IT Security Newsletter - 5/11/2023
North Korean hackers breached major hospital in Seoul to steal data
The Korean National Police Agency (KNPA) warned that North Korean hackers had breached the network of one of the country's largest hospitals, Seoul National University Hospital (SNUH), to steal sensitive medical information and personal details. The incident occurred between May and June 2021, and the police conducted an analytical investigation during the past two years to identify the perpetrators. READ MORE...
RapperBot Crew Drops DDoS/CryptoJacking Botnet Collab
The RapperBot campaign is bringing in some fresh talent to its arsenal of malware beats, adding cryptomining capability to its existing distributed denial-of-service (DDoS) botnet malware in order to expand its financial horizons. According to a RapperBot analysis released this week by Fortinet's FortiGuard Labs, the cryptojacking element of the malware is a customized variant of the well-known XMRig Monero miner, tailored specifically for Intel x64 machines. READ MORE...
Microsoft Fixes Failed Patch for Exploited Outlook Vulnerability
Call it a patch for a broken patch. Microsoft's May 2023 security update includes a patch for a vulnerability that allows attackers to easily bypass a fix the company issued in March for a critical privilege-escalation bug in Outlook that attackers have already exploited. That bug, tracked as CVE-2023-23397, allows attackers a way to steal a user's password hash by coercing the victim's Microsoft Outlook client to connect to an attacker-controlled server. READ MORE...
Capita Says Ransomware Attack Will Cost It Up to $25 Million
UK-based business process outsourcing and professional services company Capita said on Wednesday that it expects to incur costs ranging between roughly £15 million ($19 million) and £20 million ($25 million) as a result of the recent cybersecurity incident, but it has not clarified whether that includes a ransom payment to the hackers. The breach came to light on March 31, but it took until April 3 for the company to confirm that the cause was a cyberattack. READ MORE...
Details Disclosed for Exploit Chain That Allows Hacking of Netgear Routers
Industrial and IoT cybersecurity firm Claroty on Thursday disclosed the details of five vulnerabilities that can be chained in an exploit potentially allowing threat actors to hack certain Netgear routers. The vulnerabilities were first presented at the 2022 Pwn2Own Toronto hacking competition, where white hat hackers earned a total of nearly $1 million for exploits targeting smartphones, printers, NAS devices, smart speakers and routers. READ MORE...
Leak of MSI UEFI signing keys stokes fears of "doomsday" supply chain attack
A ransomware intrusion on hardware manufacturer Micro-Star International, better known as MSI, is stoking concerns of devastating supply chain attacks that could inject malicious updates that have been signed with company signing keys that are trusted by a huge base of end-user devices, a researcher said. "??It's kind of like a doomsday scenario where it's very hard to update the devices simultaneously," Alex Matrosov, CEO of security firm Binarly, said in an interview. READ MORE...
IBM Delivers Roadmap for Transition to Quantum-safe Cryptography
IBM has introduced a quantum-safe roadmap to help the complex organizational transition to post-quantum cryptography at this year's annual Think conference. There are deadlines by which federal agencies must complete the transition to quantum-safe cryptography. Business is expected to follow the same path, but it is a long and difficult route. IBM has developed a three-stage solution it calls the IBM Quantum Safe Roadmap. READ MORE...
Rethinking democracy for the age of AI
There is a lot written about technology's threats to democracy. Polarization. Artificial intelligence. The concentration of wealth and power. I have a more general story: The political and economic systems of governance that were created in the mid-18th century are poorly suited for the 21st century. They don't align incentives well. And they are being hacked too effectively. READ MORE...
- ...in 1904, surrealist painter Salvador Dali is born in Catalonia, Spain.
- ...in 1918, Nobel Prize-winning physicist and engineer Richard Feynman is born in New York City.
- ...in 1946, scientist Robert Jarvik, the designer of the revolutionary Jarvik-7 artificial heart, is born in Midland, MI.
- ...in 1997, IBM's supercomputer Deep Blue defeats grandmaster Garry Kasparov in a six-game match, becoming the first machine to defeat a world-champion human player.