Critical Infrastructure Security , Cybercrime as-a-service , Fraud Management & Cybercrime Company Has Taken Systems Offline As A Precaution; Investigation Ongoing Scott Ferguson (Ferguson_Writes) • May 8, 2021 A Colonial Pipeline facility outside Birmingham, Alabama (Photo: Flickr) This is a breaking news story. Check back for additional details. See Also: Live Webinar |…
Critical Infrastructure Security , Cybercrime as-a-service , Fraud Management & Cybercrime Company Has Taken Systems Offline As A Precaution; Investigation Ongoing Scott Ferguson (Ferguson_Writes) • May 8, 2021 A Colonial Pipeline facility outside Birmingham, Alabama (Photo: Flickr) This is a breaking news story. Check back for additional details. See Also: Live Webinar |…
A high severity security vulnerability found in Qualcomm’s Mobile Station Modem (MSM) chips (including the latest 5G-capable versions) could enable attackers to access mobile phone users’ text messages, call history, and listen in on their conversations. Qualcomm MSM is a series of 2G, 3G, 4G, and 5G capable system on chips (SoCs) used in roughly 40%…
One of the largest pipelines in the US has been taken offline by its operator following a cyberattack. First reported by the New York Times, Colonial Pipeline, which carries 45 percent of the fuel supplies for the eastern US, said in a statement late Friday that it took “certain systems offline to contain the threat,…
E Hacking News – Latest Hacker News and IT Security News 8. May 2021 Security researchers have found extreme domain name system (DNS) fixes that hackers may use to conduct constructive denial-of-service attacks on authoritative DNS servers. The bug they refer to as TsuNAME has been discovered by researchers from SIDN Labs and InternetNZ. The…
In an apparent industry first, the global insurance company AXA said Thursday it will stop writing cyber-insurance policies in France that reimburse customers for extortion payments made to ransomware criminals. AXA, among Europe’s top five insurers, said it was suspending the option in response to concerns aired by French justice and cybersecurity officials during a…
Endpoint Security , Governance & Risk Management , Hardware / Chip-level Security Check Point Report Describes Flaw’s Technical Details Prajeet Nair (@prajeetspeaks) • May 7, 2021 (Photo: Shutterstock) A severe vulnerability in a system on certain Qualcomm chips, which has been patched, potentially could have enabled attackers to remotely control Android smartphones, access…
Cryptocurrency Fraud , Cybercrime , Fraud Management & Cybercrime Malware Spread Through Spam Email Campaign Prajeet Nair (@prajeetspeaks) • May 7, 2021 Researchers at Trend Micro have uncovered a new cryptocurrency stealer variant that uses a fileless approach in its global spam email distribution campaign to evade detection. See Also: Live Webinar |…
Attackers can use a newly disclosed domain name server (DNS) vulnerability publicly known as TsuNAME as an amplification vector in large-scale reflection-based distributed denial of service (DDoS) attacks targeting authoritative DNS servers. In simpler terms, authoritative DNS servers translate web domains to IP addresses and pass this info to recursive DNS servers that get queried…
Scientists are trialling a pill that could minimise the effects of Covid-19 after a patient has been infected. The drug called Favipiravir is licensed in Japan for flu. Kevin Blyth, professor of respiratory medicine at the University of Glasgow said he hoped the trial results would be out later this year. He told BBC World…
