News from 'Help Net Security'

Syndicate content
Daily information security news with a focus on enterprise security.
Updated: 2 hours 52 min ago

Vulnerability in code library allows attackers to work out private RSA keys

Wed, 18/Oct/2017 - 02:39
Researchers have discovered a security vulnerability in the Infineon-developed RSA library, which could be exploited by attackers to discover the RSA private key corresponding to an RSA public key generated by this library. This private key could be then misused to impersonate its legitimate owner, decrypt sensitive messages, forge signatures (e.g. for software releases) and more. The vulnerable version of the library is v1.02.013, and it’s unfortunately been in use since 2012 in a wide … More →
Categories: Cyber India

Are you employees snooping on the corporate network?

Wed, 18/Oct/2017 - 01:30
The overwhelming majority of employees are deliberately seeking out information they are not permitted to access, exposing a major snooping problem among today’s workforce. Have you ever looked for or accessed sensitive information about your company’s performance, apart from what you are required to do as part of your job? A Dimensional Research survey polled more than 900 IT security professionals on trends and challenges related to managing employee access to corporate data. Among key … More →
Categories: Cyber India

ESET helps Google protect Chrome users from unwanted software

Wed, 18/Oct/2017 - 00:42
Google has redesigned Chrome Cleanup on Chrome for Windows, and has upgraded the technology it uses to detect and remove unwanted software. A basic antivirus for Chrome “We worked with IT security company ESET to combine their detection engine with Chrome’s sandbox technology. We can now detect and remove more unwanted software than ever before, meaning more people can benefit from Chrome Cleanup,” Product Manager Phillippe Rivard noted, but added that this feature is not … More →
Categories: Cyber India

Adobe releases emergency fix for Flash Player zero-day exploited in the wild

Tue, 17/Oct/2017 - 22:10
Adobe has released an out-of-band security update for Adobe Flash Player that patches a zero-day remote code execution vulnerability actively exploited in the wild. Kaspersky Lab researchers spotted the live attacks on October 10, 2017, and say that the exploit is delivered through a Microsoft Word document and deploys the most recent version of the FinSpy (aka FinFisher) commercial malware developed by Gamma International. The attack leveraging CVE-2017-11292 The researchers believe that the zero-day is … More →
Categories: Cyber India

Digital transformation, regulations impacting data security decisions at financial organizations

Tue, 17/Oct/2017 - 21:06
Almost half (49%) of global financial services organisations have experienced a data breach in the past, according to the 2017 Thales Data Threat Report, Financial Edition. The report also reveals 21% have been breached multiple times and that 90% feel somewhat or more vulnerable to data threats. As a result, 78% are increasing spending to protect their critical data. Financial services organisations are engaging in digital transformation making the leap from legacy applications to technologies … More →
Categories: Cyber India

Companies turn a blind eye to open source risk

Tue, 17/Oct/2017 - 19:47
Though open source software (OSS) helps software suppliers be nimble and build products faster, there are hidden software supply chain risks all software suppliers and IoT manufacturers should know about. For instance, criminals who potentially gained access to the personal data of the Equifax customers exploited an Apache Struts CVE-2017-5638 vulnerability. Apache Struts is a widely used open source component – a framework for Web servers – used by companies in commercial and in-house systems … More →
Categories: Cyber India

As GDPR implementation date approaches, cyber risk gets more attention

Tue, 17/Oct/2017 - 18:00
The upcoming implementation of the European Union’s General Data Protection Regulation (GDPR), which takes effect in May 2018, has elevated cyber risk to the top of the corporate agenda for organizations doing business in Europe. In a new global Marsh survey of over 1,300 senior executives, 65% of respondents whose organizations offer products or services in the EU said that they now consider cyber as a top risk. In a similar survey Marsh conducted in … More →
Categories: Cyber India

WPA2 weakness allows attackers to extract sensitive info from Wi-Fi traffic

Tue, 17/Oct/2017 - 03:30
WPA2, a protocol that secures modern protected Wi-Fi networks, sports serious weaknesses that can allow attackers to read and capture information that users believe to be encrypted (e.g. passwords, payment card numbers, etc.). “Depending on the network configuration, it is also possible to inject and manipulate data. For example, an attacker might be able to inject ransomware or other malware into websites, says Mathy Vanhoef, a postdoc at Belgian University of Leuven, who discovered the … More →
Categories: Cyber India

Android DoubleLocker ransomware encrypts data, changes device PIN

Mon, 16/Oct/2017 - 21:21
A new piece of ransomware is targeting Android users. Dubbed DoubleLocker, it both encrypts users’ files and changes the device’s PIN. About DoubleLocker Lukáš Štefanko, the ESET researcher who discovered the ransomware, says that it is based on the BankBot Android Trojan. Like its “parent,” DoubleLocker is distributed mostly through compromised Web sites, masked as a Adobe Flash Player update. Unlike BankBot, it doesn’t harvest users’ banking credentials. “Once launched, the app requests activation of … More →
Categories: Cyber India

Using a robust platform for cyber threat analysis training

Mon, 16/Oct/2017 - 20:55
We have recognised threats coming more regularly from varied origins such as nation-states, hacktivist and cybercriminal actors. Coupled with many new public policies aimed at mitigating the negative effects of data breaches, cyber espionage and intellectual property theft, it’s clear a new ecosystem of cyber threat intelligence sharing is emerging. As more intelligence teams become established with the aim to fortify networks and reduce the liabilities and risks associated with data breaches, the need for … More →
Categories: Cyber India

Office 365 adoption drivers, risks, and opportunities

Mon, 16/Oct/2017 - 18:00
Over 1,100 organizations ranging from single-person businesses to companies with more than 10,000 employees participated in a survey from various regions around the globe including North America, Europe, the Middle East, and Africa. The Barracuda Networks survey aimed to measure trends around the adoption and use of Microsoft Office 365, including contributing factors for decisions about migration versus remaining with an existing platform. Additional information was gathered about customer use of third-party security and data … More →
Categories: Cyber India

Almost half of non-IT and data pros don’t understand blockchain

Mon, 16/Oct/2017 - 17:30
A survey of over 200 board level UK executives has found that while over half of businesses sampled are planning blockchain initiatives, less than 1 in 10 believe they have the required skill sets in place within their organisations. At the same time, more than 40 per cent of non-IT/data senior executives admit to not fully understanding blockchain technology. The lack of regulation (23 per cent) is seen as the biggest barrier to the adoption … More →
Categories: Cyber India

Week in review: iOS phishing, and three reasons to secure your data now

Mon, 16/Oct/2017 - 07:20
Here’s an overview of some of last week’s most interesting news and articles: Inventive cyber gang steals millions from East European banks Trustwave researchers have uncovered a series of ingenious bank heists that cost several Eastern European and Russian banks up to $10 millions each, and they believe financial institutions in European, North American, Asian and Australian regions could be targeted with the same within the next year. Hackers use organizations’ resources for stealthy cryptocurrency … More →
Categories: Cyber India

Compromised analytics provider made Equifax’s site point to malware

Fri, 13/Oct/2017 - 21:38
Yesterday’s revelation that Equifax’s credit report assistance Web page was spotted redirecting visitors to malware resulted in the company temporarily disabling the page and starting an investigation. Once the investigation was concluded, the company said that they didn’t get hacked. Instead, that the malicious script was part of the code of a third-party vendor that Equifax uses to collect website performance data. “Despite early media reports, Equifax can confirm that its systems were not compromised … More →
Categories: Cyber India

Why wait to be breached? Three reasons to secure your data now

Fri, 13/Oct/2017 - 19:00
“I’m working on it.” “We don’t have room in this year’s budget.” “Something else more important came up.” “Well, we’ve not been breached before…” “The risk of it happening is so small and it’s hard to quantify…” These are some of the most common excuses companies give for delaying their security and compliance efforts. But, given the severe repercussions of just one breach – spiraling costs of damage-limitation, the brand-eroding reputational impact, falling share prices … More →
Categories: Cyber India

New infosec products of the week​: October 13, 2017

Fri, 13/Oct/2017 - 18:30
CloudAI delivers advanced analytics that leverage artificial intelligence LogRhythm introduced CloudAI, an advanced cloud-based security analytics offering. Initially focused on extending and enhancing LogRhythm’s existing user and entity behavior analytics (UEBA) capabilities, CloudAI uses artificial intelligence to detect advanced threats that employ unknown attacks and unknown methods and provide security teams visibility into emerging and active user-based threats. ObserveIT is evolving its solution for identifying and preventing user-based risk ObserveIT 7.1 features capabilities to thwart … More →
Categories: Cyber India

Four ways colleges can strengthen their cybersecurity programs

Fri, 13/Oct/2017 - 18:00
If breaches can’t be entirely blocked, what can IT professionals in higher education do to prevent these kinds of disaster scenarios? The GovEd team at Logicalis US says there are four important steps that will bolster college and university cybersecurity plans. Conduct a data security audit Knowing what you’re trying to protect and identifying some of the common ways that data could be breached is a logical first step. An in-depth data security audit performed … More →
Categories: Cyber India

Enterprises increasingly leveraging endpoint data for security investigations

Fri, 13/Oct/2017 - 17:30
Code42 confirmed how critical it is for organizations to access and leverage endpoint data for additional uses above and beyond backup and recovery. Among 155 IT professionals and business decision-makers surveyed on the show floor at VMworld U.S. 2017, security investigations, eDiscovery and device migrations to Windows 10 were identified as the top uses for endpoint data. “The findings of this survey reinforce a trend we have been seeing with our own customer base, from … More →
Categories: Cyber India

Equifax’s site hacked to redirect info-seeking visitors to adware

Fri, 13/Oct/2017 - 00:35
Here’s the last incredible-but-not-really Equifax security blunder: it appears that their Web site has been hacked, and made to redirect to site serving adware masquerading as an Adobe Flash update. The discovery was made by security researcher Randy Abrams, who was trying to find his credit report on the Equifax website and triggered the redirection by clicking on a link (as demonstrated in this video): According to the information he shared with Ars Technica, the … More →
Categories: Cyber India

Unpatched SQLi vulnerability in SmartVista e-commerce suite

Thu, 12/Oct/2017 - 21:44
Companies using SmartVista, the popular e-commerce/payment management product suite developed by Swiss company BPC Banking Technologies, are urged to put limit access to its management interface. That’s because Rapid7 researcher Aaron Herndon found a SQL injection vulnerability in it, and BPC has shown no indication that it’s going to fix it. About the vulnerability According to Rapid7’s findings, the issues affect the “Transactions” interface of SmartVista Front-End (SVFE), version 2.2.10, revision 287921. “Users with access … More →
Categories: Cyber India