SecurityInsider
Le blog des experts sécurité Wavestone

CERT-W: Cybersecurity watch of events from November 5th



You will find below our weekly report on cybersecurity news. Use this brief compilation to support your coffee break small talk!

Cybercrime watch

Targeted ransomware hits Spanish companies

One of the largest IT consulting companies in Spain, Everis, suffered a targeted ransomware attack on Monday, forcing the company to shut down all its computer systems until the issue gets resolved completely. Some other Spanish and European companies have reportedly also been hit by a similar ransomware malware during the same period.

Canadian Nunavut government systems crippled by ransomware

Last week-end, all Nunavut government services – with the exception of an energy corporation – that rely on access to electronic information stored by the authority have been impacted by a ransomware. The lockdown which followed has encompassed medical, legal, and social services. In its statement, the Government of Nunavut reassured citizens that the incident had not compromised any personal information or produced a privacy breach.

Cyber-attack hits Utah wind and solar energy provider

A cyberattack on the U.S. energy grid has just come to light, which disrupted plant visibility at Utah-based sPower back in March. Because of an unpatched firewall, this denial-of-service (DOS) attack disrupted the organization's ability to monitor the current status of its power-generation systems over 12 hours.

Vulnerability watch

Microsoft Office for Mac users exposed to macro-based attacks

Users have been warned that malicious SYLK files are sneaking past endpoint defenses even when the “disable all macros without notification” is turned on. This leaves systems vulnerable to a remote, unauthenticated attackers who can execute arbitrary code.

Alexa, Siri, Google Smart Speakers hacked via laser beam

Researchers have discovered a new way to hack Alexa and Siri smart speakers merely by using a laser light beam. No physical access of the victims' device, or owner interaction, is needed to launch the hack, which allows attackers to send voice assistants inaudible commands such as unlocking doors. With careful aiming and laser focusing, a such attack could be successful from as far as 110 meters.

Two unpatched critical RCE flaws disclosed in rConfig

Two bugs in the network configuration utility rConfig have been identified, both allowing remote code execution on affected systems. One is rated critical and allows for a user to attack a system remotely – without authentication. Both vulnerabilities affect all versions of rConfig, including the latest rConfig version 3.9.2, with no security patch available at the time.

Weekly top

The top leak - Indian banks to probe alleged data leak of 1.3 million cards

Security researchers at Singapore-based Group-IB had found that card details were being sold at a price of $100 per card. The value of the leaked database has been estimated by the group at $130 million and more than 1.3 million payment card details could have been leaked. The Reserve Bank of India has directed banks to secure their customers' debit and credit card data.

The top exploit - CVE 2019-0708

Cybersecurity researchers have spotted a new cyberattack that is believed to be the very first attempt to weaponize the infamous BlueKeep RDP vulnerability in the wild to mass compromise vulnerable systems for cryptocurrency mining.

The top attack - India confirms cyberattack on nuclear power plant

In September a cyberattack on the Kudankulam Nuclear Power Plant (KKNPP) in Tamil Nadu, India occurred. The nuclear power plant's administrative network was breached in the attack but did not cause any critical damage. However, VirusTotal, a virus scanning website owned by Google's parent company, Alphabet, has indicated that a large amount of data from the KKNPP's administrative network has been stolen.

Software version watch

Software
Current version
Adobe Flash Player
Adobe Acrobat Reader DC
Java
Mozilla Firefox
Google Chrome
VirtualBox
CCleaner

Vincent BELOTTI

Aucun commentaire:

Enregistrer un commentaire