<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter

Get the latest headlines, summaries, and security news!

IT Security Newsletter - 5/17/2022

Top News

Russian cyber attack on Eurovision foiled by Italian authorities

On Saturday, Italy hosted the Eurovision Song Contest in Turin to an estimated worldwide audience of nearly 200 million people as it was broadcast on TV and live-streamed online. But if pro-Russian hackers had had their way, the long-running competition could have been disrupted, potentially preventing the broadcast from being seen or meddling with the vote. READ MORE...

Breaches

Engineering firm Parker discloses data breach after ransomware attack

The Parker-Hannifin Corporation announced a data breach exposing employees' personal information after the Conti ransomware gang began publishing allegedly stolen data last month. Parker is an Ohio-based corporation specializing in advanced motion and control technologies, with a strong focus in aerospace hydraulic equipment. It has a revenue of $15.6 billion and employs over 58,000 people. READ MORE...

Malware

Researchers devise iPhone malware that runs even when device is turned off

When you turn off an iPhone, it doesn't fully power down. Chips inside the device continue to run in a low-power mode that makes it possible to locate lost or stolen devices using the Find My feature or use credit cards and car keys after the battery dies. Now researchers have devised a way to abuse this always-on mechanism to run malware that remains active even when an iPhone appears to be powered down. READ MORE...


US links Thanos and Jigsaw ransomware to 55-year-old doctor

The US Department of Justice today said that Moises Luis Zagala Gonzalez (Zagala), a 55-year-old cardiologist with French and Venezuelan citizenship residing in Ciudad Bolivar, Venezuela, created and rented Jigsaw and Thanos ransomware to cybercriminals. Zagala (aka Nosophoros, Aesculapius, and Nebuchadnezzar) also offered support to cybercriminals who bought the malware and shared profits earned after ransoming victims worldwide. READ MORE...

Exploits/Vulnerabilities

Hackers target Tatsu WordPress plugin in millions of attacks

Hackers are massively exploiting a remote code execution vulnerability, CVE-2021-25094, in the Tatsu Builder plugin for WordPress, which is installed on about 100,000 websites. Up to 50,000 websites are estimated to still run a vulnerable version of the plugin, although a patch has been available since early April. Large attack waves started on May 10, 2022 and peaked four days later. Exploitation is currently ongoing. READ MORE...


BLE vulnerability may be exploited to unlock cars, smart locks, building doors, smartphones

A Bluetooth Low Energy (BLE) vulnerability discovered by NCC Group researchers may be used by attackers to unlock Teslas (or other cars with automotive keyless entry), residential smart locks, building access systems, mobile phones, laptops, and many other devices. Bluetooth Low Energy (BLE) is a data sharing protocol developed by the Bluetooth Special Interest Group (Bluetooth SIG) and is widely used for proximity authentication in critical applications. READ MORE...

Encryption

NSA Cyber Chief Vows 'No Backdoors' in Quantum Encryption Standards

As the National Institute of Standards and Technology (NIST) is busy developing - and gathering industry buy-in - for a new set of quantum encryption standards, the cybersecurity chief for the National Security Agency (NSA) has vowed it won't build in a backdoor for snooping. In an interview, NSA director of cybersecurity Rob Joyce said, "There are no backdoors" being designed for spies to bypass new quantum encryption standards. READ MORE...

On This Date

  • ...in 1792, the New York Stock Exchange is formed.
  • ...in 1866, avant-garde composer Erik Satie, best known for his "Gymnopedies", is born in Honfleur, France.
  • ...in 1954, the Supreme Court rules unanimously against the practice of racial segregation in schools, in the case of Brown v. Board of Education.
  • ...in 1965, musician, film composer, and Nine Inch Nails founder Trent Reznor is born in New Castle, PA.