IT Security Newsletter - 03/30/2021
Cyber attack forces live TV shows off-air on Australia's Channel 9
Live broadcasts from Australia's Channel 9 TV network were disrupted this weekend following what is believed to have been a cyber attack. As Channel Nine's "Weekend Today" programme was scheduled to go live on air, the show's presenters were forced to turn to Twitter to explain their absence. Pre-recorded programmes were played on the channel as the "technical issues" were investigated by the station's IT team. READ MORE...
And that's yet another UK education body under attack from ransomware: Servers, email, phones yanked offline
The Harris Federation, a not-for-profit charity responsible for running 50 primary and secondary academies in London and Essex, has become the latest UK education body to fall victim to ransomware. The institution itself claimed it was "at least" the fourth multi-academy trust targeted just this month alone. In a message to pupils and parents, the group, which is led and run by teachers, admitted that criminals had meddled with its servers. READ MORE...
Pair of Apex Legends Players Banned for DDoS Server Attacks
Predator-ranked players on Xbox console game version rigged matches with DDoS attacks. Two high-ranked Apex Legends players have been banned from the platform for cheating by launching distributed denial-of-service (DDoS) attacks on an Xbox server. The players, who had achieved the rank of "Apex Predators" in the console version of the game haven't been named, but the whole thing went down publicly on Reddit's r/apexlegends forum over the weekend. READ MORE...
Hades Ransomware Gang Exhibits Connections to Hafnium
The Hades ransomware gang has several unique characteristics that set it apart from the rest of the pack, according to researchers - including potentially having more than extortion on the to-do list. The group appears to use multiple nation-state tools and techniques. The researchers said that its investigations into the group's cyberattacks at the end of 2020 suggest one of two possibilities: There is an advanced persistent threat (APT) is operating under the guise of Hades [...]" READ MORE...
93% of consumers concerned about data security when filling out online forms
Source Defense provides in-depth analysis of the client-side threat landscape and specific attacks like formjacking, Magecart and web browser threats. The research offers a rare window on web security sentiments for a population relying almost exclusively on websites for all manner of shopping, healthcare, financial services and other essential needs during the pandemic. Key findings : 93% of consumers are concerned about data security when filling out online forms... READ MORE...
After oil giant Shell hit by Clop ransomware, workers' visas dumped online as part of extortion attempt
Royal Dutch Shell is the latest corporation to be infected by the Clop ransomware. The criminals behind the malware have siphoned internal documents from the oil giant, and publicly leaked some of the data - notably a selection of workers' passport and visa scans - to chivy the corporation along to pay the ransom. Earlier this month, the oil giant admitted its systems had been compromised, writing in a statement that "an unauthorized party gained access to various files [...]" READ MORE...
5G slicing vulnerability could be used in DoS attacks
The IT security researchers at AdaptiveMobile have called out what looks like an important vulnerability in the architecture of 5G network slicing and virtualized network functions. They warn that the risks, if this fundamental vulnerability in the design of 5G standards had gone undiscovered, are significant. What is 5G? 5G is the 5th generation mobile network. It is the fifth new global wireless standard after (you'll never guess) 1G, 2G, 3G, and 4G. READ MORE...
Vulnerability in 'netmask' npm Package Affects 280,000 Projects
A vulnerability in the netmask npm package could expose private networks and lead to a variety of attacks, including malware delivery. The newly identified issue (which is tracked as CVE-2021-28918) resides in the fact that the package would incorrectly read octal encoding, essentially resulting in the misinterpretation of supplied IP addresses. Designed to parse IPv4 CIDR blocks to allow for their comparison and exploration, netmask is highly popular, registering millions of weekly downloads. READ MORE...
Harris Federation hit by ransomware attack affecting 50 schools
The IT systems and email servers of London-based nonprofit multi-academy trust Harris Federation were taken down by a ransomware attack on Saturday. Harris Federation is an education charity running 50 Harris primary and secondary academies with 37,000 students from London and surrounding areas. IT, phone, and email systems are down. The attack hit the school trust's systems over the weekend on Saturday, March 27, and led to the compromise and encryption of Harris Federation's IT systems. READ MORE...
The one reason your iPhone needs a VPN
For years, Apple has marketed its iPhone as the more secure, more private option when compared to other smart phones, which do not, by default, include an end-to-end encrypted messaging app, warn users repeatedly about app location requests, or provide a privacy-forward Single Sign-On feature. But, while Apple has taken several, commendable steps into protecting users, the company's reach only goes so far, which means that it alone cannot stop threat actors from snooping on users. READ MORE...
How well have remote workers adapted one year on?
Remote workers are still struggling with distracting working environments, stress and an 'always-on' culture after a year of working from home, an Egress research has revealed. One year on report found that three-quarters of remote workers reported feeling worse as a result of long-term working from home, with 39% feeling more stressed. The research also revealed a significant generational divide. READ MORE...
- ...in 1867, U.S. Secretary of State William H. Seward signs a treaty with Russia for the purchase of Alaska for $7.2 million.
- ...in 1930, actor John Astin, best known as Gomez Addams on "The Addams Family", is born in Baltimore, MD.
- ...in 1962, rapper MC Hammer ("U Can't Touch This", "2 Legit 2 Quit") is born Stanley Kirk Burrell in Oakland, CA.
- ...in 1964, the game show Jeopardy! debuts on NBC, hosted by Art Fleming.