Cyber Round-up

Cyber Round-up for 4th October

Welcome to the Ironshare Cyber Round-up where we look back at the events of that last week and cover some of the news, posts, views, and highlights from the world of Security.

In this week’s round-up:

Security News

Email Spoofing Costing Businesses Billions

Email spoofing is becoming more of an issue for companies of all sizes and the best thing we can do is spread awareness. It only takes one employee falling for this type of deception for your entire company to potentially collapse, so ensuring everyone understands what to look out for is a big priority. Spoofing methods such as Business Email Compromise is done by impersonating a user’s email (typically an executive) and requesting something from the company that seems legitimate; this often results in a massive loss of money for the company affected. This post details the different types of spoofing and how to be aware of them. We recommend you take a look and educate your staff to help protect your business.


US Hospitals Forced to Turn Away Patients Following Ransomware Attack

The DCH Health System has reported that a cyber-criminal is restricting use of their computer systems until a payment is made. Ransomware is reportedly affecting the operation of three hospitals in Alabama, and the limitations have forced them to turn away patients. In a separate incident, seven hospitals in Australia have been hit by ransomware, resulting in their computer systems being shut down. The loss of patient record, booking and management services has significantly hindered their ability to operate. Cyber Incident Response Services for the Australian Government have reportedly had to deal with more than 600 cyber-attacks since July 2018, and the problem doesn’t seem to be getting any better.


AMP Free Trial


Mobile Game Developer Zynga Hit by Data Breach

The mobile gaming industry is massive, which makes big developers like Zynga a prime target for hackers. The company amassed an estimated $671 million in 2018 and is expected to have earned much more by the end of this year. Zynga are responsible for making games such as Farmville, Mafia Wars and Zynga Poker, which are all very popular; one of their more popular games, Words with Friends, has reportedly suffered a data breach affecting all players on both Android and iOS. The breach apparently contains the names, email addresses, login IDs, hashed passwords and connected social media IDs. This breach is massive, and we recommend that any users who have installed this game reset their passwords on all linked accounts to prevent further compromise.


Critical Vulnerability in Jamf Pro Management Software

Users of the Jamf Pro management software are being urged to update to 10.15.1 as soon as possible. A flaw was recently discovered in the software that could allow an attacker to remotely execute code and delete files from your computer systems. Although no attacks have been reported in the wild, this is still a potentially dangerous vulnerability; however, it only affects versions older than 10.15.1 so we recommend updating when you can.


Cisco Umbrella Trial

Vulnerabilities & Updates

vBulletin Software Vulnerability Exploited in Comodo Forums Breach

Cybersecurity firm, Comodo, has suffered a potential data breach on their forums due to a flaw in the vBulletin software, which the site uses for its forum commenting. This vulnerability appears to have been exploited, resulting in a breach affecting 245,000 registered users. No further details have been disclosed by Comodo however they do recommend an immediate password change for all forum users as a precaution. The firm have apologized for any inconveniences and have confirmed that they are working hard to implement the appropriate security measure to ensure this doesn’t happen again.    


Chrome UI Removing Legacy TLS Versions

Despite the decreased usage of legacy TLS versions, the risk presented by them is something that Chrome plans to remove entirely. Their plan to remove support for TLS 1.0 and 1.1 is said to arrive in Chrome 81. Starting on January 13, 2020, Chrome will begin a pre-removal phase, where a warning will be issued when accessing a site using these legacy TLS versions. These outdated configurations will no longer be supported from March 2020, and Chrome will begin blocking connections to sites using them. This is all part of a larger plan to improve the overall security of the internet and move into a safer future.


And that’s it for this week round-up, please don’t forget to tune in for our next instalment.

Why not follow us on social media using the links provided on the right.

Edition #61 – 4th October 2019

Ironshare – Security Simplified