Data Security News Headlines 16th August 2017

  1. Allahabad University website hacked on Independence Day

Previously Pakistani hackers were targeted various Indian website, according to the latest report  the official website of the Allahabad University was hacked purportedly by Pakistan-based hackers who posted anti-national message with a clip of a burning tricolor on it. The matter came to light at around 1.30 am on Tuesday after which the officials shut down the site to take back control. The university officials said the hacker put up a message in Hindi on the website that said ‘Kashmir would become like Pakistan’. The message said the site has been hacked by PHC Chapter. The hackers also posted a photograph of slain Kashmiri militant Burhan Wani with the message: “I am Wani, I am Pakistani according to the news published by the Hindustan Times.

Cyber Security Tips: To prevent your website from being hacked, keep your webserver secure, keep CMS up-to date, keep your website plugins up-to date, keep using reputed web application firewall and do vulnerability assessment and penetration testing to know weaknesses of your web application.

  1. Major Pakistani government sites hacked on 70th Independence Day

In a major hacking attempt Indian hackers on 70th Independence Day of Pakistan have hacked several government websites and posted Indian flag and Indian anthem, officials in Pakistan Telecommunication authority officials said on Monday. The hacked sites include Ministry of Defence, Ministry of Information Technology, Ministry of Water and Power, Cabinet Division, Ministry of Food Security and Ministry of Environment Change. The hackers have posted Happy Independence Day messages for India and Indian flag on the websites. PTA has shut down the websites and trying to restore them. Sources in PTA did not identify the group behind the hacking but said it was a highly coordinated hacking by Indian hackers.

Cyber Security Tips: To prevent your website from being hacked, keep your webserver secure, keep CMS up-to date, keep your website plugins up-to date, keep using reputed web application firewall and do vulnerability assessment and penetration testing to know weaknesses of your web application.

  1. Faulty Firmware Auto-Update Breaks Hundreds of ‘Smart Locks’

Today, everyone is leaving in digital word by connecting every other unnecessary home appliance to the Internet. In last week, nearly hundreds of Internet-connected locks became inoperable after a faulty software update hit some models. Users of remotely accessible smart locks made by Colorado-based Company LockState have taken to social media platforms including Twitter to complain that their $469 Lockstate 6000i locks started to fail from last Monday, leaving the keypad entirely useless. LockState’s RemoteLock 6i (6000i) is an Internet-connected smart lock that connects to your home Wi-Fi network for remote control and monitoring as well as firmware updates. According to the report, last week many Airbnb customers were unable to use the built-in keypad on the smart lock devices to unlock the doors. Company said that, the issue occurred after its Wi-Fi enabled smart lock product range received a faulty over-the-air firmware update last week, which caused a “fatal error” in the locks, making them inoperable.

Cyber Security Tips: Users are recommended that;

  • Users can either remove the back flap of the lock or send it to the manufacturer so it can manually update the software, which will take 5-7 working days.
  • Alternatively, users can ask for a replacement lock, which will take 14-18 days to ship, and then send the faulty model back.
  1. Warning: Two Dangerous Ransomware Are Back – Protect Your Computers

From past few months, we saw a scary strain of ransomware attacks including WannaCry, Petya and LeakerLocker, which made chaos worldwide by shutting down hospitals, vehicle manufacturing, telecommunications, banks and many businesses. Before WannaCry and Petya, the infamous full-disk-encrypting ransomware and the Locky ransomware had made chaos across the world last year. Bad news for users, Locky ransomware is back again with new feature. Locky has been one of the largest distributed ransomware infections, infecting organizations across the globe. This time security researchers have discovered a fresh spam malware campaign distributing a new variant of Locky known as Diablo6 and targeting computers around the world, with the United States being the most targeted country, followed by Austria. Another ransomware is called as Mamba. Mamba is another powerful and dangerous kind of ransomware infection that encrypts the entire hard disk on an affected computer instead of just files, leaving the system totally unusable unless a ransom is paid. These kind of malware are mainly speeding through malicious email attachments.

Cyber Security Tips: Users are strongly recommended that keep your system up-to date, avoid to open spam mails,  avoid visiting malicious sites, never click on ads, avoid downloading software from untrusted sources, keep using reputed and updated antivirus software and regularly backup your data.

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Blog at WordPress.com.

Up ↑

%d bloggers like this: