Data Security News Headlines 9th January, 2017

  1. DragonOK Hackers Group From China Is Now Expanding

DragonOK, A China-linked hackers group has updated the toolset, and according to researchers the hacker group is expanding their territory to Russia and Tibet. A piece of malware used by the hacker named “Sysget,” was delivered to attack in Taiwan. The same security firm has identified three new versions of Sysget and all of them have improved over the previous generation malware which makes them hard to detect and analyze. Sysget was delivered using phishing emails and it through specially crafted documents set up to exploit CVE-2015-1641, one of the most widely used Microsoft Office vulnerabilities to date.

Cyber Security Tips:  Never use links in an email to connect to a website unless you are absolutely sure they are authentic. Never submit confidential information via forms embedded within email messages.

  1. FTC Sues D-Link Over Failure To Secure Its Routers And IP Cameras

The Federal Trade Commission (FTC) filed a lawsuit against D-Link on Thursday, arguing that the company failed to implement necessary security protection in its routers and Internet-connected security cameras that left “thousands of consumers at risk” to hacking attacks. Two months back, a nasty IoT botnet, known as Mirai, was found infecting routers, webcams, and DVRs built with weak default passwords and then using them to DDoS major internet services.

Cyber Security Tips: Always change the default username and password. Keep your passwords strong; include a special character and a number in your password.

  1. Google Patches High Risk Vulnerability in Android Bootloader

A vulnerability recently addressed in Google’s January 2017 Android security bulletin was a denial of service (DoS) flaw in the bootloader, which could be exploited to target Nexus 6 and 6P custom boot modes, IBM security researchers reveal. Tracked as CVE-2016-8467 and discovered by Roee Hay and Michael Goberman of IBM Security X-Force, the vulnerability allows an attacker to use either PC malware or malicious chargers to reboot the targeted smartphone and then implement a special boot configuration, or boot mode. Thus, the attacker can instruct Android to turn on various extra USB interfaces, the security researchers explain.In the security advisory published on Tuesday to detail the new set of patches, Google explains that the denial of service vulnerability could “enable an attacker to cause a local permanent denial of service, which may require reflashing the operating system to repair the device.”

Cyber Security Tips:  Always install apps from play store on your Android device. Use genuine Anti-Virus application in your phone. Be sure of any malicious activity before open any link.

  1. British Intelligence Provided A Major Tip-off To The United States

The New York Times reported that British intelligence was “among the first” to alert their American counterparts that Russian hackers had infiltrated the computer servers of the Democratic National Committee (DNC). The breach of email exchanges among senior Democrats was spotted from voice intercepts, computer traffic and agents outside the US as emails and other data from the DNC flowed toward Moscow.

 

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Blog at WordPress.com.

Up ↑

%d bloggers like this: