Cyber Security News for 1Apr2020

  1. “Microsoft has started to send targeted notifications to dozens of hospitals about vulnerable public-facing VPN devices and gateways located on their network. As part of their tracking of various groups behind human-operated ransomware attacks, Microsoft has seen one of the operations known as REvil (Sodinokibi) targeting vulnerabilities in VPN devices and gateway appliances to breach a network.” https://www.bleepingcomputer.com/news/security/microsoft-is-alerting-hospitals-vulnerable-to-vpn-attacks/
  2. “According to the latest finding by cybersecurity expert @_g0dmode, which was also confirmed by researcher Matthew Hickey and Mohamed A. Baset, the Zoom client for Windows is vulnerable to the ‘UNC path injection’ vulnerability that could let remote attackers steal login credentials for victims’ Windows systems.” https://thehackernews.com/2020/04/zoom-windows-password.html
  3. “Researchers at Guardicore Labs discovered a crypto-mining botnet, tracked as Vollgar botnet, that is targeting MSSQL databases since 2018. The botnet is used to launch brute-force attacks against MSSQL databases to take over servers and install Monero and Vollar cryptocurrency miners.” https://securityaffairs.co/wordpress/100895/malware/vollgar-crypto-botnet.html
  4. “On Monday, a video of former Microsoft CEO Bill Gates could be found playing on multiple YouTube channels that were broadcasting a well-known cryptocurrency Ponzi scam, ZDNet reported. The channels had apparently been hijacked from their rightful owners and renamed to make it sound like they were Microsoft brands. Microsoft has “vehemently” denied the suggestion that any of its verified accounts had been hacked, ZDNet reported in an update. YouTube reportedly intervened to take down the scam’s live streams, which were broadcasting to tens of thousands of users.” https://nakedsecurity.sophos.com/2020/04/01/bill-gatess-youtube-bitcoin-giveaway-is-a-big-fat-scam/
  5. “Every once in a while an attack comes along that is so simple to set up, and yet so effective, that it makes your jaw drop. Here’s one: fake bitcoin QR generators. According to web developer and cryptocurrency enthusiast Harry Denley, a wily scammer has been operating a network of fake bitcoin QR code generators to dupe people out of their bitcoins.” https://nakedsecurity.sophos.com/2020/04/01/qr-code-generator-scam-steals-thousands-in-bitcoin/
  6. “Researchers Daniel García Gutiérrez (@danigargu) and Manuel Blanco Parajón (@dialluvioso_) have published proof-of-concept (PoC) exploits for the CVE-2020-0796 Windows vulnerability, tracked as SMBGhost, that can be exploited by attackers for local privilege escalation.” https://securityaffairs.co/wordpress/100882/hacking/cve-2020-0796-poc-rce.html
  7. “While General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) get a lot of attention, New York should not to be left out. In effect beginning on March 21, 2020, the New York Stop Hacks and Improve Electronic Data Security (SHIELD) Act (https://www.nysenate.gov/legislation/bills/2019/s5575) places additional security and privacy requirements on organizations that possess private information of New York residents, whether the organization is located in New York or not.” https://www.trustedsec.com/blog/understanding-new-yorks-shield-act/
  8. “THE POPULAR VIDEO conferencing application Zoom has been having A Moment during the Covid-19 pandemic. But it’s not all positive. As many people’s professional and social lives move completely online, Zoom use has exploded. But with this boom has come added scrutiny from security and privacy researchers—and they keep finding more problems, including two fresh zero day vulnerabilities revealed Wednesday morning.” https://www.wired.com/story/zoom-backlash-zero-days/
  9. “Apple is working to improve the iCloud Keychain password manager on iOS, 9to5Mac has learned, with two-factor password integration and more. These new features described are based on an early build of iOS 14 obtained by 9to5Mac.” https://9to5mac.com/2020/04/01/ios-14-keychain-password-features/
  10. “When you start your workday on a computer, it can be time consuming to log into what feels like a million accounts before you can get anything else done. Single sign-on services from companies like Okta, OneLogin and others try to take the bother out of the chore. You sign into their service, and you’re logged into all your work-related accounts at the same time.” https://www.cnet.com/news/you-can-stop-using-passwords-for-your-work-accounts-with-this-tool/
  11. “Cloudflare introduced today ‘1.1.1.1 for Families,’ a privacy-focused DNS resolver designed to help parents in their efforts to safeguard their children’s online security and privacy?????? by automatically filtering out bad sites.” https://www.bleepingcomputer.com/news/security/cloudflare-launches-a-dns-based-parental-control-service/
  12. “Security experts are tracking a range of new threats incidentally linked to the coronavirus that’s killed no fewer than 44,216 people worldwide. Where most see despair, some cyber criminals see opportunity.” https://gizmodo.com/coronavirus-email-forms-used-to-spread-malware-steal-p-1842617107?hss_channel=tw-2830775725

#pulsevpn #doppelpaymer #ragnarok #revil #sodinokibi #cve-2019-1978 #ransomware #vollgar #botnet #MSSQL #crypto-mining #rat #miner #bitcoin #cve-2020-0796 #shieldact #ccpa #gdpr #zoom #okta