Comments on: Cyber Security March 2019

By: Tomi Engdahl

Tomi Engdahl — Mon, 01 Apr 2019 10:24:19 +0000

Huawei savaged by Brit code review board over pisspoor dev practices
HCSEC pulls no technical punches in annual report
https://www.theregister.co.uk/2019/03/28/hcsec_huawei_oversight_board_savaging_annual_report/

Britain’s Huawei oversight board has said the Chinese company is a threat to British national security after all – and some existing mobile network equipment will have to be ripped out and replaced to get rid of said threat.

“The work of HCSEC [Huawei Cyber Security Evaluation Centre]… reveals serious and systematic defects in Huawei’s software engineering and cyber security competence,” said the HCSEC oversight board in its annual report, published this morning.

By: Tomi Engdahl

Tomi Engdahl — Mon, 01 Apr 2019 10:21:30 +0000

Equifax, FICO launch Data Decision Cloud as credit scores meld with marketing, compliance, customer experience
https://www.zdnet.com/article/equifax-fico-launch-data-decision-cloud-as-credit-scores-meld-with-marketing-compliance-customer-experience/?ftag=COS-05-10aaa0g&utm_campaign=trueAnthem:+Trending+Content

By combining data pools and platforms, the companies hope to find more insights, build better predictive models and manage customer experiences better.

By: Tomi Engdahl

Tomi Engdahl — Sun, 31 Mar 2019 21:20:37 +0000

NSA-Inspired Vulnerability Found in Huawei Laptops
https://www.schneier.com/blog/archives/2019/03/nsa-inspired_vu.html

This is an interesting story of a serious vulnerability in a Huawei driver that Microsoft found. The vulnerability is similar in style to the NSA’s DOUBLEPULSAR that was leaked by the Shadow Brokers — believed to be the Russian government — and it’s obvious that this attack copied that technique.

By: Tomi Engdahl

Tomi Engdahl — Sun, 31 Mar 2019 17:42:15 +0000

Alex W. Palmer / Wired:
A behind-the-scenes account of how a member of TripAdvisor’s anti-fraud team helped the FCC track down a Florida man accused of making 96M+ illegal robocalls — BRAD YOUNG, A lawyer at TripAdvisor, arrived at the company’s offices in Needham, Massachusetts, on October 12, 2015 …
https://www.wired.com/story/on-the-trail-of-the-robocall-king/

By: Tomi Engdahl

Tomi Engdahl — Sun, 31 Mar 2019 17:41:36 +0000

Mark Zuckerberg / Washington Post:
Mark Zuckerberg calls for global regulations in four areas: policing harmful content, election integrity, a GDPR-like privacy framework, and data portability — Mark Zuckerberg is founder and chief executive of Facebook. — Technology is a major part of our lives, and companies such as Facebook have immense responsibilities.
http://www.washingtonpost.com/opinions/mark-zuckerberg-the-internet-needs-new-rules-lets-start-in-these-four-areas/2019/03/29/9e6f0504-521a-11e9-a3f7-78b7525a8d5f_story.html

By: Tomi Engdahl

Tomi Engdahl — Sun, 31 Mar 2019 17:41:12 +0000

Gavin De Becker / The Daily Beast:
Jeff Bezos’ security chief says his investigation concluded with high confidence that Saudi Arabia “had access to Bezos’ phone, and gained private information” — The National Enquirer’s lawyer tried to get me to say there was no hacking.

Bezos Investigation Finds the Saudis Obtained His Private Data
https://www.thedailybeast.com/jeff-bezos-investigation-finds-the-saudis-obtained-his-private-information

The National Enquirer’s lawyer tried to get me to say there was no hacking.

“Our investigators and several experts concluded with high confidence that the Saudis had access to Bezos’ phone, and gained private information.”

Experts with whom we consulted confirmed New York Times reports on the Saudi capability to “collect vast amounts of previously inaccessible data from smartphones in the air without leaving a trace—including phone calls, texts, emails”—and confirmed that hacking was a key part of the Saudis’ “extensive surveillance efforts that ultimately led to the killing of [Washington Post] journalist Jamal Khashoggi.”

Some Americans will be surprised to learn that the Saudi government has been intent on harming Jeff Bezos since last October, when the Post began its relentless coverage of Khashoggi’s murder. The Saudi campaign against Bezos has already been reported by CNN International, Bloomberg, The Daily Beast, and others.

Saudi Arabia attacks people in many ways, obviously, including through their elaborate social media program that uses sophisticated technology and paid surrogates to create artificially trending hashtags

By: Tomi Engdahl

Tomi Engdahl — Sat, 30 Mar 2019 18:57:39 +0000

Dan Goodin / Ars Technica:
A newly published exploit for a Magento vulnerability that can be used without authentication puts hundreds of thousands of e-commerce sites at risk

Brace yourselves: Exploit published for serious Magento bug allowing card skimming [Updated]
Magento admins: Beware of SQL flaw that requires no authentication.
https://arstechnica.com/information-technology/2019/03/severe-magento-bug-opens-300k-commerce-sites-to-card-skimming-attacks/

By: Tomi Engdahl

Tomi Engdahl — Sat, 30 Mar 2019 18:55:54 +0000

CNBC:
Researchers find totaled Teslas contain unencrypted and personally revealing data about owners, including locations visited, phone contacts, and dash cam video

Tesla cars keep more data than you think, including this video of a crash that totaled a Model 3
https://www.cnbc.com/2019/03/29/tesla-model-3-keeps-data-like-crash-videos-location-phone-contacts.html

Crashed Tesla vehicles, sold at junk yards and auctions, contain deeply personal and unencrypted data including info from drivers’ paired mobile devices, and video showing what happened just before the accident.
Security researcher GreenTheOnly extracted unencrypted video, phonebooks, calendar items and other data from Model S, Model X and Model 3 vehicles purchased for testing and research at salvage.
Hackers who test or modify the systems in their own Tesla vehicles are flagged internally, ensuring that they are not among the first to receive over-the-air software updates first.

By: Tomi Engdahl

Tomi Engdahl — Sat, 30 Mar 2019 06:20:20 +0000

Hacker Rigs New Zealand Shooter’s Manifesto With Malware
https://uk.pcmag.com/news/120294/hacker-rigs-new-zealand-shooters-manifesto-with-malware

A hacker is responding to the New Zealand mosque shooting by booby-trapping the attacker’s manifesto with malware.

By: Tomi Engdahl

Tomi Engdahl — Fri, 29 Mar 2019 21:13:53 +0000

Here’s the List of ~600 MAC Addresses Targeted in Recent ASUS Hack
https://thehackernews.com/2019/03/asus-hack-mac-addresses.html?m=1

Russian security firm Kaspersky last week didn’t release the full list all MAC addresses that hackers hardcoded into their malware to surgically target a specific pool of users.

offline tool and launched an online web page where ASUS PC users can search for their MAC addresses to check whether they were in the hit list.

ASUS Hack: Operation ShadowHammer
It was revealed last week that a group of state-sponsored hackers managed to hijack ASUS Live automatic software update server last year and pushed malicious updates to over one million Windows computers worldwide in order to infect them with backdoors.

Though the second stage malware was only pushed to nearly 600 targeted users, it doesn’t mean that millions of ASUS computers which received the malicious software update are not compromised