SBS CyberSecurity - In The Wild 131

In The Wild - CyberSecurity Newsletter

Welcome to the 131st issue of In The Wild, SBS’ weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information you may find helpful.
Related image
Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the Internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy.
Image result for sbs cybersecurity twitter

[Download] FDIC InTREx - What Documentation Are You Expected To Have?

SBS Educational Resources

The FDIC rolled-out the Information Technology Risk Examination procedures (InTREx) in 2016. These procedures are used by FDIC, Federal Reserve, and State Examiners and make expectations regarding required documentation from financial institutions a bit clearer. We hope this list of documentation pulled from the InTREx procedures helps you as you update your Information Security Program documentation and as you prepare for your next IT examination.
Read Here »  

The Risk of Weak Online Banking Passwords

Krebs on Security

If you bank online and choose weak or re-used passwords, there’s a decent chance your account could be pilfered by cyberthieves — even if your bank offers multi-factor authentication as part of its login process. This story is about how crooks increasingly are abusing third-party financial aggregation services like Mint, Plaid, Yodlee, YNAB, and others to surveil and drain consumer accounts online.
Read Here »  

Bribed AT&T Workers Planted Malware on Carrier's Network

BankInfoSecurity

Over a five-year period, two men allegedly paid over $1 million in bribes to AT&T employees who helped plant malware on the company's internal systems that enabled the unlocking of smartphones to permit use outside the carrier's network, according to an indictment unsealed this week by the U.S. Department of Justice. In addition to planting malware, these AT&T employees allegedly accessed the carrier's internal systems and installed illegal hardware within the network to help the suspects gain remote access and unlock millions of smartphones, according to the indictment.
Read Here »  

Ransomware Attacks On Businesses Up 365% This Year

Tech Republic

Ransomware is back with a vengeance, according to Malwarebytes's Cybercrime Tactics and Techniques: Ransomware Retrospective report. The malware is delivered through spear-phishing emails and locks up valuable data assets, demanding a ransom to release them. While ransomware made headlines a few years back as a consumer problem, it was sidelined as other attacks became more popular among cybercriminals. But this year, the threat has come back to life, switching from mass consumer campaigns to highly-targeted attacks on businesses that will give cybercriminals a bigger bang for their buck, according to the report.
Read Here »  
Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! »


Slow Your Roll Before Disclosing a Security Incident

Dark Reading

Security incidents happen all the time, but when one actually strikes an organization, security professionals often find themselves uncertain whether it needs to be disclosed to the public or shared with law enforcement right away. For example, back in 2006, an unknown user gained unauthorized access to a large number of electronic records on the McCombs School of Business computers at the University of Texas in Austin. But before disclosing what happened, it took the time to determine what information was accessed, lost, or possibly modified, as well as how long the issue had been going on. UT-Austin also needed to understand exactly what information about the security incident it was able to share with the public.
Read Here »  

Apple Will Now Pay Up To $1 Million for Reporting Vulnerabilities

The Hacker News

Apple has just updated the rules of its bug bounty program by announcing a few major changes during a briefing at the annual Black Hat security conference yesterday. Apple has enormously increased the maximum reward for its bug bounty program from $200,000 to $1 million—that's by far the biggest bug bounty offered by any major tech company for reporting vulnerabilities in its products. The $1 million payouts will be rewarded for a severe deadly exploit—a zero-click kernel code execution vulnerability that enables complete, persistent control of a device's kernel.
Read Here »  

State Farm Falls Victim to Credential-Stuffing Attack

threatpost

State Farm Insurance is notifying customers that accounts have been compromised by hackers in a credential-stuffing attack. Credential-stuffing is accomplished by hackers who take advantage of users who often reuse the same passwords across multiple online accounts. The cyberattackers use stolen passwords and user names from previous data breaches to brute-force accounts on a wide scale, and when a match is found, they can take over the victim’s account.
Read Here »  

9 Things Emotionally Intelligent People Never Say

Inc.com

Leaders have enough to worry about without worrying about saying the wrong thing. But not all verbal violations are created equal. Sometimes saying the wrong thing just makes you look emotionally (and intellectually) dumb. And in today's business world, emotional intelligence is becoming more and more of a make or break factor. So here's the breakdown – you won't catch the highest EQ leaders saying any of the following:
Read Here »

Image result for sbs cybersecurity twitter

10 Other Interesting Links From This Week

There were too many fantastic reads from this past weeks’ worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:
*      KrebsonSecurity: Who Owns Your Wireless Service? Crooks Do.
*      KrebsonSecurity: iNSYNQ Ransom Attack Began With Phishing Email
*      Bleeping Computer: Steam Zero-Day Vulnerability Affects Over 100 Million Users
*      Bleeping Computer: Android Apps With Over 100M Installs Contain a Clicker Trojan
*      The Hacker News: Reverse RDP Attack Also Enables Guest-to-Host Escape in Microsoft Hyper-V
*      The Hacker News: Over 40 Drivers Could Let Hackers Install Persistent Backdoor On Windows PCs
*      BankInfoSecurity: Democratic Campaign Group Left 6 Million Emails Exposed
*      Wired: How a 10-Year-Old Desk Phone Bug Came Back From the Dead
*      Security Intelligence: Package Delivery! Cybercriminals at Your Doorstep
*      Forbes: Facebook Knows Less About Data Privacy Than Mr. Potato​ Head And It Just Cost Them $5 Billion

Comments

Post a Comment

Popular posts from this blog

KnowBe4 - Scam Of The Week: "When Users Add Their Names to a Wall of Shame"

Image
Eric Howes , KnowBe4 Principal Lab Researcher, found out about another insidious bad guy trick: " If you work in IT there has undoubtedly come a dark moment when you wondered to yourself just who among your employee users would be gullible enough to click through a phishing email and potentially bring down your organization. from KnowBe4 Security Awareness Training Blog https://blog.knowbe4.com/when-users-add-their-names-to-a-wall-of-shame
Read more

Krebs - NY Charges First American Financial for Massive Data Leak

Image
In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in connection with the incident, charges that could bring steep financial penalties. First American Financial Corp. Santa Ana, Calif.-based  First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. It employs some 18,000 people and brought in $6.2 billion in 2019 . As first reported here last year , First American’s website exposed 16 years worth of digitized mortgage title insurance records — including bank account numbers and statements, mortgage and tax records, Social Security numbers, wire transaction receipts, and drivers license images. The d...
Read more

Krebs - U.S. Army Soldier Arrested in AT&T, Verizon Extortions

Image
Federal authorities have arrested and indicted a 20-year-old U.S. Army soldier on suspicion of being Kiberphant0m , a cybercriminal who has been selling and leaking sensitive customer call records stolen earlier this year from AT&T and Verizon . As first reported by KrebsOnSecurity last month, the accused is a communications specialist who was recently stationed in South Korea. One of several selfies on the Facebook page of Cameron Wagenius. Cameron John Wagenius , 20, was arrested near the Army base in Fort Hood, Texas on Dec. 20, after being indicted on two criminal counts of unlawful transfer of confidential phone records. The sparse, two-page indictment (PDF) doesn’t reference specific victims or hacking activity, nor does it include any personal details about the accused. But a conversation with Wagenius’ mother — Minnesota native Alicia Roen — filled in the gaps. Roen said that prior to her son’s arrest he’d acknowledged being associated with Connor Riley Moucka ...
Read more