Cybersecurity Weekly: Model response to cyber attack, Ecuador data leak, whistleblower phishing site
Arizona schools demonstrate the model response to a malware attack. A marketing analytics company leaks deep profiles of the entire Ecuador population. A new phishing attack targets the whistleblower submission site for The Guardian. All this, and more, in this week’s edition of Cybersecurity Weekly.
Top Security Awareness Posters
1. Arizona schools provide model for managing ransomware
On Wednesday, September 4, 2019, ransomware was discovered at Flagstaff Unified School District in Arizona. Schools were closed on Thursday and Friday of that week, but reopened after the weekend. No ransom was paid, and only two school days were lost. This case is a great example of how to prepare for and mitigate the effects of ransomware.
Read more »
2. Your users aren’t the weakest link — they’re integral to your security program
As a security concept, zero trust is based on the principle that organizations should never automatically trust anything inside or outside their perimeters. Instead, they must verify everyone and everything trying to connect to their systems before granting access. This is a responsibility held by everyone, and it requires a unified effort to be successful.
Read more »
3. Marketing analytics company leaks deep profiles of entire Ecuador population
A marketing analytics company just leaked personal information from the entire population of Ecuador. The leaked database includes records gleaned from Ecuadorian government registries, an automotive association and the Ecuadorian national bank. These leaked records included full names, date of birth, address, email address, phone numbers and taxpayer IDs.
Read more »
4. Phishing attack targets The Guardian's whistleblowing site
The Guardian's SecureDrop whistleblower submission site was mimicked by a phishing page that attempted to harvest the unique code names of its sources. Once the attackers gain access to a source's codename, they can login to The Guardian's real SecureDrop site and steal information and communications.
Read more »
5. U.S. sues Edward Snowden over his memoir
The former IT contractor turned whistleblower failed to get government clearance for the book's allegedly sensitive material and is now being sued for violation of non-disclosure agreements. the U.S. Attorney's Office said it aims “to recover all proceeds earned by Snowden because of his failure to submit his publication for pre-publication review.”
Read more »
6. The defender’s dilemma
Officials at the Homeland Security Department think they can bring more of that limited cyber talent into government by flipping the hiring process on its head. The Cyber Talent Management System, set to debut in early 2020, will do away with entire General Schedule system and give Homeland Security officials more flexibility in the jobs, salaries and benefits.
Read more »
7. Researcher drops phpMyAdmin zero-day affecting all versions
The flaw was given a medium rating because of its limited scope that only allows an attacker to delete any server configured in the setup page of a phpMyAdmin panel on a victim's server. However, the vulnerability is trivial to exploit because other than knowing the URL of a targeted server, an attacker doesn't need any other information, like the name of the databases.
Read more »
8. Emotet returns from summer vacation, ramps up stolen email tactic
Less than a month after reactivating its command and control servers, the Emotet botnet has come to life by spewing spam messages to countries around the globe. To protect against this revival of Emotet, people should employ strong passwords, opt in to multi-factor authentication and keep an eye out for unexpected email messages.
Read more »
9. 125 new flaws found in routers and NAS devices from popular brands
According to security researchers, all of the widely-used devices they tested had at least one web application vulnerability that could allow an attacker to gain remote shell access or access to the administrative panel of the affected device. These vulnerabilities include cross-site scripting (XSS), cross-site request forgery (CSRF), SQL injection and several others.
Read more »
Phishing simulations & training
10. Gamification: A winning strategy for cybersecurity training
Studies show that 90% of data breaches are caused by human error — usually caused by a phishing campaign or similar attack. As a result, employee security awareness training has come under sharp focus as companies work to combat the ongoing epidemic of cybercrime. So how can these companies get their employees to care about the training? Enter, gamification.
Read more »
- Reduce security events
- Reinforce cyber secure behaviors
- Strengthen cybersecurity culture at your organization
In this Series
- Cybersecurity Weekly: Model response to cyber attack, Ecuador data leak, whistleblower phishing site
- Canada Flipper Zero ban and new RustDoor macOS malware
- AnyDesk hack and iPhone patched kernel flaw
- Tesla Pwn2Own hacks and iOS push alerts abuse
- TeamViewer breach and Atlassian Jira outage
- Moscow ISP revenge hack and Microsoft Sharepoint bug warning
- X verified accounts hack and SpectralBlur macOS malware
- CISA default password alert and SOHO KV-botnet campaign
- New 5G modem flaws and Apple’s data breach report
- Staples cyberattack, Agent Racoon backdoor and other news
- British Library ransomware attack, Windows fingerprint authentication bypass
- Samsung UK data breach and ransomware actor’s SEC complaint
- ICBC ransomware attack and ChatGPT outage
- Boeing Lockbit ransomware attack, Apple’s vulnerability and WhatsApp mods spyware
- Octo Tempest hacking group and new iLeakage attack
- Okta support system breach and Google Ads fake KeePass campaign
- Skype DarkGate malware, Shadow PC breach and AvosLocker ransomware warning
- 23andMe data theft, MGM’s $100M ransomware loss and the Azure VM breach
- Malicious Bing Chat ads and FBI’s dual ransomware warning
- T-Mobile app glitch and fake Booking.com pages
- Airbus data leak, Cisco Webex ad malware and €345 million TikTok fine
- New Apple iMessage exploit and CISA’s Apache RocketMQ warning
- Forever 21 data breach and Android BadBazaar espionage
- Duolingo data leak and the Met Police IT hack
- Discord.io data breach and Ivanti Avalanche vulnerabilities
- UK Electoral Commission hack and Microsoft’s role in China email breach
- Salesforce email zero-day exploit and Microsoft Power Platform criticism
- Airlines disclose pilot data breach and the Microsoft Teams bug
- GravityRAT Android Trojan and new MOVEit Transfer flaw
- University of Manchester hack and Honda API flaws
- MOVEit zero-day exploit and the U.S. iPhone hack accusation
- Daam Android virus and Barracuda zero-day flaw
- TP-Link router exploit and 18-year-old charged with hacking DraftKings accounts
- Discord support hack and Toyota location data leak
- Twitter private tweets bug and Cisco phone router vulnerabilities
- Cisco XSS zero-day flaw and PaperCut vulnerabilities
- 3CX hackers hit critical infrastructure and secondhand routers cause security concerns
- Hyundai data breach and Microsoft’s warning to accountants
- Western Digital cloud breach and the MSI ransomware hack
- TMX loan data breach, Italy bans ChatGPT and WordPress Elementor Pro exploit
- ChatGPT data leak and Gmail message theft by North Korean hackers
- U.S. federal agency hack and the return of FakeCalls Android malware
- Massive AT&T data breach and fake jobs targeting security researchers
- U.S. Marshals service breach and TPM 2.0 security flaws
- Dangerous ChatGPT apps and food giant Dole ransomware attack
- GoDaddy malware installations, record-breaking DDoS attack and the new WhiskerSpy malware
- Reddit’s employees phished, healthcare firms targeted and the new Screenshotter malware
- JD Sports data breached, VMware ESXi servers attacked and the HeadCrab malware
- Yandex source code leaked, 4500+ WordPress sites hacked and the new SwiftSlicer malware
- PayPal accounts breached, Fortinet VPN flaw exploited, and the new Hook malware
- Twitter users’ emails leaked, ChatGPT used to write malware and Slack’s repository breach
- Reduce security events
- Reinforce cyber secure behaviors
- Strengthen cybersecurity culture at your organization
