Former Uber CSO Indicted for Covering Up 2016 Breach. Former Uber CSO Joseph Sullivan has been indicted for allegedly covering up a 2016 data breach at the company. The breach compromised personal data belonging to 57 million Uber drivers and passengers; the information included Uber drivers driver’s license numbers. Sullivan allegedly failed to disclose the breach while the FTC was investigating a 2014 breach at the company.
Read more in:
- A Former Uber Exec’s Indictment Is a Warning Shot
- Former Uber Security Chief Charged With Concealing Hack
- Former Uber CSO Charged With Paying ‘Hush Money’ in 2016 Breach Cover-Up
- Former Chief Security Officer For Uber Charged With Obstruction Of Justice
CISA Releases 5G Security Strategy. On Monday, August 24, the US Cybersecurity and Infrastructure Security Agency (CISA) released a strategy to defend 5G networks against threats. The strategy “establishes five strategic initiatives that seek to advance the deployment of a secure and resilient 5G infrastructure.”
Read more in:
- Federal cyber agency releases strategy to secure 5G networks
- CISA 5G Strategy|Ensuring the Security and Resilience of 5G Infrastructure In Our Nation (PDF)
Malicious Code Found in Mintegral iOS SDK. A report from Snyk describes malicious code it detected in an iOS software development kit (SDK) that has been used in more than 1,200 apps; the vulnerable apps have been downloaded a collective total of more than 300 million times. The Mintegral iOS SDK collects user data and steals clicks from ads commits advertising attribution fraud.
Read more in:
- SourMint Malicious SDK
- Report claims a popular iOS SDK is stealing click revenue from other ad networks
- Large Ad Network Collects Private Activity Data, Reroutes Clicks
Canpar Express Hit with Ransomware. The internal computer systems at Canadian delivery company Canpar Express were infected with ransomware last week. Customers complained of delayed deliveries. On Monday, August 24, files that appear to have been taken from Canpar systems were leaked on the dark web.
Read more in:
- Files from TFI’s Canpar leak after ransomware attack
- Customers complain of delays after ransomware attack on delivery company
- Canadian shipping company Canpar gets an unwanted delivery – ransomware
FBI and CISA Release “Vishing” Warning. The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) has issued a joint advisory warning of an increase in the threat of voice phishing, or “vishing,” attacks targeting people working from home during the pandemic. The attackers call their targeted victims and, pretending to be IT desk employees, tell them they need to use a different VPN login page. They then direct the victims to specially-crafted pages that harvested their VPN credentials. The advisory offers mitigation advice for organizations and end-users.
Read more in:
- Voice phishing attacks on the rise, CISA, FBI warn
- FBI, CISA Echo Warnings on ‘Vishing’ Threat
- Cyber Criminals Take Advantage of Increased Telework Through Vishing Campaign (PDF)
- The Attack That Broke Twitter Is Hitting Dozens of Companies
- Voice Phishers Targeting Corporate VPNs
Zoom Outages Fixed. Video communications company Zoom experienced outages on Monday, August 24. The majority of the outages affected users in the UK and on the East Coast of the US. The issues were resolved shortly after 1:00pm ET (5:00pm UTC.)
Read more in:
- Zoom outage fix deployed: Videoconferencing services being restored now
- Zoom is working again, even if you’re not
- Zoom went down and schools got a digital snow day
- Zoom reports widespread outages impacting schools, hearings
Flaw in WooCommerce NAB Transact Extension. A critical payment bypass vulnerability in the WooCommerce NAB Transact extension could be exploited to make it appear to vendors that orders have been paid in full. The NAB extension, which is from National Australia Bank, lets online vendors process payment card transactions within their websites. Users are urged to upgrade to version 2.1.2.
Read more in:
- Virtual shoplifting: Critical flaw found in WooCommerce extension NAB Transact
- Payment bypass in WordPress – WooCommerce – NAB Transact plugin disclosure
Freepik Data Breach Affects 8.3M Users. Hackers used an SQL injection attack to steal email addresses and password hashes belonging to 8.3 million Freepik and Flaticon users. Freepik is a website that offers free photos and design graphics.
Read more in:
- Statement on Security Incident at Freepik Company
- Free photos, graphics site Freepik discloses data breach impacting 8.3M users
- Freepik data breach: Hackers stole 8.3M records via SQL injection
MITRE Active Defense Framework. MITRE’s Shield active cyber defense framework is designed to help organizations “engage… an active cyber defense.” The Shield Active Defense Matrix cross-references tactics – what defenders want to accomplish – with techniques for achieving those tactics.
Read more in:
- MITRE Releases ‘Shield’ Active Defense Framework
- Shields Up: A Good Cyber Defense is an Active Defense
- Active Defense Matrix
Fix Available for BIND 9 Denial-of-Service Issue. A security flaw affecting BIND name server versions 9.16.1 through 9.17.1 could be exploited to cause denial-of-service conditions on vulnerable devices. Updated versions of BIND address this buffer overflow vulnerability as well as several less severe flaws.
Read more in:
- Serious DoS Bug Patched in BIND 9
- CVE-2020-8620: A specially crafted large TCP payload can trigger an assertion failure in tcpdns.c
- Internet Systems Consortium’s BIND TCP Receive Buffer Length Assertion Check Denial of Service Vulnerability
WordPress Sites With Discount Rules for WooCommerce Plugin Being Targeted By Attackers. WordPress sites with Discount Rules for WooCommerce plugin installed have been warned of attacks exploiting vulnerabilities discovered on August 7 by researchers at WebAR. The flaws identified in Discount Rules for WooCommerce, already patched by developer with the release of version 2.1.0.
Read more in WordPress Sites Targeted via Vulnerabilities in WooCommerce Discounts Plugin
Safari Phishing Bug In Web Share API, Could Lead To Stolen Files. The bug was identified by Pawel Wylecial, co-founder of REDTEAM.PL. during April. The findings go public after Apple delayed patching the bug for almost a year, to the spring of 2021.
Read more in:
