| |1. U.S. Sanctions North Korean Hackers | AvastСб., 14 сент.[−]
This week the U.S. Department of the Treasury announced sanctions targeting North Korean state-sponsored hacking groups, including Lazarus, which paralyzed 300,000 computers in 150 countries with the 2017 WannaCry ransomware attack.
|↑|2. DDoS Attack Takes Down Wikipedia | AvastПт., 13 сент.[−]
Last Friday, the Wikimedia Foundation issued a statement that a malicious attack had forced its popular information site Wikipedia to go offline for intermittent periods in several countries. The foundation confirmed to Forbes that it had been hit by a massive DDoS (Distributed Denial of Service) attack – an onslaught of access requests meant to overwhelm a system so it malfunctions or shuts down. DDoS attacks, typically carried out by botnets, can involve hundreds of thousands, sometimes millions, of hijacked servers commanded to issue concurrent and nonstop access requests. Forbes reported that Wikipedia went offline in the U.K., France, Germany, Italy, The Netherlands, Poland, and parts of the Middle East.
|↑|4. How Hackers Set The Pace | AvastСр., 11 сент.[−]
In cybersecurity, the bad guys almost always have a head start on the good guys. There are several reasons for this, but basically security is fundamentally reactive, and there is asymmetry in the battle.
|↑|6. Exposed Facebook Server Leaks 419M Records | AvastПт., 06 сент.[−]
A security researcher discovered an exposed server that contained several databases of information on over 419 million Facebook accounts, Tech Crunch reported. Predominantly listing users’ phone numbers and Facebook IDs, the server also exposed other bits of data such as gender, country, and full name for certain users. Sources say 133 million of the breached records pertain to U.S.-based Facebook users, while the rest expose accounts in the U.K. and Vietnam. Facebook made a policy change last year that disabled the feature allowing users to find each other using phone numbers, leading a Facebook spokesperson to deduce that the data on the exposed server is at least a year old. In the wrong hands, the leaked data could put users at risk of spam calls and SIM-swapping attacks. There is no evidence yet, however, that any user has been impacted by the breach. Avast Security Evangelist Luis Corrons expects that Facebook will release more news about the server once the company conducts an internal investigation. “It seems clear,” he added, “that the less personal data users add to their Facebook profile, the better, as sooner or later that data will be compromised.”
|↑|7. Flaw Allows Phony Provisioning Alerts on Androids | AvastЧт., 05 сент.[−]
Cybersecurity researchers have identified a critical flaw in the Android smartphones built by Samsung, Huawei, LG, and Sony, whereby a bad actor could potentially infiltrate a victim’s phone using a phony provisioning message. Mobile operators send out provisioning messages as SMS texts when they make internal changes to their systems, and the messages request user approval to change the device’s network settings. The vulnerability was disclosed to the smartphone makers in March this year. Forbes reported estimates that as many as 1.25 billion Android users could be at risk.
|↑|8. Avast Finds Child Trackers Unsecured From Hackers | AvastЧт., 05 сент.[−]
Avast researchers have discovered serious security vulnerabilities in some 600,000 child trackers for sale on Amazon.com and other large online merchants. The devices expose data sent to the cloud, including the exact real-time GPS coordinates of children.
|↑|9. Deepfake Voice Fraud Causes $243,000 Scam | AvastЧт., 05 сент.[−]
A UK-based energy firm was scammed out of $243,000 when criminals targeted the company with an effective vishing campaign. “Vishing” is short for “voice phishing,” the tactic of tricking targets over the phone. This incident marks the first time AI-based voice fraud has netted such a high payload, according to The Next Web.
|↑|10. The Internet’s First Smart Device | AvastВт., 03 сент.[−]
In 1990, there were 3 million people on the internet. (Today there are 1,000 times that many.) And while there were experiments – such as a “wired” soda machine at Carnegie Mellon University – there were no smart devices online, at least not as we think of them today. It was an internet of no things. (Today there are 7 billion – not including computers and mobile devices.)