IT Security Newsletter

IT Security Newsletter - 7/24/2020

Written by Cadre | Fri, Jul 24, 2020

Krebs on Security: NY Charges First American Financial for Massive Data Leak

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in connection with the incident, charges that could bring steep financial penalties. READ MORE...

Garmin Suffers Reported Ransomware Attack

Garmin, maker of fitness trackers, smartwatches and GPS-related products, has reportedly suffered a widespread ransomware attack - though the facts around the cause remain unconfirmed for now. The manufacturer tweeted on Thursday that its Garmin Connect service is down, Garmin is a free app for tracking, analyzing and sharing health and fitness activities from a Garmin device. READ MORE...

UK govt warns of ransomware, BEC attacks against sports sector

The UK National Cyber Security Centre (NCSC) today highlighted the increasing risks posed by ransomware attacks, phishing campaigns, and Business Email Compromise (BEC) fraud schemes targeting sports organizations and teams, including Premier League football clubs. According to the cybersecurity agency's data primarily sourced from an Ipsos MORI survey commissioned by the agency. READ MORE...

Malicious 'Blur' Photo App Campaign Discovered on Google Play

A new campaign of malicious photo apps on Google Play floods Android devices with random ads instead of functioning as advertised. They also elude detection by making its icon disappear from the device home screen soon after it's downloaded. Researchers at the White Ops Satori Threat Intelligence and Research Team discovered the Android apps - 29 in total - which they said "manifested suspiciously high volumes of ad traffic" during threat-hunting investigations, according to a recent report. READ MORE...

Deepfakes or not: new GAN image stirs up questions about digital fakery

Subversive deepfakes that enter the party unannounced, do their thing, then slink off into the night without anybody noticing are where it's at. Easily debunked clips of Donald Trump yelling THE NUKES ARE UP or something similarly ludicrous are not a major concern. We've already dug into why that's the case. What we've also explored are the people-centric ways you can train your eye to spot stand-out flaws and errors in deepfake imagery. READ MORE...

Chinese-made drone app in Google Play spooks security researchers

The Android version of DJI Go 4-an app that lets users control drones-has until recently been covertly collecting sensitive user data and can download and execute code of the developers' choice, researchers said in two reports that question the security and trustworthiness of a program with more than 1 million Google Play downloads. The app is used to control and collect near real-time video and flight data from drones made by China-based DJI. READ MORE...

ASUS Home Router Bugs Open Consumers to Snooping Attacks

A pair of flaws in ASUS routers for the home could allow an attacker to compromise the devices - and eavesdrop on all of the traffic and data that flows through them. The bugs are specifically found in the RT-AC1900P whole-home Wi-Fi model, within the router's firmware update functionality. Originally uncovered by Trustwave, ASUS has issued patches for the bugs, and owners are urged to apply the updates as soon as they can. READ MORE...

Meet the 4 frontrunners in the COVID-19 vaccine race

Researchers have now reported data from early (and small) clinical trials of four candidate COVID-19 vaccines. So far, the data is positive. The vaccines appear to be generally safe, and they spur immune responses against the novel coronavirus, SARS-CoV-2. But whether these immune responses are enough to protect people from infection and disease remains an important unknown. The four candidates are now headed to larger trials-phase III trials-that will put them to the ultimate test. READ MORE...

  • ...in 1911, American archeologist Hiram Bingham re-discovers the lost Incan citadel of Machu Picchu in the Peruvian mountains.
  • ...in 1943, WWII's Operation Gomorrah begins, with UK and American bombers raiding Hamburg over the course of four months.
  • ...in 1958, US Vice President Richard Nixon and Soviet Premier Nikita Khrushchev have their famous "Kitchen Debate" at the American National Exhibition in Moscow.
  • ...in 1969, Apollo 11 splashes down safely in the Pacific Ocean. Two years later, Mission Commander Neil Armstrong becomes a professor at the University of Cincinnati.