All about Security, News, Events and Incidents

Discussion in 'Security and Anti-Virus Software' started by Dr. AMK, Apr 26, 2018.

  1. Dr. AMK

    Dr. AMK The Strategist

    Reputations:
    1,717
    Messages:
    1,260
    Likes Received:
    2,700
    Trophy Points:
    181
    [​IMG]
    Release of PoC Exploit for New Drupal Flaw Once Again Puts Sites Under Attack

    Only a few hours after the Drupal team releases latest updates to fix a new remote code execution flaw in its content management system software, hackers have already started exploiting the vulnerability in the wild. Announced yesterday, the newly discovered vulnerability (CVE-2018-7602) affects ...


    [​IMG]
    Hackers build a 'Master Key' that unlocks millions of Hotel rooms

    If you often leave your valuable and expensive stuff like laptop and passports in the hotel rooms, then beware. Your room can be unlocked by not only a malicious staff having access to the master key, but also by an outsider. A critical design vulnerability in a popular and widely used electronic ...


    [​IMG]
    Third Critical Drupal Flaw Discovered—Patch Your Sites Immediately

    Damn! You have to update your Drupal websites. Yes, of course once again—literally it’s the third time in last 30 days. As notified in advance two days back, Drupal has now released new versions of its software to patch yet another critical remote code execution (RCE) vulnerability, affecting its ...


    [​IMG]
    Police Shut Down World's Biggest 'DDoS-for-Hire' Service–Admins Arrested

    In a major hit against international cybercriminals, the Dutch police have taken down the world's biggest DDoS-for-hire service that helped cyber criminals launch over 4 million attacks and arrested its administrators. An operation led by the UK's National Crime Agency (NCA) and the Dutch Police, ...


    [​IMG]
    Google Redesigns Gmail – Here's a List of Amazing New Features

    Google has finally been rolling out its new massively redesigned Gmail for desktop and mobile to 1.4 billion of users worldwide, which might be the most significant single upgrade in Gmail's history. This huge revamped version of the email service now offers plenty of new features such as ...
     
    Last edited: Apr 28, 2018
    Primes and Vasudev like this.
  2. Dr. AMK

    Dr. AMK The Strategist

    Reputations:
    1,717
    Messages:
    1,260
    Likes Received:
    2,700
    Trophy Points:
    181
    LATEST NEWS Apr 27, 2018
    [​IMG]
    Amazon Alexa Has Got Some Serious Skills—Spying On Users!

    "Alexa, are you spying on me?" — aaaa.....mmmm.....hmmm.....maybe!!! Security researchers have developed a new malicious 'skill' for Amazon's popular voice assistant Alexa that can turn your Amazon Echo into a full-fledged spying device. Amazon Echo is an always-listening voice-activated smart ...
     
    Last edited: Apr 27, 2018
    Starlight5, Primes and Vasudev like this.
  3. Primes

    Primes Notebook Deity

    Reputations:
    697
    Messages:
    1,625
    Likes Received:
    570
    Trophy Points:
    131
    Last edited: Apr 27, 2018
    hmscott and Dr. AMK like this.
  4. Dr. AMK

    Dr. AMK The Strategist

    Reputations:
    1,717
    Messages:
    1,260
    Likes Received:
    2,700
    Trophy Points:
    181
    Why not you can just help me to update our forum with all security events around the world, I can't do that alone. I want to build a reference for our members and outsiders who will find this thread using Google or any search engines. And nice feed BTW.
     
  5. Dr. AMK

    Dr. AMK The Strategist

    Reputations:
    1,717
    Messages:
    1,260
    Likes Received:
    2,700
    Trophy Points:
    181
    The name of this thread is a little bit tricky, and maybe some members get confused about it, hope that no one will misunderstand, it's not means that it's for teaching how to hack, it's all about information security awareness and news, to help us protecting our self, our privacy and our business.
     
    Last edited: Apr 27, 2018
    Primes and hmscott like this.
  6. Primes

    Primes Notebook Deity

    Reputations:
    697
    Messages:
    1,625
    Likes Received:
    570
    Trophy Points:
    131
    Will do!
    I also recommend reading krebsonsecurity.com. It's not as daily, but alot more indepth.
    And for those who want a big infosec feed, check out @swiftonsecurity's infosec feed you can import.

    Maybe change it to The Infosec News Thread.
     
    Dr. AMK and hmscott like this.
  7. Dr. AMK

    Dr. AMK The Strategist

    Reputations:
    1,717
    Messages:
    1,260
    Likes Received:
    2,700
    Trophy Points:
    181
    Good suggestion, let us have more suggestions and then chose the best one, it's not good to ask moderators for changes many times. I created a vote.

    I'll appreciate If I can get members opinions by voting on the top of this thread, or there are any other suggestions please post it in a comment.
     
    Last edited: Apr 28, 2018
  8. Dr. AMK

    Dr. AMK The Strategist

    Reputations:
    1,717
    Messages:
    1,260
    Likes Received:
    2,700
    Trophy Points:
    181
    Last edited: Apr 30, 2018
  9. Dr. AMK

    Dr. AMK The Strategist

    Reputations:
    1,717
    Messages:
    1,260
    Likes Received:
    2,700
    Trophy Points:
    181
    UK Health Agency Switches to Windows 10 Citing WannaCry Ransomware Outbreak
    [​IMG]

    The UK Department of Health and Social Care has announced that it will transition all National Health Service (NHS) computer systems to Windows 10.

    Officials cited the operating system's more advanced security features as the primary reason for upgrading current systems, such as the SmartScreen technology included with Microsoft Edge (a Google Safe Browsing-like system) and Windows Defender, Microsoft's sneakily good antivirus product.

    WannaCry outbreak played a role
    Department officials didn't ignore the elephant in the room, and also referenced the damages caused by the WannaCry ransomware outbreak last year as one of the reasons for upgrading their infrastructure.

    The NHS was one of the first WannaCry victims last year, and one of the most harshly hit.

    In a report published last year, NHS officials said WannaCry hit more than a third of all NHS trusts and led to the cancelation of over 6,900 medical appointments across the UK, including critical operations, albeit there was no loss of human life because of the cyber-attack.

    According to Kaspersky and Microsoft telemetry, over 98 percent of all WannaCry victims were Windows 7 users.

    By moving its infrastructure to Windows 10, NHS officials hope to leverage the plethora of new security features added in Windows 10 to safeguard NHS networks from similar future incidents.

    UK govt plans to spend £150 million in the next three years
    The UK government said it spent £60 million ($82 million) since last year's outbreak to bolster NHS' security systems and plans to spend £150 million ($205 million) more over the next three years. Department officials didn't reveal the value of the Microsoft "Windows 10 upgrade" deal, but they said it's a "multi-million pound" package.

    Government officials also plan to create a new digital security operations center to prevent, detect and respond to similar cyber-security incidents. Other spending plans include:

    ⵙ £21 million to upgrade firewalls and network infrastructure at major trauma center hospitals and ambulance trusts
    ⵙ £39 million spent by NHS trusts to address infrastructure weaknesses
    ⵙ New powers given to the Care Quality Commission to inspect NHS trusts on their cyber and data security capabilities
    ⵙ A data security and protection toolkit which requires health and care organizations to meet ten security standards
    ⵙ A text messaging alert system to ensure trusts have access to accurate information – even when internet and email services are down
    For the past few years, UK antivirus maker has been the NHS' official antivirus provider. It is unclear if NHS plans to use Sophos products alongside Windows Defender on the upgraded Windows 10 systems.

    At the time of the WannaCry attack, Sophos was heavily criticized for its tardy response to the whole incident.
     
  10. Dr. AMK

    Dr. AMK The Strategist

    Reputations:
    1,717
    Messages:
    1,260
    Likes Received:
    2,700
    Trophy Points:
    181
    PoC Code Published for Triggering an Instant BSOD on All Recent Windows Versions
    [​IMG]

    A Romanian hardware expert has published proof-of-concept code on GitHub that will crash most Windows computers within seconds, even if the computer is in a locked state.

    The code exploits a vulnerability in Microsoft's handling of NTFS filesystem images and was discovered by Marius Tivadar, a security researcher with Bitdefender.

    NTFS bug & Windows autoplay feature don't go well together
    The expert's PoC contains a malformed NTFS image that users can take and place it on a USB thumb drive. Inserting this USB thumb drive in a Windows computer crashes the system within seconds, resulting in a Blue Screen of Death (BSOD).

    "Auto-play is activated by default," Tivadar wrote in a PDF document detailing the bug and its impact.

    "Even with auto-play [is] disabled, [the] system will crash when the file is accessed. This can be done for [example,] when Windows Defender scans the USB stick, or any other tool opening it."

    Microsoft declined to fix
    Tivadar contacted Microsoft about the issue in July 2017, but published the PoC code today after the OS maker declined to classify the issue as a security bug.

    Microsoft downgraded the bug's severity because exploiting it requires either physical access or social engineering (tricking the user).

    The researcher doesn't agree with Microsoft's decision. He first argues that physical access isn't necessarily required, as an attacker could deploy the PoC from afar using malware.

    NTFS bug also crashes locked PCs
    Tivadar also explained that the NTFS bug was more dangerous than Microsoft thinks because it also works while the PC is locked, a state when the researcher argues the OS shouldn't be reading data from random USB drives that were inserted into its ports.

    "I strongly believe that this behavior should be changed, [and] no USB stick/volume should be mounted when the system is locked," the researcher said. "Generally speaking, no driver should be loaded, no code should get executed when the system is locked and external peripherals are inserted into the machine."

    Tivadar published two videos on his personal Google Photos account showing the NTFS bug crashing a PC in normal and locked down states. Another PoC is also available on his Google Drive account.

    For now, Tivadar's PoC will become one of the hottest pieces of code on GitHub, as any prankster will be looking to add it to his arsenal.
     
    Starlight5 likes this.
Loading...

Share This Page