on-going investigation.
Security researchers found 4 billion records from 1.2 billion people on an unsecured Elasticsearch server. The personal information includes names, home and mobile phone numbers and email addresses and what may be information scraped from LinkedIn, Facebook and other social media sources.
T-Mobile reported a data breach of some their prepaid account customers. A T-Mobile spokesman said “Our cybersecurity team discovered and shut down malicious, unauthorized access to some information related to your T-Mobile prepaid wireless account. We promptly reported this to authorities”.
A French hospital was hit hard by a ransomware attack which has caused "very long delays in care". According to a spokesman, medical staff at Rouen University Hospital Centre (CHU) abandon PCs as ransomware had made them unusable, instead, staff returned to the "old-fashioned method of paper and pencil". No details about the strain of the ransomware have been released.
Microsoft released patches for 74 vulnerabilities in November, including 13 which are rated as critical. One of which was for a vulnerability with Internet Explorer (CVE-2019-1429), an ActiveX vulnerability known to be actively exploited by visiting malicious websites.
It was a busy month for blog articles and threat intelligence news, all are linked below.
BLOG
- Tips for Brits to stay Secure on Black Friday
- The Challenges of UK Cyber Security Standards
- How Much is Your Data Worth on the Dark Web?
- GTP Security: Securing 5G Networks with a GTP Firewall
- A UK Small Business is hacked every 19 seconds
- Combating the Accidental Insider Data Leakage Threat
- Broken Security? Most Business Leaders aren't confident about their Cybersecurity
- For Caught in the Crossfire of Cyberwarfare
- Labour Party DDoS Cyber Attacks
- Cyber Security Businesses: Solving Challenges Through New Technologies
- Five Emails you don’t want in your Inbox
- Why Cybersecurity Breach Survivors are Valued Assets
- Researchers find security flaws in ‘Amazon’s Ring Video Doorbell Pro’ IoT device
- Eliminating the Social Media Cyber Security Blind Spot
- Microsoft Ignite Cyber Security Takeaways
- Cyber Security Roundup for October 2019
- Phishing Attacks remains a popular Money-Spinner for Cyber Criminals
NEWS
- Thousands of Disney Plus Accounts were Hacked and sold online for as little as £2.30 each
- Labour Party Hit by Two DDoS Attacks
- Recently Breached Capital One reassigns its CISO
- Trend Micro hit with Insider Attack
- Rouen Hospital turns to Pen and Paper after Cyber-Attack
- Data Breach Compromises T-Mobile Prepaid Accounts
- Unsecured Server Exposes 4 Billion Records of 1.2 Billion People
- Leaky Gekko Group Database Exposes Info on Hotel Brands, Travelers
- Microsoft Patches 74 Vulnerabilities, including 13 Critical for Windows, Exchange, Internet Explorer and Mac Office
- VMware Patches Five Security Vulnerabilities
- Intel Platform Update: 77 Vulnerabilities Patched, 2 Critical
- Adobe November Patch Tuesday
- Google Camera App Flaw endangered Millions of Devices
- Design Flaw leaves Bluetooth Devices Vulnerable
- Dexphot Malware uses Fileless Techniques to install Cryptominer
- ACBbackdoor Trojan Designed to hit Linux and Windows systems
- Attackers attempt large-scale BlueKeep exploit to Spread Cryptominer
- Chinese APT group Calypso Hacked state
- APT33 using small, elusive Botnets against Global Targets
- US Feds warn against Hidden Cobra’s Hoplight Malware
- Fin7 behind DiBella’s Data Breach affecting 305,000 cards
- New NextCry Ransomware targets NextCloud Sync and Share Solution
- Adversary Harbouring DopplePaymer Ransomware Targets Industrial Sector
- Report: Genuine HR emails trigger suspicions after accidentally using common Phishing Tricks
No comments:
Post a Comment