Cyber Round-up for 27th November
Welcome to the latest edition of the Ironshare Cyber Round-up where we look back at the events of that last week and cover some of the news, posts, views, and highlights from the world of Security.
In this week’s round-up:
The new National Cyber Force (NCF) is working alongside the NCSC to improve and maintain the UK’s reputation as a world-leader in cyber power. The prime minister has announced plans to transform the country’s cyber capabilities with help from the NCF, which employs personnel from GCHQ, the Ministry of Defence and MI6. The director of GCHQ has stated that “the National Cyber Force operates in a legal, ethical and proportionate way to help defend the nation”. The NCF has received a lot of praise and we are interested to see the impact they have on the UK’s cyber power going forward.
Manchester United have confirmed that their operations were recently disrupted by a cyber-attack. This appears to have been a sophisticated attack carried out by an organised group of criminals. Despite the effort put into this attack, the effects were not too severe; the club’s systems were only shut down for a short period of time, and they believe that no personal data was compromised. The club were ready for their next fixture at Old Trafford, with all critical systems now fully operational.
Smart Doorbells have rapidly increased in popularity this year, which in turn makes them a bigger target for hackers. Many hackers have found these doorbells to be incredibly easy targets for their attacks, mostly due to weak password policies and a lack of data encryption. If you own, or are looking to buy, a smart doorbell, ensure that you enable two factor authentication and purchase one from a trusted provider to ensure you are protected.
Well known security firm, Sophos, has confirmed that they were recently affected by a security breach, which reportedly exposed customer support data. The company has not stated the number of customers affected but have stated that the exposed data includes first and last names, email addresses and contact number. Sophos have been seen issuing support emails to the affected customers, declaring that no action is required at this time. If a security firm as big as Sophos is capable of being attacked, then so are others, including small to medium businesses.
Over one million android users have fell victim to the recent Minecraft mod campaign, in which fake mod packages are advertised and available to download. Once on your device, the mod pack overwhelms the user with constant advertisements, rendering the device unusable. The malware also talks to a command and control server, which is used to send instructions; these commands include opening browsers, playing videos, and opening the app store in a seemingly random fashion. Reseachers advise removing the application from the device settings; this should prevent the attackers from continuing to overload your mobile phone.
Vulnerabilities & Updates
Security researchers have been working hard to find vulnerabilities in Tesla’s Model X, and one has succeeded. Lennert Wouters, a computer security student from Belgium, has discovered a way of overwriting the firmware in the Model X’s key fob, which allows the attacker to hijack the vehicle. This is Wouters’ third hack on Tesla in the last three years; he claims that his most recent exploit “only takes a few minutes to execute and requires inexpensive gear.”. In response to this discovery, Tesla is said to be rolling out over-the-air software updates, so owners of the Model X should be looking out for this.
cPanel recently discovered a critical vulnerability that would allow a remote attacker to bypass two factor authentication on the target account. Despite being able to bypass the 2FA protection, the attacker will still need valid credentials to log in. Reports have shown that this flaw is present in cPanel and Web Host Manager (WHM) software; a patch has been released, meaning that versions 18.104.22.168, 22.214.171.124 and 126.96.36.199 are protected.
If you are interested, more details can be found here.
And that is it for this week’s round-up, please don’t forget to tune in for new instalments every week.
Stay Safe, Secure and Healthy!
Edition #119 – 27th November 2020
Why not follow us on social media:
Ironshare – Security Simplified