The Week in Cyber Security News, Jan. 4 - 10
01. Unidentified scammers claiming to be Australian Cyber Security Centre employees have been contacting Australians to warn them that their computers have been compromised.
02. IT security researchers have discovered a new RAT (Remote Access Tool) that is capable of targeting Windows, Linux, and MacOS, with its prime aim being to steal cryptocurrency.
03. Security researchers have warned gaming companies to improve their cybersecurity posture after discovering 500,000 breached employee credentials and a million compromised internal accounts on the dark web.
04. Cybesecurity researchers have revealed a new malspam campaign that distributes a remote access Trojan (RAT) by purporting to contain a sex scandal video of US President Donald Trump.
05. T-Mobile says that its security team recently discovered that hackers had managed to access information related to T-Mobile accounts, in the company's fourth cyber attack in three years.
06. Ticketmaster has agreed to pay a $10 million criminal fine after admitting its employees repeatedly used stolen passwords and other means to hack a rival ticket sales company.
07. Nissan has examined a source code leak for its North American division’s mobile apps, marketing tools and more, then secured the server that exposed the data, the company said.
08. United States president Donald Trump has signed an executive order banning the use of eight Chinese apps - Alipay, CamScanner, QQ Wallet, SHAREit, Tencent QQ, VMate, WeChat Pay, and WPS Office - because they "threaten national security, foreign policy, and economy of the United States" and China can track users’ devices.
09. A threat actor who breached the network of Canada-based Aurora Cannabis and claims to have stolen 50GB of personal identifiable information of customers and employees, including photos of passports, checks, driver licenses and business documents, is looking to cash in after posting the database of stolen info online.
10. NVIDIA has released security updates to address six security vulnerabilities found in Windows and Linux GPU display drivers, as well as ten additional flaws affecting the NVIDIA Virtual GPU (vGPU) management software.
11. A report has noted that ransomware attacks against healthcare orgs jumped about 45% since early November, following a 71% spike in October.
12. Researchers have reported a rise in cracked Cobalt Strike and other open-source adversarial tools with easy-to-use interfaces, identifying more than 10,000 unique command and control (C2) servers across 80 malware families — nearly all linked to advanced persistent threat (APT) groups or "high-end financial actors."
13. A new trend is emerging among ransomware groups where they prioritize stealing data from workstations used by top executives and managers in order to obtain "juicy" information that they can later use to pressure and extort a company's top brass into approving large ransom payouts.
14. The Reserve Bank of New Zealand has disclosed that they have suffered a data breach after attackers illegally accessed data stored at a third-party hosting provider.
Thanks for visiting SecAlerts and reading our weekly cyber security news roundup. We offer a free weekly CVE alert service, or an hourly service from $US17/mth, both of which include software updates and news relating to your software stack. Join more than 1,500 other users and sign up.
. . .
If you want to stay notified of vulnerabilities that affect you, register for a weekly security report customised to your stack.