Welcome to another news update for the week. Not a big number of stories this week, but the ones we do have are pretty good! Before we get into it, I just wanted to mention that we are now on twitter (@Malwerewolf). So, if you want to keep up with the latest posts please give us a follow. With that bit of business out of the way, onto the news we go.
- First article, by Krebs, is another breach related one. While this isn’t exactly new, as we had an article about six weeks ago that indicated Dairy Queen might have been breached, we now have confirmation. Looks like the “Backoff” POS malware is the culprit here as well. Dairy Queen did indicate that all the breached stores used the same third party point of sale hardware vendor.
- Read More @ http://krebsonsecurity.com/2014/10/dairy-queen-confirms-breach-at-395-stores/
- Next, another article relating to the “JP Morgan Chase” breach. It appears that the same hacker responsible for the attack on Chase targeted several other financial institutions. There is also some talk of this being a Russian sponsored actor, though no confirmation of this has been provided as of yet.
- Read More @ http://www.securityweek.com/several-us-banks-attacked-hackers-who-hit-chase
- Next, some APT related news, this time regarding the “Nitro” group. In a new post by Palo Alto Networks, they detail some of the recent changes in tactics, as well as the more recent activity by the group.
- Read More @ http://researchcenter.paloaltonetworks.com/2014/10/new-indicators-compromise-apt-group-nitro-uncovered/
- BadUSB, the unpatchable USB vulnerability, code is now officially released. I am curious how long it will take before we start seeing attacks taking advantage of this vulnerability. Coupled with the fact that there is no easy way to fix it, following the way this develops will be interesting to say the least.
- Read More @ https://www.schneier.com/blog/archives/2014/10/badusb_code_has.html
- So, apparently we are not quite done with “breach” articles for the week. This time it looks like the latest victim is “Kmart”. Really starting to run out of things to say when it comes to such articles, as they happen so frequently. Again, brought to us by KrebsOnSecurity.
- Read More @ http://krebsonsecurity.com/2014/10/malware-based-credit-card-breach-at-kmart/
- Last story of the day, something a bit different. Apparently China is not a big fan of Doxing, and has made it illegal to do so. This is one of those situations where I don’t actually disagree with something China is doing, at least when used as a form of Cyber Bullying and the like.
- Read More @ www.infosecurity-magazine.com/news/china-cracks-down-on-doxing