IT Security Newsletter - 1/26/2023
Zacks Investment Research Hack Exposes Data for 820K Customers
An older database of Zacks Market Research was accessed by an unauthorized party, compromising the personal data associated with 820,000 users' Zacks.com accounts. The company, which offers financial markets research, disclosed the breach as required to the Maine attorney general, and reported that the cyberattack occurred sometime between November 2021 and last August. READ MORE...
Experian Glitch Exposing Credit Files Lasted 47 Days
On Dec. 23, 2022, KrebsOnSecurity alerted big-three consumer credit reporting bureau Experian that identity thieves had worked out how to bypass its security and access any consumer's full credit report - armed with nothing more than a person's name, address, date of birth, and Social Security number. Experian fixed the glitch, but remained silent about the incident for a month. READ MORE...
Attackers use portable executables of remote management software to great effect
Tricking users at targeted organizations into installing legitimate remote monitoring and management (RMM) software has become a familiar pattern employed by financially motivated attackers. No organization is spared, not even agencies of the US federal civilian executive branch - as the Cybersecurity and Infrastructure Security Agency (CISA) warned on Wednesday. READ MORE...
UK Gov Warns of Phishing Attacks Launched by Iranian, Russian Cyberspies
The United Kingdom's National Cyber Security Centre (NCSC) has published an advisory to warn organizations and individuals about separate spearphishing campaigns conducted by Russian and Iranian cyberespionage groups. The advisory focuses on activities conducted by the Russia-linked Seaborgium group (aka Callisto, Blue Callisto and Coldriver) and the Iran-linked TA453 (aka Charming Kitten, APT35, Magic Hound, NewsBeef, Newscaster and Phosphorus). READ MORE...
Malware exploited critical Realtek SDK bug in millions of attacks
Hackers have leveraged a critical remote code execution vulnerability in Realtek Jungle SDK 134 million attacks trying to infect smart devices in the second half of 2022. Exploited by multiple threat actors, the vulnerability is tracked as CVE-2021-35394 and comes with a severity score of 9.8 out of 10. Between August and October last year, sensors from Palo Alto Networks observed significant exploitation activity for this security issue, accounting for more than 40% of the total number of incidents. READ MORE...
Chinese Hackers Adopting Open Source 'SparkRAT' Tool
A Chinese threat actor tracked as DragonSpark has been using the SparkRAT open source remote administration tool (RAT) in recent attacks targeting East Asian organizations, cybersecurity firm SentinelOne reports. Relatively new, SparkRAT is a multi-platform RAT written in Golang that can run on Windows, Linux, and macOS systems, and which can update itself with new versions available through its command and control (C&C) server. READ MORE...
Exploit released for critical Windows CryptoAPI spoofing bug
Proof of concept exploit code has been released by Akamai researchers for a critical Windows CryptoAPI vulnerability discovered by the NSA and U.K.'s NCSC allowing MD5-collision certificate spoofing. Tracked as CVE-2022-34689, this security flaw was addressed with security updates released in August 2022, but Microsoft only made this public in October, when the advisory was first published. READ MORE...
ChatGPT is a bigger threat to cybersecurity than most realize
A language-generating AI model called ChatGPT, available for free, has taken the internet by storm. While AI has the potential to help IT and security teams become more efficient, it also enables threat actors to develop malware. In this interview with Help Net Security, Daniel Spicer, Chief Security Officer for Ivanti, talks about what this technology means for cybersecurity. READ MORE...
- ...in 1925, film actor, director, and charitable entrepreneur Paul Newman ("Cool Hand Luke", "The Sting") is born in Shaker Heights, OH.
- ...in 1961, NHL leading scorer Wayne Gretzky -- "The Great One" -- is born in Brantford, Ontario.
- ...in 1978, the Great Blizzard of '78 arrives with 100 mph winds, burying Ohio and much of the Midwest in up to 36" of snow.
- ...in 1992, Russian President Boris Yeltsin announces that Russia will stop targeting US cities with nuclear weapons.