Cyber Round-up for 10th May
Welcome to the Ironshare Cyber Round-up where we look back at the events of that last week and cover some of the news, posts, views, and highlights from the world of Security.
In this week’s round-up:
Action Fraud, a division of the UK Police Force and the reporting centre for fraud and cyber crime, has reported that holiday fraud saw a significant increase in 2018 in comparison to 2017. Take a look at their post to understand the risk and get tips on how to stay safe online. With over 5,000 people losing more the £7 million last year, can you afford to be the next victim.
By Action Fraud.
Data recovery experts have discovered that an alarming number of second-hand hard disk drives, that are believed to have been securely wiped, still contain sensitive data. The drives were purchased on eBay and were found to include personally identifiable information, corporate data and a large number of emails.
At least 390 Github Code Repos have been targeted by a hacker, who is removing the source code and demanding a ransom to recover it. A ransom note is left behind stating that 0.1 Bitcoin should be sent to the attacker to get access to their code. Weak passwords and Git config files containing access credentials are thought to the be cause.
A new variant of the Dharma ransomware is masquerading as an ESET AV Remover, to distract its victims while it encrypts their files in the background. A phishing email is used for initial infection, which convinces the user there is an issue with their PC and recommends the download and execution of a Defender.exe malicious attachment, resulting in the user’s data becoming unusable.
By Bleeping Computer.
During March, Barracuda Networks identified an increase in Office 365 account takeovers, seeing thousands of accounts compromised. These compromised accounts were then used by the bad actors to send more than 1.5 million malicious spam emails, in an effort to acquire more victims. Office 365 accounts continue to be a prime target for hackers, so ensure that your organisation is protected.
By Trend Micro
Vulnerabilities & Updates
ESET Researchers have identified a backdoor in Microsoft’s Exchange server they have called LightNeuron. This malicious Mail Transport Agent can read, modify and block email as well as creating new emails. This backdoor is actively being exploited by Russian actors that are likely to be nation state sponsored.
Google has released its Android Security updates for May this week. Patches seem to be a little light this month, including fixes for 4 critical vulnerabilities, 10 high and 1 moderate. Pixel users can get hold of these updates immediately while Android smartphones from other vendors may have to wait a while before they are available.
By Sophos – Naked Security
And that’s it for this week round-up, please don’t forget to tune in for our next instalment.
Why not follow us on social media using the links provided on the right.
Edition #40 – 10th May 2019
Ironshare – Security Simplified