E Hacking News – Latest Hacker News and IT Security News 8. May 2021 Security researchers have found extreme domain name system (DNS) fixes that hackers may use to conduct constructive denial-of-service attacks on authoritative DNS servers. The bug they refer to as TsuNAME has been discovered by researchers from SIDN Labs and InternetNZ. The…
In an apparent industry first, the global insurance company AXA said Thursday it will stop writing cyber-insurance policies in France that reimburse customers for extortion payments made to ransomware criminals. AXA, among Europe’s top five insurers, said it was suspending the option in response to concerns aired by French justice and cybersecurity officials during a…
Endpoint Security , Governance & Risk Management , Hardware / Chip-level Security Check Point Report Describes Flaw’s Technical Details Prajeet Nair (@prajeetspeaks) • May 7, 2021 (Photo: Shutterstock) A severe vulnerability in a system on certain Qualcomm chips, which has been patched, potentially could have enabled attackers to remotely control Android smartphones, access…
Cryptocurrency Fraud , Cybercrime , Fraud Management & Cybercrime Malware Spread Through Spam Email Campaign Prajeet Nair (@prajeetspeaks) • May 7, 2021 Researchers at Trend Micro have uncovered a new cryptocurrency stealer variant that uses a fileless approach in its global spam email distribution campaign to evade detection. See Also: Live Webinar |…
Attackers can use a newly disclosed domain name server (DNS) vulnerability publicly known as TsuNAME as an amplification vector in large-scale reflection-based distributed denial of service (DDoS) attacks targeting authoritative DNS servers. In simpler terms, authoritative DNS servers translate web domains to IP addresses and pass this info to recursive DNS servers that get queried…
Scientists are trialling a pill that could minimise the effects of Covid-19 after a patient has been infected. The drug called Favipiravir is licensed in Japan for flu. Kevin Blyth, professor of respiratory medicine at the University of Glasgow said he hoped the trial results would be out later this year. He told BBC World…
Cryptocurrency Fraud , Fraud Management & Cybercrime , Ransomware Panel Also Tackles Critical Ransomware Issues Anna Delaney (annamadeline) • May 7, 2021 Clockwise, from top left: Scott Ferguson, Anna Delaney, Marianne Kolbasuk McGee and Tom Field Four editors at Information Security Media Group discuss…
Travel journalists explain what some of the issues might be if you are thinking of going abroad.
Endpoint Security , Hardware / Chip-level Security After Researchers Release Report, Chipmakers Assert That No New Defenses Are Needed Doug Olenick (DougOlenick) • May 6, 2021 Intel and AMD are disputing the findings of researchers from two universities who say they’ve discovered new attacks on Intel and AMD processors that can bypass most…
Application Security , Endpoint Security , Incident & Breach Response Pen Test Partners: Millions Could Have Had Data Exposed Marianne Kolbasuk McGee (HealthInfoSec) • May 6, 2021 Photo: Peloton Security researchers say API flaws could have exposed the private data of millions of Peloton fitness equipment online service users for months before they…
