Data Security News Headlines 3rd October 2017

  1. MobiKwik Loses Rs 19 Crore

MobiKwik is an Indian company founded in 2009 that provides a mobile phone based payment system and digital wallet. Customers add money to an online wallet that can be used for payments. According to the latest report, MobiKwik Loses Rs 19 Crore from its own account. The internet company is not able to trace where the missing money has gone. The company has filed the official complaint on Wednesday. The in charge of a cyber-crime cell of Gurugram, Anand Yadav hints the involvement of the internal staff or a specific bug that cannot be traced. The cyber-crime cell is studying the details of the case.

Cyber Security Tips: To prevent from such frauds you are strongly recommended that keep using a strong password, keep your credentials secure, never click on any ads while using such digital wallets, download apps from trusted sources only and never share your details with anyone.

  1. Hikvision Security Cams Compromised to Display “HACKED

If you own Hikvision security cameras you would have noticed the sudden change in the live feed display where the normal footages were replaced with the term HACKED. Department of Homeland Security’s ICS-CERT issued warning regarding the presence of remotely exploitable vulnerabilities in Hikvision security cameras; these vulnerabilities were of such nature that it required low-level skills to exploit them. In its advisory, the department clearly stated that if these vulnerabilities are exploited successfully then the malicious attacker would gain high-level privileges and/or impersonate an authentic user and access or even steal sensitive, confidential data. The Malicious attackers are trying to exploit this vulnerability, the first example is the appearance of HACKED by replacing live feed of some models of Hikvision security cameras.

Cyber Security Tips:  Hikvision has already released firmware updates for numerous models of its security cameras where the backdoor is removed so users and administrators are strongly recommended that update your device as soon as possible.

  1. Netgear Patches Over 50 Flaws in Routers, Switches, NAS Devices

Netgear published more than 50 security advisories in the past two weeks to inform customers about the availability of patches for vulnerabilities affecting many of the company’s routers, switches, network-attached storage (NAS) devices, and wireless access points. There are a total of 14 advisories describing vulnerabilities in various ReadyNAS devices, including command injections, security misconfigurations, and ten stored cross-site scripting (XSS) issues. Netgear has also released more than a dozen advisories for remote code execution, security misconfiguration, command injection, administrator credentials disclosure, authentication bypass, stack overflow, arbitrary file read, and cross-site request forgery (CSRF) flaws affecting some of its routers. The vulnerabilities are in high and medium severity.

Cyber Security Tips: Users and administrators are strongly recommended to update device as soon as possible.

 

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Create a free website or blog at WordPress.com.

Up ↑

%d bloggers like this: